Vulnerabilities > Resource Management Errors

DATE CVE VULNERABILITY TITLE RISK
2008-02-01 CVE-2007-6698 Resource Management Errors vulnerability in Openldap 2.0
The BDB backend for slapd in OpenLDAP before 2.3.36 allows remote authenticated users to cause a denial of service (crash) via a potentially-successful modify operation with the NOOP control set to critical, possibly due to a double free vulnerability.
network
low complexity
openldap CWE-399
4.0
2008-01-29 CVE-2007-6694 Resource Management Errors vulnerability in Linux Kernel
The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 through 2.6.18-53, when running on PowerPC, might allow local users to cause a denial of service (crash) via unknown vectors that cause the of_get_property function to fail, which triggers a NULL pointer dereference.
network
low complexity
linux apple CWE-399
7.8
2008-01-29 CVE-2007-4771 Resource Management Errors vulnerability in Icu-Project International Components for Unicode
Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of service (memory consumption) and possibly have unspecified other impact via a regular expression that writes a large amount of data to the backtracking stack.
network
icu-project CWE-399
critical
9.3
2008-01-29 CVE-2007-4770 Resource Management Errors vulnerability in Icu-Project International Components for Unicode
libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
6.8
2008-01-17 CVE-2008-0324 Resource Management Errors vulnerability in Cisco VPN Client 5.0.2.0090
Cisco Systems VPN Client IPSec Driver (CVPNDRVA.sys) 5.0.02.0090 allows local users to cause a denial of service (crash) by calling the 0x80002038 IOCTL with a small size value, which triggers memory corruption.
local
low complexity
cisco CWE-399
4.9
2008-01-16 CVE-2008-0033 Resource Management Errors vulnerability in Apple Quicktime
Unspecified vulnerability in Apple QuickTime before 7.4 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a movie file with Image Descriptor (IDSC) atoms containing an invalid atom size, which triggers memory corruption.
network
apple CWE-399
critical
9.3
2008-01-16 CVE-2008-0032 Resource Management Errors vulnerability in Apple Quicktime
Apple QuickTime before 7.4 allows remote attackers to execute arbitrary code via a movie file containing a Macintosh Resource record with a modified length value in the resource header, which triggers heap corruption.
network
apple CWE-399
5.8
2008-01-16 CVE-2007-5656 Resource Management Errors vulnerability in Tibco products
TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service (EMS) 4.0.0 through 4.4.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted requests that control loop operations related to memory.
network
low complexity
tibco CWE-399
critical
10.0
2008-01-16 CVE-2008-0035 Resource Management Errors vulnerability in Apple Safari
Unspecified vulnerability in Foundation, as used in Apple iPhone 1.0 through 1.1.2, iPod touch 1.1 through 1.1.2, and Mac OS X 10.5 through 10.5.1, allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted URL that triggers memory corruption in Safari.
network
apple CWE-399
6.8
2008-01-16 CVE-2008-0031 Resource Management Errors vulnerability in Apple Quicktime
Unspecified vulnerability in Apple QuickTime before 7.4 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted Sorenson 3 video file, which triggers memory corruption.
network
apple CWE-399
5.8