NVD-CWE-noinfo

CVE-2007-0910

February 26, 2023 by

Unspecified vulnerability in PHP before 5.2.1 allows attackers to “clobber” certain super-global variables via unspecified vectors.

The utrace support in Linux kernel 2.6.18, and other versions, allows local users to cause a denial of service (system hang) related to “MT exec + utrace_attach spin failure mode,” as demonstrated by ptrace-thrash.c.

CVE-2007-0775

February 26, 2023 by

Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allow remote attackers to cause a denial of service (crash) and potentially execute arbitrary code via certain vectors.

CVE-2007-0720

February 26, 2023 by

The CUPS service on multiple platforms allows remote attackers to cause a denial of service (service hang) via a “partially-negotiated” SSL connection, which prevents other requests from being accepted.

CVE-2007-0671

February 26, 2023 by

Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as demonstrated by Exploit-MSExcel.h in targeted zero-day attacks.

CVE-2007-0626

February 26, 2023 by

The comment_form_add_preview function in comment.module in Drupal before 4.7.6, and 5.x before 5.1, and vbDrupal, allows remote attackers with “post comments” privileges and access to multiple input filters to execute arbitrary code by previewing comments, which are not processed by “normal form validation routines.”