Title |
Definition Id |
Class |
Family |
The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associa... |
oval:org.mitre.oval:def:9248 |
Vulnerability |
unix |
The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and se... |
oval:org.mitre.oval:def:9363 |
Vulnerability |
unix |
The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the "SSLCipherSuite" directive in directory or location c... |
oval:org.mitre.oval:def:10384 |
Vulnerability |
unix |
The money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4.8, permits multiple (1) %i and (2) %n tokens, whic... |
oval:org.mitre.oval:def:10363 |
Vulnerability |
unix |
The mozIJSSubScriptLoader.LoadScript function in Mozilla Firefox before 2.0.0.15, Thunderbird 2.0.0.14 and earlier, and ... |
oval:org.mitre.oval:def:10747 |
Vulnerability |
unix |
The mprotect code (mprotect.c) in Linux 2.6 on Itanium IA64 Montecito processors does not properly maintain cache cohere... |
oval:org.mitre.oval:def:11283 |
Vulnerability |
unix |
The mq_open system call in Linux kernel 2.6.9, in certain situations, can decrement a counter twice ("double decrement")... |
oval:org.mitre.oval:def:10731 |
Vulnerability |
unix |
The mremap system call (do_mremap) in Linux kernel 2.4.x before 2.4.21, and possibly other versions before 2.4.24, does ... |
oval:org.mitre.oval:def:10189 |
Vulnerability |
unix |
The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands ... |
oval:org.mitre.oval:def:10062 |
Vulnerability |
unix |
The msn_slplink_process_msg function in libpurple/protocols/msn/slplink.c in libpurple, as used in Pidgin (formerly Gaim... |
oval:org.mitre.oval:def:10319 |
Vulnerability |
unix |
The msn_slp_sip_recv function in libpurple/protocols/msn/slp.c in the MSN protocol plugin in libpurple in Pidgin before ... |
oval:org.mitre.oval:def:11852 |
Vulnerability |
unix |
The ms_fnmatch function in Samba 3.0.4 and 3.0.7 and possibly other versions allows remote authenticated users to cause ... |
oval:org.mitre.oval:def:10936 |
Vulnerability |
unix |
The mysqld_multi script in MySQL allows local users to overwrite arbitrary files via a symlink attack. |
oval:org.mitre.oval:def:10559 |
Vulnerability |
unix |
The mysqlhotcopy script in mysql 4.0.20 and earlier, when using the scp method from the mysql-server package, allows loc... |
oval:org.mitre.oval:def:10693 |
Vulnerability |
unix |
The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privil... |
oval:org.mitre.oval:def:9166 |
Vulnerability |
unix |
The NAT code (1) ip_nat_proto_tcp.c and (2) ip_nat_proto_udp.c in Linux kernel 2.6 before 2.6.13 and 2.4 before 2.4.32-r... |
oval:org.mitre.oval:def:10142 |
Vulnerability |
unix |
The native implementations of InstallTrigger and other functions in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 ... |
oval:org.mitre.oval:def:10629 |
Vulnerability |
unix |
The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which al... |
oval:org.mitre.oval:def:9733 |
Vulnerability |
unix |
The netfilter/iptables module in Linux before 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash... |
oval:org.mitre.oval:def:10753 |
Vulnerability |
unix |
The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.13-rc1 does not initialize certain ... |
oval:org.mitre.oval:def:11744 |
Vulnerability |
unix |
The Netrw plugin (netrw.vim) in Vim 7.0 and 7.1 allows user-assisted attackers to execute arbitrary commands via shell m... |
oval:org.mitre.oval:def:11247 |
Vulnerability |
unix |
The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers fo... |
oval:org.mitre.oval:def:10289 |
Vulnerability |
unix |
The Network Security Services (NSS) library before 3.12.3, as used in Firefox; GnuTLS before 2.6.4 and 2.7.4; OpenSSL 0.... |
oval:org.mitre.oval:def:10763 |
Vulnerability |
unix |
The nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client in the Linux kernel before 2.6.31-rc4 allows remote... |
oval:org.mitre.oval:def:9734 |
Vulnerability |
unix |
The NFSv4 ID mapper (nfsidmap) before 0.17 does not properly handle return values from the getpwnam_r function when perf... |
oval:org.mitre.oval:def:9864 |
Vulnerability |
unix |
The nfs_permission function in fs/nfs/dir.c in the NFS client implementation in the Linux kernel 2.6.29.3 and earlier, w... |
oval:org.mitre.oval:def:9990 |
Vulnerability |
unix |
The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause... |
oval:org.mitre.oval:def:10442 |
Vulnerability |
unix |
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a den... |
oval:org.mitre.oval:def:10128 |
Vulnerability |
unix |
The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial... |
oval:org.mitre.oval:def:11616 |
Vulnerability |
unix |
The NSAPI plugin versions of the TGA and the Java Servlet proxy demonstrate high CPU utilization under certain condition... |
oval:org.mitre.oval:def:5735 |
Vulnerability |
unix |