CVSS: 9.3EPSS: 13%CPEs: 1EXPL: 2CVE-2007-4735 – Virtual DJ 5.0 - '.m3u' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-4735
06 Sep 2007 — Buffer overflow in Next Generation Software Virtual DJ (VDJ) 5.0 allows user-assisted remote attackers to execute arbitrary code via a long file path in an m3u file. Desbordamiento de búfer en el Next Generation Software Virtual DJ (VDJ) 5.0 permite a atacantes con la intervención del usuario ejecutar código de su elección a través de una ruta de fichero larga en el fichero m3u. • https://www.exploit-db.com/exploits/4354 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 2CVE-2006-4392 – Apple Mac OSX 10.4.7 - Mach Exception Handling Local (10.3.x)
https://notcve.org/view.php?id=CVE-2006-4392
02 Oct 2006 — The Mach kernel, as used in operating systems including (1) Mac OS X 10.4 through 10.4.7 and (2) OpenStep before 4.2, allows local users to gain privileges via a parent process that forces an exception in a setuid child and uses Mach exception ports to modify the child's thread context and task address space in a way that causes the child to call a parent-controlled function. El núcleo Mach, usado en sistemas operativos que incluyen (1) Mac OS X 10.4 hata 10.4.7 y (2) OpenStep anterior a 4.2, permite a usua... • https://www.exploit-db.com/exploits/2464 •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2006-0086
https://notcve.org/view.php?id=CVE-2006-0086
05 Jan 2006 — Cross-site scripting vulnerability in index.php in Next Generation Image Gallery 0.0.1 Lite Edition allows remote attackers to inject arbitrary web script or HTML via the page parameter. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en index.php de Next Generation Image Gallery 0.0.1 Lite Edition permite a atacantes remotos inyectar 'script' web o HTML de su elección mediante el parámetro "page". • http://osvdb.org/ref/22/22202-nextgen.txt •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-1999-0956
https://notcve.org/view.php?id=CVE-1999-0956
19 Sep 1997 — The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0956 •
CVSS: 10.0EPSS: 3%CPEs: 42EXPL: 1CVE-1999-0046 – BSD/OS 2.1 / DG/UX 4.0 / Debian 0.93 / Digital UNIX 4.0 B / FreeBSD 2.1.5 / HP-UX 10.34 / IBM AIX 4.1.5 / NetBSD 1.0/1.1 / NeXTstep 4.0 / SGI IRIX 6.3 / SunOS 4.1.4 - 'rlogin' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0046
06 Feb 1997 — Buffer overflow of rlogin program using TERM environmental variable. • https://www.exploit-db.com/exploits/19203 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 2CVE-1999-0032 – BSD/OS 2.1 / FreeBSD 2.1.5 / NeXTstep 4.x / IRIX 6.4 / SunOS 4.1.3/4.1.4 - '/usr/bin/lpr' Buffer Overrun Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0032
25 Oct 1996 — Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option. • https://www.exploit-db.com/exploits/19545 •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-1999-0078
https://notcve.org/view.php?id=CVE-1999-0078
18 Apr 1996 — pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0078 •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-1999-1468
https://notcve.org/view.php?id=CVE-1999-1468
22 Oct 1991 — rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable. • http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.html •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-1999-1193
https://notcve.org/view.php?id=CVE-1999-1193
14 May 1991 — The "me" user in NeXT NeXTstep 2.1 and earlier has wheel group privileges, which could allow the me user to use the su command to become root. • http://www.cert.org/advisories/CA-1991-06.html •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1198
https://notcve.org/view.php?id=CVE-1999-1198
03 Oct 1990 — BuildDisk program on NeXT systems before 2.0 does not prompt users for the root password, which allows local users to gain root privileges. • http://ciac.llnl.gov/ciac/bulletins/b-01.shtml •