CVSS: 7.5EPSS: 13%CPEs: 11EXPL: 0CVE-2007-1915
https://notcve.org/view.php?id=CVE-2007-1915
Buffer overflow in the RFC_START_PROGRAM function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended. Desbordamiento de búfer en la función RFC_START_PROGRAM en la libreria SAP RFC Library 6.40 y 7.00 anterior a 20061211 permite a atacantes remotos ejecutar código de su elección a través de vectores no especificados. NOTA: Esta información se basa en una vaga descripción inicial. • http://secunia.com/advisories/24722 http://securityreason.com/securityalert/2538 http://www.cybsec.com/vuln/CYBSEC-Security_Advisory_SAP_RFC_START_PROGRAM_RFC_Function_Multiple_Vulnerabilities.pdf http://www.securityfocus.com/archive/1/464678/100/0/threaded http://www.securityfocus.com/bid/23313 http://www.vupen.com/english/advisories/2007/1270 https://exchange.xforce.ibmcloud.com/vulnerabilities/33421 •
CVSS: 6.5EPSS: 0%CPEs: 13EXPL: 0CVE-2007-1727
https://notcve.org/view.php?id=CVE-2007-1727
Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 6.20, 6.4x, 7.01, 7.50, and 7.51 allows remote authenticated users to access certain privileged "facilities" via unspecified vectors. Vulnerabilidad sin especificar en el HP OpenView Network Node Manager (OV NNM) 6.20, 6.4x, 7.01, 7.50 y 7.51 permite a usuarios remotos autenticados acceder a ciertos privilegios facilitados mediante vectores sin especificar. • http://secunia.com/advisories/24746 http://www.securityfocus.com/bid/23163 http://www.securitytracker.com/id?1017817 http://www.vupen.com/english/advisories/2007/1121 http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00854999 https://exchange.xforce.ibmcloud.com/vulnerabilities/33241 •
CVSS: 10.0EPSS: 10%CPEs: 94EXPL: 0CVE-2007-1093
https://notcve.org/view.php?id=CVE-2007-1093
Multiple unspecified vulnerabilities in JP1/Cm2/Network Node Manager (NNM) before 07-10-05, and before 08-00-02 in the 08-x series, allow remote attackers to execute arbitrary code, cause a denial of service, or trigger invalid Web utility behavior. Múltiples vulnerabilidades no especificadas en JP1/Cm2/Network Node Manager (NNM) anterior a 07-10-05, y anterior a 08-00-02 en la serie 08-x, permiten a atacantes remotos ejecutar código de su elección, provocar una denegación de servicio, o disparar un comportamiento inválido de la herramienta Web. • http://osvdb.org/33528 http://osvdb.org/33529 http://secunia.com/advisories/24276 http://www.hitachi-support.com/security_e/vuls_e/HS07-002_e/index-e.html http://www.vupen.com/english/advisories/2007/0739 https://exchange.xforce.ibmcloud.com/vulnerabilities/32682 https://exchange.xforce.ibmcloud.com/vulnerabilities/32683 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.2EPSS: 0%CPEs: 34EXPL: 0CVE-2007-1086
https://notcve.org/view.php?id=CVE-2007-1086
Unspecified binaries in IBM DB2 8.x before 8.1 FixPak 15 and 9.1 before Fix Pack 2 allow local users to create or modify arbitrary files via unspecified environment variables related to "unsafe file access." Binarios no especificados en IBM DB2 8.x anterior a 8.1 FixPak 15 y 9.1 anterior a Fix Pack 2 permite a usuarios locales crear o modificar ficheros de su elección a través de entornos variables no especificados relacionados con "accesos de ficheros inseguros". • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=481 http://osvdb.org/40969 http://www-1.ibm.com/support/docview.wss?uid=swg21255747 http://www.attrition.org/pipermail/vim/2007-August/001765.html http://www.securityfocus.com/bid/22677 https://exchange.xforce.ibmcloud.com/vulnerabilities/32650 •
CVSS: 7.5EPSS: 0%CPEs: 18EXPL: 0CVE-2006-7034
https://notcve.org/view.php?id=CVE-2006-7034
SQL injection vulnerability in directory.php in Super Link Exchange Script 1.0 might allow remote attackers to execute arbitrary SQL queries via the cat parameter. Vulnerabilidad de inyección SQL en directory.php en Super Link Exchange Script 1.0 podría permitir a atacantes remotos ejecutar consultas SQL de su elección a través del parámetro cat. • http://securityreason.com/securityalert/2285 http://www.securityfocus.com/archive/1/435166/30/4680/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/26720 •