Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.3

    HIGH
    CVE-2008-7168

    Insecure method vulnerability in the UUSee UUUpgrade ActiveX control (UUUpgrade.ocx 3.0.2.12) allows remote attackers to force the download and overwrite of arbitrary files via crafted arguments to the Update method, as exploited in the wild in June 2009.... Read more

    Affected Products : uusee uuupgrade.ocx
    • Published: Sep. 08, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-7079

    Buffer overflow in Nero ShowTime 5.0.15.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long entry in a .M3U playlist file. NOTE: this issue might be related to CVE-2008-0619.... Read more

    Affected Products : showtime
    • Published: Aug. 25, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-7053

    LogMeIn Remote Access Utility ActiveX control (RACtrl.dll) allows remote attackers to cause a denial of service (crash) by setting the fgcolor and bgcolor properties to certain long values that trigger memory corruption.... Read more

    Affected Products : ractrl.dll
    • Published: Aug. 24, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-7074

    Format string vulnerability in MemeCode Software i.Scribe 1.88 through 2.00 before Beta9 allows remote SMTP servers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in a server response, which is not pr... Read more

    Affected Products : i.scribe
    • Published: Aug. 25, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6998

    Stack-based buffer overflow in chrome/common/gfx/url_elider.cc in Google Chrome 0.2.149.27 and other versions before 0.2.149.29 might allow user-assisted remote attackers to execute arbitrary code via a link target (href attribute) with a large number of ... Read more

    Affected Products : chrome
    • Published: Aug. 19, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6936

    Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in a pres:// URI, a different vector than CVE-2008-6935.... Read more

    Affected Products : exodus
    • Published: Aug. 11, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6897

    Multiple buffer overflows in Getleft.exe in Andres Garcia Getleft 1.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) "a" HTML tag; a long src attribute in (2) embed, (3) img, or (4) script ta... Read more

    Affected Products : getleft
    • Published: Aug. 05, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6898

    Buffer overflow in the XHTTP Module 4.1.0.0 in the ActiveX control for SaschArt SasCam Webcam Server 2.6.5 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long argument to the Get method and other unspecified m... Read more

    Affected Products : sascam_webcam_server
    • Published: Aug. 05, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6953

    Buffer overflow in oovoo.exe in ooVoo 1.7.1.35, and possibly other versions before 1.7.1.59, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long oovoo: URI.... Read more

    Affected Products : oovoo
    • Published: Aug. 12, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6922

    Multiple stack-based buffer overflows in CMailCOM.dll in CMailServer 5.4.6 allow remote attackers to execute arbitrary code via a long argument to the (1) CreateUserPath, (2) Logout, (3) DeleteMailByUID, (4) MoveToInbox, (5) MoveToFolder, (6) DeleteMailEx... Read more

    Affected Products : cmailserver
    • Published: Aug. 10, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6731

    Unrestricted file upload vulnerability in submitlink.php in FlexPHPLink Pro 0.0.7 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the renamed file in linkpho... Read more

    Affected Products : flexphplink
    • Published: Apr. 20, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6734

    Directory traversal vulnerability in Public/index.php in Keller Web Admin CMS 0.94 Pro allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the action parameter.... Read more

    Affected Products : kwa
    • Published: Apr. 21, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6583

    Buffer overflow in BS.player 2.27 build 959 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .SRT file.... Read more

    Affected Products : bs.player
    • Published: Apr. 03, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-6363

    Stack-based buffer overflow in DesignWorks Professional 4.3.1 and 5.0.7 allows remote attackers to execute arbitrary code via a crafted .cct file. NOTE: some of these details are obtained from third party information.... Read more

    Affected Products : designworks
    • Published: Mar. 02, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-5868

    Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows user-assisted attackers to execute arbitrary code via a long ProxyLogin value in a configuration (.cfg) file.... Read more

    Affected Products : intellitamper
    • Published: Jan. 08, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-5876

    Buffer overflow in Irrlicht before 1.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors in the B3D loader.... Read more

    Affected Products : irrlicht
    • Published: Jan. 08, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-5839

    Buffer overflow in Foxmail 6.5 allows remote attackers to execute arbitrary code via a long mailto URI in the HREF attribute of an A element.... Read more

    Affected Products : foxmail
    • Published: Jan. 05, 2009
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-5753

    Stack-based buffer overflow in BulletProof FTP Client 2.63 and 2010 allows user-assisted attackers to execute arbitrary code via a bookmark file entry with a long host name, which appears as a host parameter within the quick-connect bar.... Read more

    Affected Products : bulletproof_ftp_client
    • Published: Dec. 30, 2008
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-5711

    Heap-based buffer overflow in the Facebook PhotoUploader ActiveX control 5.0.14.0 and earlier allows remote attackers to execute arbitrary code via a long FileMask property value.... Read more

    Affected Products : photouploader
    • Published: Dec. 24, 2008
    • Modified: Apr. 09, 2025

  • 9.3

    HIGH
    CVE-2008-5735

    Stack-based buffer overflow in skin.c in CoolPlayer 2.17 through 2.19 allows remote attackers to execute arbitrary code via a large PlaylistSkin value in a skin file.... Read more

    Affected Products : coolplayer
    • Published: Dec. 26, 2008
    • Modified: Apr. 09, 2025
Showing 20 of 294513 Results