Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-12-08 | CVE-2009-3844 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in HP Openview Data Protector Application Recovery Manager 5.50/6.0 Stack-based buffer overflow in the OmniInet process in HP OpenView Data Protector Application Recovery Manager 5.50 and 6.0 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted MSG_PROTOCOL packet. | 10.0 |
| 2009-12-08 | CVE-2009-1569 | Buffer Errors vulnerability in Novell Iprint 4.38/5.30 Multiple stack-based buffer overflows in Novell iPrint Client 4.38, 5.30, and possibly other versions before 5.32 allow remote attackers to execute arbitrary code via vectors related to (1) Date and (2) Time. | 9.3 |
| 2009-12-08 | CVE-2009-1568 | Buffer Errors vulnerability in Novell Iprint Client 5.30/5.31 Stack-based buffer overflow in ienipp.ocx in Novell iPrint Client 5.30, and possibly other versions before 5.32, allows remote attackers to execute arbitrary code via a long target-frame parameter. | 9.3 |
| 2009-12-08 | CVE-2009-4225 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in CA Etrust Pestpatrole Ppctl.Dll Activex 5.6.7.9 Stack-based buffer overflow in the PestPatrol ActiveX control (ppctl.dll) 5.6.7.9 in CA eTrust PestPatrol allows remote attackers to execute arbitrary code via a long argument to the Initialize method. | 9.3 |
| 2009-12-08 | CVE-2009-3994 | Buffer Errors vulnerability in Denton Woods Devil 1.7.8 Stack-based buffer overflow in the GetUID function in src-IL/src/il_dicom.c in DevIL 1.7.8 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted DICOM file. | 9.3 |
| 2009-12-07 | CVE-2009-4216 | Path Traversal vulnerability in Klinza Professional CMS Directory traversal vulnerability in funzioni/lib/menulast.php in klinza professional cms 5.0.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. | 9.3 |
| 2009-12-04 | CVE-2009-4211 | Permissions, Privileges, and Access Controls vulnerability in Disa SRR for Solaris The U.S. | 9.3 |
| 2009-12-04 | CVE-2009-4201 | Buffer Errors vulnerability in Assistanttools MP3 TAG Assistance Professional 2.92 Multiple stack-based buffer overflows in Mp3 Tag Assistant Professional 2.92 build 300 allow remote attackers to execute arbitrary code via an MP3 file with a long string in the (1) ID3v1, (2) ID3v2, or (3) APEv2 metadata field. | 9.3 |
| 2009-12-04 | CVE-2009-4148 | Code Injection vulnerability in Daz3D DAZ Studio 2.3.3.161/2.3.3.163/3.0.1.135 DAZ Studio 2.3.3.161, 2.3.3.163, and 3.0.1.135 allows remote attackers to execute arbitrary JavaScript code via a (1) .ds, (2) .dsa, (3) .dse, or (4) .dsb file, as demonstrated by code that loads the WScript.Shell ActiveX control, related to a "script injection vulnerability." | 9.3 |
| 2009-12-04 | CVE-2009-4195 | Buffer Errors vulnerability in Adobe Illustrator 13.0.0/14.0.0 Buffer overflow in Adobe Illustrator CS4 14.0.0, CS3 13.0.3 and earlier, and CS3 13.0.0 allows remote attackers to execute arbitrary code via a long DSC comment in an Encapsulated PostScript (.eps) file. | 9.3 |