CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-21552
https://notcve.org/view.php?id=CVE-2021-21552
21 May 2021 — Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass the restricted environment and perform unauthorized actions on the affected system. Dell Wyse Windows Embedded System versiones WIE10 LTSC 2019, contienen una vulnerabilidad de autorización inapropiada. A un usuario malicioso local autenticado poco privilegiado puede explotar esta ... • https://www.dell.com/support/kbdoc/en-us/000186134/dsa-2021-096-dell-wyse-windows-embedded-system-security-update-for-an-improper-authorization-vulnerability • CWE-863: Incorrect Authorization •
CVSS: 10.0EPSS: 78%CPEs: 3EXPL: 1CVE-2008-2161 – TFTP Server for Windows 1.4 - ST Remote BSS Overflow
https://notcve.org/view.php?id=CVE-2008-2161
12 May 2008 — Buffer overflow in TFTP Server SP 1.4 and 1.5 on Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a long TFTP error packet. NOTE: some of these details are obtained from third party information. Desbordamiento de búfer en TFTP Server SP 1.4 y 1.5 en Windows y posiblemente otras versiones, permite a atacantes remotos ejecutar código de su elección mediante un paquete de error TFTP largo. NOTA: algunos de estos detalles se han obtenido de terceros. • https://www.exploit-db.com/exploits/5563 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 44%CPEs: 3EXPL: 0CVE-2007-2927
https://notcve.org/view.php?id=CVE-2007-2927
08 Aug 2007 — Unspecified vulnerability in Atheros 802.11 a/b/g wireless adapter drivers before 5.3.0.35, and 6.x before 6.0.3.67, on Windows allows remote attackers to cause a denial of service via a crafted 802.11 management frame. Vulnerabilidad no especificada en los controladores de dispositivo Atheros 802.11 a/b/g wireless versiones anteriores a 5.3.0.35, y 6.x versiones anteriores a 6.0.3.67, en Windows, permite a atacantes remotos provocar una denegación de servicio mediante una trama de gestión 802.11 manipulada... • http://osvdb.org/37992 •
CVSS: 7.8EPSS: 5%CPEs: 2EXPL: 1CVE-2007-3956 – TeamSpeak 2.0 (Windows Release) - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2007-3956
24 Jul 2007 — TeamSpeak WebServer 2.0 for Windows does not validate parameter value lengths and does not expire TCP sessions, which allows remote attackers to cause a denial of service (CPU and memory consumption) via long username and password parameters in a request to login.tscmd on TCP port 14534. TeamSpeak WebServer 2.0 para Windows no valida la longitud del valor del parámetro y no expiran las sesiones TCP, lo cual permite a atacantes remotos provocar denegación de servicio (consumo de CPU y memoria)a través de los... • https://www.exploit-db.com/exploits/4205 •
CVSS: 7.8EPSS: 2%CPEs: 7EXPL: 0CVE-2007-3615
https://notcve.org/view.php?id=CVE-2007-3615
06 Jul 2007 — Internet Communication Manager (aka ICMAN.exe or ICM) in SAP NetWeaver Application Server 6.x and 7.x, possibly only on Windows, allows remote attackers to cause a denial of service (process crash) via a URI of a certain length that contains a sap-isc-key parameter, related to configuration of a web cache. El Internet Communication Manager (también conocido como ICMAN.exe o ICM) en el SAP NetWeaver Application Server 6.x y 7.x, posiblemente sólo bajo Windows, permite a atacantes remotos provocar una denegac... • http://archives.neohapsis.com/archives/fulldisclosure/2007-07/0105.html •
CVSS: 10.0EPSS: 35%CPEs: 4EXPL: 0CVE-2007-3341
https://notcve.org/view.php?id=CVE-2007-3341
21 Jun 2007 — Unspecified vulnerability in the FTP implementation in Microsoft Internet Explorer allows remote attackers to "see a valid memory address" via unspecified vectors, a different issue than CVE-2007-0217. Vulnerabilidad sin especificar en la implementación del FTP del Microsoft Internet Explorer permite a atacantes remotos "ver una dirección de memoria válida" a través de vectores sin especificar, vulnerabilidad diferente a la CVE-2007-0217. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=473 •
CVSS: 10.0EPSS: 43%CPEs: 3EXPL: 1CVE-2007-3334 – Ingress Database Server 2.6 - Multiple Remote Vulnerabilities
https://notcve.org/view.php?id=CVE-2007-3334
21 Jun 2007 — Multiple heap-based buffer overflows in the (1) Communications Server (iigcc.exe) and (2) Data Access Server (iigcd.exe) components for Ingres Database Server 3.0.3, as used in CA (Computer Associates) products including eTrust Secure Content Manager r8 on Windows, allow remote attackers to execute arbitrary code via unknown vectors. Múltiples desbordamientos de búfer basados en montículo en los componentes (1) Communications Server (iigcc.exe) y (2) Data Access Server (iigcd.exe) para el Ingres Database Se... • https://www.exploit-db.com/exploits/30224 •
CVSS: 5.9EPSS: 1%CPEs: 2EXPL: 0CVE-2007-2896
https://notcve.org/view.php?id=CVE-2007-2896
30 May 2007 — Race condition in the Symantec Enterprise Security Manager (ESM) 6.5.3 managers and agents on Windows before 20070524 allows remote attackers to cause a denial of service (CPU consumption and application hang) via certain network scans to ESM ports. Condición de carrera en los encargados y agentes de Symantec Enterprise Security Manager (ESM) 6.5.3 en Windows anteriores a la fecha 24/05/2007 permite a atacantes remotos causar una denegación de servicio (agotamiento de la CPU y cuelgue de aplicación) a travé... • http://osvdb.org/35077 •
CVSS: 9.8EPSS: 6%CPEs: 43EXPL: 0CVE-2007-2388
https://notcve.org/view.php?id=CVE-2007-2388
29 May 2007 — Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not properly restrict QTObject subclassing, which allows remote attackers to execute arbitrary code via a web page containing a user-defined class that accesses unsafe functions that can be leveraged to write to arbitrary memory locations. Apple QuickTime para Java versión 7.1.6 en Mac OS X y Windows, no restringe apropiadamente la subclase de QTObject, lo que permite a atacantes remotos ejecutar código arbitrario por medio de una página web que co... • http://lists.apple.com/archives/security-announce/2007/May/msg00005.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 43EXPL: 0CVE-2007-2389
https://notcve.org/view.php?id=CVE-2007-2389
29 May 2007 — Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not clear potentially sensitive memory before use, which allows remote attackers to read memory from a web browser via unknown vectors related to Java applets. Apple QuickTime para Java 7.1.6 en Mac OS X y Windows no limpia zonas de memoria potencialmente sensibles antes de usarla, lo cual permite a atacantes remotos leer la memoria desde un navegador web a través de vectores desconocidos relacionados con applets Java. • http://lists.apple.com/archives/security-announce/2007/May/msg00005.html •