Search
14,631 CVEs · Low severity
CVEs (14,631, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 76–100 of 14,631 (capped at 500)
| CVE ID | Severity | Patch | CVSS ↑ | Published | Description |
|---|---|---|---|---|---|
| CVE-2006-4676 | LOW | Patched | 1.2 | 2006-09-11 | TIBCO RendezVous 7.4.11 and earlier logs base64-encoded usernames and passwords in rvrd.db, which allows local users to obtain sensitive information by decoding the log file. |
| CVE-2006-4232 | LOW | Patched | 1.2 | 2006-08-18 | Race condition in the grid-proxy-init tool in Globus Toolkit 3.2.x, 4.0.x, and 4.1.0 before 20060815 allows local users to steal credential data by replacing the proxy cred… |
| CVE-2006-3551 | LOW | Patched | 1.2 | 2006-07-13 | NCP Secure Enterprise Client (aka VPN/PKI client) 8.30 Build 59, and possibly earlier versions, when the Link Firewall and Personal Firewall are both configured to block al… |
| CVE-2006-3118 | LOW | 1.2 | 2006-06-30 | spread uses a temporary file with a static filename based on the port number, which allows local users to cause a denial of service by creating the file during a race condi… | |
| CVE-2006-1824 | LOW | 1.2 | 2006-04-18 | Multiple cross-site scripting (XSS) vulnerabilities in PhpGuestbook.php in PhpGuestbook 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) Name, … | |
| CVE-2006-1695 | LOW | 1.2 | 2006-04-11 | The fbgs script in the fbi package 2.01-1.4, when the TMPDIR environment variable is not defined, allows local users to overwrite arbitrary files via a symlink attack on te… | |
| CVE-2006-1059 | LOW | 1.2 | 2006-03-30 | The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoo… | |
| CVE-2006-1066 | LOW | 1.2 | 2006-03-27 | Linux kernel 2.6.16-rc2 and earlier, when running on x86_64 systems with preemption enabled, allows local users to cause a denial of service (oops) via multiple ptrace task… | |
| CVE-2006-0050 | LOW | 1.2 | 2006-03-23 | snmptrapfmt in Debian 3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary log file. | |
| CVE-2006-1231 | LOW | 1.2 | 2006-03-14 | CAPI4HylaFAX 1.3, when compiled with GENERATE_DEBUGSFFDATAFILE set, allows local users to modify arbitrary files via a symlink attack on the c2faxrecv_dbgdatafile.sff tempo… | |
| CVE-2006-0741 | LOW | Patched | 1.2 | 2006-03-07 | Linux kernel before 2.6.15.5, when running on Intel processors, allows local users to cause a denial of service ("endless recursive fault") via unknown attack vectors relat… |
| CVE-2006-0591 | LOW | 1.2 | 2006-02-08 | The crypt_gensalt functions for BSDI-style extended DES-based and FreeBSD-sytle MD5-based password hashes in crypt_blowfish 0.4.7 and earlier do not evenly and randomly dis… | |
| CVE-2005-4761 | LOW | 1.2 | 2005-12-31 | BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP5 and earlier, and 6.1 SP7 and earlier log the Java command line at server startup, which might include … | |
| CVE-2005-2527 | LOW | Patched | 1.2 | 2005-12-31 | Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to corrupt files or create arbitrary files via unspecified attack vectors related t… |
| CVE-2005-3342 | LOW | 1.2 | 2005-12-31 | noweb 2.10c and earlier allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm. | |
| CVE-2005-4660 | LOW | Patched | 1.2 | 2005-12-31 | Race condition in IPCop (aka IPCop Firewall) before 1.4.10 might allow local users to overwrite system configuration files and gain privileges by replacing a backup archive… |
| CVE-2005-3011 | LOW | Patched | 1.2 | 2005-09-21 | The sort_offline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files. |
| CVE-2005-2666 | LOW | Patched | 1.2 | 2005-08-23 | SSH, as implemented in OpenSSH before 4.0 and possibly other implementations, stores hostnames, IP addresses, and keys in plaintext in the known_hosts file, which makes it … |
| CVE-2005-2475 | LOW | 1.2 | 2005-08-05 | Race condition in Unzip 5.52 allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions … | |
| CVE-2005-2449 | LOW | Patched | 1.2 | 2005-08-03 | Race condition in sandbox before 1.2.11 allows local users to create or overwrite arbitrary files via symlink attack on sandboxpids.tmp. |
| CVE-2005-1759 | LOW | Patched | 1.2 | 2005-06-28 | Race condition in shtool 2.0.1 and earlier allows local users to modify or create arbitrary files via a symlink attack on temporary files after they have been created, a di… |
| CVE-2005-1878 | LOW | Patched | 1.2 | 2005-06-09 | GIPTables Firewall 1.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the temp.ip.addresses temporary file. |
| CVE-2005-1396 | LOW | Patched | 1.2 | 2005-05-03 | Race condition in Ce/Ceterm (aka ARPUS/Ce) 2.5.4 and earlier allows local users to write to arbitrary files via a symlink attack on the ce_edit_log temporary file. |
| CVE-2005-1368 | LOW | 1.2 | 2005-05-02 | The key_user_lookup function in security/keys/key.c in Linux kernel 2.6.10 to 2.6.11.8 may allow attackers to cause a denial of service (oops) via SMP. | |
| CVE-2005-1066 | LOW | 1.2 | 2005-05-02 | Race condition in rpdump in Pine 4.62 and earlier allows local users to overwrite arbitrary files via a symlink attack. |