The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,643 vulnerabilities with CWE-20
CVE-2009-0478
Squid 2.7-2.7.STABLE5, 3.0-3.0.STABLE12, 3.1-3.1.0.4 - Denial of Service via Invalid HTTP Version Number
CVE-2009-0061
Cisco Wireless LAN Controller - Denial of Service via TSEC Driver IP Packet Handling
CVE-2009-0059
Cisco Wireless LAN Controller <4.2.176.0-5.2.157.0 - DoS
CVE-2009-0058
Cisco Wireless LAN Controller <4.2.176.0-5.2 - DoS
CVE-2009-0418
HP-UX B.11.11, B.11.23, B.11.31 - Denial of Service and Information Disclosure via Spoofed IPv6 NDP Messages
CVE-2009-0396
Sony Ericsson K530i K610i K618i K660i K810i W660i W880i W910i Z610i - Denial of Service via Malformed WAP Push Packet
CVE-2009-0372
Miltenovik Manojlo MemHT Portal <4.0.1 - RCE
CVE-2009-0311
EMC AutoStart < 5.3 - Remote Code Execution via Crafted Packet
CVE-2009-0289
k23productions TFTPUtil GUI <1.3.0 - DoS
CVE-2009-0267
OpenSolaris < snv_100 - Denial of Service via Malformed IKE Packet
CVE-2009-0258
TYPO3 4.0.0-4.0.9 4.1.0-4.1.7 4.2.0-4.2.3 - Remote Code Execution via Indexed Search Engine Filename
CVE-2009-0057
Cisco Unified Communications Manager <6.1.3 - DoS
CVE-2009-0008
Apple QuickTime MPEG-2 Playback Component <7.60.92.0 - DoS/RCE
CVE-2009-0173
IBM DB2 Universal Database - Denial of Service via Crafted Data Stream
CVE-2009-0172
IBM DB2 Universal Database 8-9.5 - Denial of Service via Crafted CONNECT Data Stream
CVE-2009-0029
Linux Kernel < 2.6.28 - Denial of Service via Improper Sign Extension in System Call ABI
CVE-2009-0120
IBM WebSphere DataPower XML Security Gateway XS40 - DoS
CVE-2009-0050
Lasso < 2.2.1 - Certificate Chain Validation Bypass via Malformed SSL/TLS Signature
CVE-2009-0022
Samba <3.2.7 - Privilege Escalation
CVE-2008-7316
MEDIUM
Linux Kernel < 2.6.25 - Denial of Service via Zero-Length iovec in writev System Call
CVSS 5.5
CVE-2008-7312
Websense Enterprise <6.3 - Open Redirect
CVE-2008-7299
IBM Tivoli Federated Identity Manager (TFIM) <6.2.0.2 - Open Redirect
CVE-2008-7289
IBM Tivoli Directory Server 5.2 - DoS
CVE-2008-7286
IBM Lotus Quickr 8.1 <8.1.0.2 - DoS
CVE-2008-7280
OTRS < 2.2.7 - Denial of Service via Malformed UTF-8 Email
Details
Vulnerabilities
12,643
Exploit Likelihood
High