The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,643 vulnerabilities with CWE-20
CVE-2008-4618
Linux Kernel < 2.6.27 - Denial of Service via SCTP Parameter Length Violation
CVE-2008-4616
SpamBam Plugin for WordPress - Comment Restriction Bypass via Server-Supplied Shared Key
CVE-2008-3479
Microsoft Message Queuing <Windows 2000 SP4 - RCE
CVE-2008-4400
CA ARCserve Backup r11.1-r12.0 - Denial of Service via Crafted Authentication Credentials
CVE-2008-4399
CA ARCserve Backup r11.1-r12.0 - Denial of Service via Crafted Request
CVE-2008-4398
CA ARCserve Backup r11.1-r12.0 - Denial of Service via Crafted Request
CVE-2008-4397
CA ARCserve Backup r11.1-r12.0 - Remote Command Execution via RPC Interface
CVE-2008-4549
ImageShack Toolbar 4.5.7 - Arbitrary File Upload via BuildSlideShow Method
CVE-2008-4441
Linksys WAP4400N 1.2.14 - Denial of Service via Malformed 802.11 Association Request
CVE-2008-4514
KDE Konqueror 3.5.9 - Denial of Service via Long Font Color Value
CVE-2008-4509
FOSS Gallery 1.0 beta - Unauthenticated Arbitrary File Upload via processFiles.php
CVE-2008-4505
IBM Lotus Quickr 8.1 - Denial of Service via Nonstandard OpenDocument URL Argument
CVE-2008-4500
Serv-U 7.0.0.1-7.3 - Authenticated Denial of Service via STOU Command
CVE-2008-4493
Microsoft Digital Image 2006 Starter Edition - Arbitrary File Upload via PicturePusher ActiveX Control
CVE-2008-4482
Xerces-C++ < 3.0.0 - Denial of Service via Large maxOccurs Value in XML Schema
CVE-2008-3834
D-bus <1.2.4 - DoS
CVE-2008-4428
Phlatline Personal Information Manager < 1.0 - Unauthenticated Arbitrary File Upload via upload.php
CVE-2008-4410
Linux Kernel 2.6.26.5 - Denial of Service via VMI LDT Entry Mismanagement
CVE-2008-4404
IBM zSeries - Denial of Service via IPv6 Neighbor Discovery Spoofing
CVE-2008-2476
Force10 FTOS - Denial of Service via IPv6 Neighbor Discovery Protocol Spoofing
CVE-2008-4380
Samsung DVR SHR2040 - Denial of Service via Malformed HTTP Request
CVE-2008-4366
Camera Life 2.6.2b4 - Authenticated Arbitrary File Upload via Image Upload Component
CVE-2008-4363
DESlock+ 3.2.7 - Denial of Service via DLMFENC_IOCTL Request
CVE-2008-4358
SPAW Editor PHP Edition < 2.0.8.1 - Directory Traversal via Theme Name
CVE-2008-4343
Chilkat XML ActiveX Control < 3.0.3.0 - Arbitrary File Write via SaveToFile, SaveToTempFile, or AppendBinary Method
Details
Vulnerabilities
12,643
Exploit Likelihood
High