CVE List

Id CVE No. Status Description Phase Votes Comments Actions
7166  CVE-2003-0338  Candidate  Directory traversal vulnerability in WsMp3 daemon (WsMp3d) 0.0.10 and earlier allows remote attackers to read and execute arbitrary files via .. (dot dot) sequences in HTTP GET or POST requests.  Assigned (20030522)  None (candidate not yet proposed)    View
72702  CVE-2014-5405  Candidate  Hospira MedNet before 6.1 uses a hardcoded cleartext password to control SQL database authorization, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password.  Assigned (20140822)  None (candidate not yet proposed)    View
7422  CVE-2003-0595  Candidate  Buffer overflow in WiTango Application Server and Tango 2000 allows remote attackers to execute arbitrary code via a long cookie to Witango_UserReference.  Assigned (20030718)  None (candidate not yet proposed)    View
72958  CVE-2014-5660  Candidate  The TN Members 1st FCU-RDC (aka com.metova.cuae.tmffcu) application 1.0.28 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.  Assigned (20140830)  None (candidate not yet proposed)    View
7678  CVE-2003-0854  Candidate  ls in the fileutils or coreutils packages allows local users to consume a large amount of memory via a large -w value, which can be remotely exploited via applications that use ls, such as wu-ftpd.  Assigned (20031010)  None (candidate not yet proposed)    View

Page 20183 of 20943, showing 5 records out of 104715 total, starting on record 100911, ending on 100915

Actions