NVD List
Id | Name | Description | Reject | CVSS Version | CVSS Score | Severity | Pub Date | Modified Date | Actions |
---|---|---|---|---|---|---|---|---|---|
59569 | CVE-2006-0839 | The frag3 preprocessor in Sourcefire Snort 2.4.3 does not properly reassemble certain fragmented packets with IP options, which allows remote attackers to evade detection of certain attacks, possibly related to IP option lengths. | 2 | 5 | Medium | 2016-12-20 | 2008-09-05 | View | |
59825 | CVE-2006-1103 | engine/server.cpp in Sauerbraten 2006_02_28, as derived from the Cube engine, allows remote attackers to cause a denial of service (segmentation fault) via a client that does not completely join the game and times out, which results in a null pointer dereference. | 2 | 5 | Medium | 2016-12-20 | 2011-03-07 | View | |
60081 | CVE-2006-1372 | Multiple SQL injection vulnerabilities in 1WebCalendar 4.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) EventID parameter in viewEvent.cfm, (2) NewsID parameter in newsView.cfm, or (3) ThisDate parameter in mainCal.cfm. | 2 | 5 | Medium | 2016-12-20 | 2011-03-07 | View | |
60337 | CVE-2006-1630 | The cli_bitset_set function in libclamav/others.c in Clam AntiVirus (ClamAV) before 0.88.1 allows remote attackers to cause a denial of service via unspecified vectors that trigger an "invalid memory access." | 2 | 5 | Medium | 2016-12-20 | 2011-03-07 | View | |
60593 | CVE-2006-1888 | phpGraphy 0.9.11 and earlier allows remote attackers to bypass authentication and gain administrator privileges via a direct request to index.php with the editwelcome parameter set to 1, which can then be used to modify the main page to inject arbitrary HTML and web script. NOTE: XSS attacks are resultant from this issue, since normal functionality allows the admin to modify pages. | 2 | 6.8 | Medium | 2016-12-20 | 2011-08-10 | View |
Page 17208 of 17672, showing 5 records out of 88360 total, starting on record 86036, ending on 86040