Idea Transcript
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Search
View CVE
Vulnerability Feeds & WidgetsNew www.itsecdb.com
Log In Register Switch to https:// Home Browse :
Security Vulnerabilities (CVSS score between 9 and 10) CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9
Vendors
Sort Results By : CVE Number Descending CVE Number Ascending CVSS Score Descending Number Of Exploits Descending
Products
Copy Results Download Results
Vulnerabilities By Date Vulnerabilities By Type Reports : CVSS Score Report CVSS Score Distribution Search :
#
CVE ID
CWE ID
11951 CVE-2006-3890
# of Exploits
Vulnerability Type(s) Exec Code Overflow
Publish Date 2006-11-21
Update Date 2017-10-18
Score
Gained Access Level
9.3
Admin
Access Complexity Authentication Remote
Medium
Not required
Conf.
Integ.
Avail.
Complete Complete Complete
Stack-based buffer overflow in the Sky Software FileView ActiveX control, as used in WinZip 10 before build 7245 and in certain other applications, allows remote attackers to execute arbitrary code via a long FilePattern attribute in a WZFILEVIEW object, a different vulnerability than CVE-2006-5198.
Vendor Search
11952 CVE-2006-3877 94
Product Search
Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified "crafted file," a different vulnerability than CVE-2006-3435, CVE-2006-4694, and CVE-2006-3876.
Version Search Vulnerability Search By Microsoft References Top 50 : Vendors Vendor Cvss Scores
11953 CVE-2006-3876 94
Versions Other : Microsoft Bulletins Bugtraq Entries CWE Definitions About & Contact Feedback CVE Help FAQ Articles External Links : NVD Website CWE Web Site
Exec Code
2006-10-10
2006-10-10
2017-10-10
2017-11-16
9.3
9.3
Admin
Admin
Remote
Remote
Medium
Medium
Not required
Not required
Complete Complete Complete
Complete Complete Complete
Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via a crafted Data record in a PPT file, a different vulnerability than CVE-2006-3435 and CVE-2006-4694. 11954 CVE-2006-3864 94
Products Product Cvss Scores
Exec Code
Exec Code Overflow Mem. 2006-10-10 Corr.
2017-10-10
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
Unspecified vulnerability in mso.dll in Microsoft Office 2000, XP, and 2003, and Microsoft PowerPoint 2000, XP, and 2003, allows remote user-assisted attackers to execute arbitrary code via a malformed record in a (1) .DOC, (2) .PPT, or (3) .XLS file that triggers memory corruption, related to an "array boundary condition" (possibly an array index overflow), a different vulnerability than CVE-2006-3434, CVE2006-3650, and CVE-2006-3868. 11955 CVE-2006-3845
Exec Code Overflow
2006-07-25
2017-07-19
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
Not required
Complete Complete Complete
Stack-based buffer overflow in lzh.fmt in WinRAR 3.00 through 3.60 beta 6 allows remote attackers to execute arbitrary code via a long filename in a LHA archive. 11956 CVE-2006-3838 119
Exec Code Overflow
2006-07-26
2017-07-19
10.0
Admin
Remote
Low
Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) before 2.5.0, as used in products including (a) Sidewinder, (b) iPolicy Security Manager, (c) Astaro Report Manager, (d) Fortinet FortiReporter, (e) Top Layer Network Security Analyzer, and possibly other products, allow remote attackers to execute arbitrary code via long (1) DELTAINTERVAL, (2) LOGFOLDER, (3) DELETELOGS, (4) FWASERVER, (5) SYSLOGPUBLICIP, (6) GETFWAIMPORTLOG, (7) GETFWADELTA, (8) DELETERDEPDEVICE, (9) COMPRESSRAWLOGFILE, (10) GETSYSLOGFIREWALLS, (11) ADDPOLICY, and (12) EDITPOLICY commands to the Syslog daemon (syslogserver.exe); (13) GUIADDDEVICE, (14) ADDDEVICE, and (15) DELETEDEVICE commands to the Topology server (Topology.exe); the (15) LICMGR_ADDLICENSE command to the License Manager (EnterpriseSecurityAnalyzer.exe); the (16) TRACE and (17) QUERYMONITOR commands to the Monitoring agent (Monitoring.exe); and possibly other vectors related to the Syslog daemon (syslogserver.exe). 11957 CVE-2006-3742
2006-09-06
2008-09-05
10.0
Admin
Remote
Low
Not required
Complete Complete Complete
The KDE PAM configuration shipped with Fedora Core 5 causes KDM passwords to be cached, which allows attackers to login without a password by attempting to log in multiple times.
View CVE : Go
11958 CVE-2006-3738 119
Overflow
2006-09-28
2017-10-10
10.0
None
Remote
Low
Not required
Complete Complete Complete
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers.
View BID :
Integer overflow in Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a 0x7fffffff argument to the setSlice method on a WebViewFolderIcon ActiveX object, which leads to an invalid memory copy.
Go
11959 CVE-2006-3730 94
DoS Exec Code Overflow
2006-07-21
Admin
Medium
(e.g.: ms10-001 or 979352)
2017-07-19
10.0
None
Low
Remote
Low
Not required
Complete Complete Complete
Unspecified vulnerability in JD Edwards HTML Server for Oracle OneWorld Tools EnterpriseOne Tools 8.95 and 8.96 has unknown impact and attack vectors, aka Oracle Vuln# JDE01. 2006-07-21
Remote
Not required
Search By Microsoft Reference ID:
10.0
None
Remote
11960 CVE-2006-3724
11961 CVE-2006-3723
2017-07-19
9.3
(e.g.: 12345)
Go
2006-07-21
2017-10-18
Not required
Complete Complete Complete
Complete Complete Complete
Unspecified vulnerability in PeopleSoft Enterprise Portal for Oracle PeopleSoft Enterprise Portal 8.8 with Enforcer Portal Pack Bundle #10 and 8.9 Bundle #3 has unknown impact and attack vectors, aka Oracle Vuln# PSE02. 11962 CVE-2006-3722
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Unspecified vulnerability in PeopleSoft Enterprise Portal for Oracle PeopleSoft Enterprise Portal 8.4 Bundle #16, 8.8 Bundle #10, and 8.9 Bundle #3 has unknown impact and attack vectors, aka Oracle Vuln# PSE01. 11963 CVE-2006-3721
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Multiple unspecified vulnerabilities in Oracle Management Service for Oracle Enterprise Manager 10.1.0.5 and 10.2.0.1 have unknown impact and attack vectors, aka Oracle Vuln# EM03 and EM04. 11964 CVE-2006-3718
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Multiple unspecified vulnerabilities in Oracle Exchange for Oracle E-Business Suite and Applications 6.2.4 have unknown impact and attack vectors, aka Oracle Vuln# (1) APPS16 and (2) APPS17. 11965 CVE-2006-3717
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.9 have unknown impact and attack vectors, aka Oracle Vuln# (1) APPS03 and (2) APPS04 for Oracle Application Object Library; and (3) APPS20 for Oracle XML Gateway. 11966 CVE-2006-3716
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10CU2 have unknown impact and attack vectors, aka Oracle Vuln# (1) APPS01 for Internet Expenses; (2) APPS02, (3) APPS05, (4) APPS06, (5) APPS07, (6) APPS08, (7) APPS09, and (8) APPS10 for Oracle Application Object Library; (9) APPS11, (10) APPS12, and (11) APPS13 for Oracle Applications Technology Stack; (12) APPS14 for Oracle Call Center Technology; (13) APPS15 for Oracle Common Applications; (14) APPS18 for Oracle Self-Service Web Applications; and (15) APPS19 for Oracle Workflow Cartridge. 11967 CVE-2006-3715
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Low
Not required
Complete Complete Complete
Unspecified vulnerability in Calendar for Oracle Collaboration Suite 10.1.2 has unknown impact and attack vectors, aka Oracle Vuln# OCS01. 11968 CVE-2006-3710
2006-07-21
2017-07-19
10.0
None
Remote
Unspecified vulnerability in OC4J for Oracle Application Server 9.0.2.3, 9.0.3.1, 9.0.4.2, and 10.1.2.0.0 has unknown impact and attack vectors, aka Oracle Vuln# (1) AS05 and (2) AS08. 11969 CVE-2006-3708
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Unspecified vulnerability in OC4J for Oracle Application Server 9.0.2.3, 9.0.3.1, 9.0.4.2, 10.1.2.0.2, and 10.1.2.1 has unknown impact and attack vectors, aka Oracle Vuln# AS03. 11970 CVE-2006-3705
Sql
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB21 for Statistics and (2) DB22 for Upgrade & Downgrade. NOTE: as of 20060719, Oracle has not disputed a claim by a reliable researcher that DB21 is for a local SQL injection vulnerability in SYS.DBMS_STATS, and that DB22 is for SQL injection in SYS.DBMS_UPGRADE. 11971 CVE-2006-3704
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Low
Single system
Complete Complete Complete
Not required
Complete Complete Complete
Unspecified vulnerability in the Oracle ODBC Driver for Oracle Database 10.1.0.4 has unknown impact and attack vectors, aka Oracle Vuln# 10.1.0.4. 11972 CVE-2006-3703
2006-07-21
2017-07-19
9.0
None
Remote
Unspecified vulnerability in InterMedia for Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.0.4 has unknown impact and attack vectors, aka oracle Vuln# DB07. 11973 CVE-2006-3702
Sql
2006-07-21
2017-07-19
10.0
None
Remote
Low
Multiple unspecified vulnerabilities in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, 10.1.0.5, and 10.2.0.2 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB06 in Export; (2) DB08, (3) DB09, (4) DB10, (5) DB11, (6) DB12, (7) DB13, (8) DB14, and (9) DBC01 for OCI; (10) DB16 for Query Rewrite/Summary Mgmt; (11) DB17, (12) DB18, (13) DB19, (14) DBC02, (15) DBC03, and (16) DBC04 for RPC; and (17) DB20 for Semantic Analysis. NOTE: as of 20060719, Oracle has not disputed third party claims that DB06 is related to "SQL injection" using DBMS_EXPORT_EXTENSION with a modified ODCIIndexGetMetadata routine and a call to GET_DOMAIN_INDEX_METADATA, in which case DB06 might be CVE-2006-2081. 11974 CVE-2006-3701
2006-07-21
2017-07-19
9.0
None
Remote
Low
Single system
Complete Complete Complete
Unspecified vulnerability in the Dictionary component in Oracle Database 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors, aka Oracle Vuln# DB05. 11975 CVE-2006-3700
2006-07-21
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 for Web Distributed Authoring and Versioning (DAV) and (2) DB23 for XMLDB. 11976 CVE-2006-3699
2006-07-21
2017-07-19
9.0
None
Remote
Low
Single system
Complete Complete Complete
Not required
Complete Complete Complete
Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.0.1.5 and 9.2.0.6 has unknown impact and attack vectors, aka Oracle Vuln# DB02. 11977 CVE-2006-3698
Sql
2006-07-21
2017-07-19
10.0
None
Remote
Low
Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB01 for Change Data Capture (CDC) component and (2) DB03 for Data Pump Metadata API. NOTE: as of 20060719, Oracle has not disputed a claim by a reliable researcher that DB01 is related to multiple SQL injection vulnerabilities in SYS.DBMS_CDC_IMPDP using the (a) IMPORT_CHANGE_SET, (b) IMPORT_CHANGE_TABLE, (c) IMPORT_CHANGE_COLUMN, (d) IMPORT_SUBSCRIBER, (e) IMPORT_SUBSCRIBED_TABLE, (f) IMPORT_SUBSCRIBED_COLUMN, (g) VALIDATE_IMPORT, (h) VALIDATE_CHANGE_SET, (i) VALIDATE_CHANGE_TABLE, and (j) VALIDATE_SUBSCRIPTION procedures, and that DB03 is for SQL injection in the MAIN procedure for SYS.KUPW$WORKER. 11978 CVE-2006-3667
2006-07-18
2008-09-05
10.0
None
Remote
Low
Not required
Complete Complete Complete
Not required
Complete Complete Complete
Unspecified vulnerability in Sybase/Financial Fusion Consumer Banking Suite versions before 20060706 has unknown impact and remote attack vectors. 11979 CVE-2006-3651
Exec Code
2006-10-10
2017-10-10
9.3
Admin
Remote
Medium
Unspecified vulnerability in Microsoft Word 2000, 2002, and Office 2003 allows remote user-assisted attackers to execute arbitrary code via a crafted mail merge file, a different vulnerability than CVE-20063647 and CVE-2006-4693. 11980 CVE-2006-3650 94
Exec Code
2006-10-10
2017-11-16
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac do not properly parse the length of a chart record, which allows remote user-assisted attackers to execute arbitrary code via a Word document with an embedded malformed chart record that triggers an overwrite of pointer values with values from the document, a different vulnerability than CVE-2006-3434, CVE-2006-3864, and CVE-2006-3868. 11981 CVE-2006-3647 189
Exec Code Overflow
2006-10-10
2017-11-21
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
Integer overflow in Microsoft Word 2000, 2002, 2003, 2004 for Mac, and v.X for Mac allows remote user-assisted attackers to execute arbitrary code via a crafted string in a Word document, which overflows a 16-bit integer length value, aka "Memmove Code Execution," a different vulnerability than CVE-2006-3651 and CVE-2006-4693. 11982 CVE-2006-3632 119
DoS Exec Code Overflow
2006-07-21
2017-10-10
10.0
Admin
Remote
Low
Not required
Complete Complete Complete
Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector. 11983 CVE-2006-3628 134
DoS Exec Code
2006-07-21
2017-10-10
10.0
Admin
Remote
Low
Not required
Complete Complete Complete
Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors. 11984 CVE-2006-3601
+Priv
2006-07-18
2016-11-28
10.0
Admin
Remote
Low
Not required
Complete Complete Complete
** UNVERIFIABLE ** Unspecified vulnerability in an unspecified DNN Modules module for DotNetNuke (.net nuke) allows remote attackers to gain privileges via unspecified vectors, as used in an attack against the Microsoft France web site. NOTE: due to the lack of details and uncertainty about which product is affected, this claim is not independently verifiable. 11985 CVE-2006-3573 134
Exec Code
2006-07-13
2017-07-19
10.0
None
Remote
Low
Not required
Complete Complete Complete
Format string vulnerability in the WriteText function in agl_text.cpp in Milan Mimica Sparklet 0.9.4 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a player nickname. 11986 CVE-2006-3553
Exec Code Bypass
2006-07-12
2017-07-19
10.0
Admin
Remote
Low
Not required
Complete Complete Complete
Not required
Complete Complete Complete
PlaNet Concept planetNews allows remote attackers to bypass authentication and execute arbitrary code via a direct request to news/admin/planetnews.php. 11987 CVE-2006-3498
Exec Code Overflow
2006-08-02
2017-07-19
10.0
Admin
Remote
Low
Stack-based buffer overflow in bootpd in the DHCP component for Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to execute arbitrary code via a crafted BOOTP request. 11988 CVE-2006-3448 119
Exec Code Overflow
2007-02-13
2017-10-10
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
Buffer overflow in the Step-by-Step Interactive Training in Microsoft Windows 2000 SP4, XP SP2 and Professional, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a long Syllabus string in crafted bookmark link files (cbo, cbl, or .cbm), a different issue than CVE-2005-1212. 11989 CVE-2006-3441
Exec Code Overflow
2006-08-08
2017-10-10
10.0
Admin
Remote
Low
Not required
Complete Complete Complete
Buffer overflow in the DNS Client service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted record response. NOTE: while MS06-041 implies that there is a single issue, there are multiple vectors, and likely multiple vulnerabilities, related to (1) a heap-based buffer overflow in a DNS server response to the client, (2) a DNS server response with malformed ATMA records, and (3) a length miscalculation in TXT, HINFO, X25, and ISDN records. 11990 CVE-2006-3440
Exec Code Overflow
2006-08-08
2017-10-10
10.0
Admin
Remote
Low
Not required
Complete Complete Complete
Buffer overflow in the Winsock API in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka "Winsock Hostname Vulnerability." 11991 CVE-2006-3439
Exec Code Overflow
2006-08-08
2017-10-10
10.0
Admin
Remote
Low
Not required
Complete Complete Complete
Buffer overflow in the Server Service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers, including anonymous users, to execute arbitrary code via a crafted RPC message, a different vulnerability than CVE-2006-1314. 11992 CVE-2006-3438
Exec Code Overflow
2006-08-08
2017-10-10
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
Unspecified vulnerability in Microsoft Hyperlink Object Library (hlink.dll), possibly a buffer overflow, allows user-assisted attackers to execute arbitrary code via crafted hyperlinks that are not properly handled when hlink.dll "uses a file containing a malformed function," aka "Hyperlink Object Function Vulnerability." 11993 CVE-2006-3435 94
Exec Code
2006-10-10
2017-10-10
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
PowerPoint in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac does not properly parse the slide notes field in a document, which allows remote user-assisted attackers to execute arbitrary code via crafted data in this field, which triggers an erroneous object pointer calculation that uses data from within the document. NOTE: this issue is different than other PowerPoint vulnerabilities including CVE-20064694. 11994 CVE-2006-3434
Exec Code Mem. Corr.
2006-10-10
2017-11-21
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
Unspecified vulnerability in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac allows remote user-assisted attackers to execute arbitrary code via a crafted string that triggers memory corruption. 11995 CVE-2006-3423 20
Exec Code
2006-07-06
2017-07-19
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
WebEx Downloader ActiveX Control and WebEx Downloader Java before 2.1.0.0 do not validate downloaded components, which allows remote attackers to execute arbitrary code via a website that activates the GpcUrlRoot and GpcIniFileName ActiveX controls to cause the client to download a DLL file. 11996 CVE-2006-3308
XSS
2006-06-28
2017-07-19
9.3
None
Remote
Medium
Not required
Complete Complete Complete
Unspecified vulnerability in the wpprop code for Project EROS bbsengine before 20060622-0315 has unknown impact and remote attack vectors via [img] tags, possibly cross-site scripting (XSS). 11997 CVE-2006-3291 16
2006-06-28
2017-07-19
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
The web interface on Cisco IOS 12.3(8)JA and 12.3(8)JA1, as used on the Cisco Wireless Access Point and Wireless Bridge, reconfigures itself when it is changed to use the "Local User List Only (Individual Passwords)" setting, which removes all security and password configurations and allows remote attackers to access the system. 11998 CVE-2006-3232
2006-06-27
2009-06-17
10.0
None
Remote
Low
Not required
Complete Complete Complete
Unspecified vulnerability in IBM WebSphere Application Server before 6.0.2.11 has unknown impact and attack vectors because the "UserNameToken cache was improperly used." 11999 CVE-2006-3228
Exec Code Overflow
2006-06-26
2017-10-18
9.3
Admin
Remote
Medium
Not required
Complete Complete Complete
Not required
Complete Complete Complete
Buffer overflow in in_midi.dll for WinAmp 2.90 up to 5.23, including 5.21, allows remote attackers to execute arbitrary code via a crafted .mid (MIDI) file. 12000 CVE-2006-3203 255
+Priv
2006-06-23
2009-04-03
10.0
Admin
Remote
Low
The installation of Ultimate PHP Board (UPB) 1.9.6 and earlier includes a default administrator login account and password, which allows remote attackers to gain privileges. Total number of vulnerabilities : 12792 Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 (This Page) 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 How does it work? Known limitations & technical details User agreement, disclaimer and privacy statement About & Contact Feedback CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.