2006 CVE Vulnerabilities

7,145 CVEs published in 2006.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2006-3649Buffer overflow in Microsoft Visual Basic for Applications (VBA) SDK 6.0 through 6.4, as used by Microsoft Office 2000 S...
CVE-2006-3438Unspecified vulnerability in Microsoft Hyperlink Object Library (hlink.dll), possibly a buffer overflow, allows user-ass...
CVE-2006-3639Microsoft Internet Explorer 5.01 and 6 does not properly identify the originating domain zone when handling redirects, w...
CVE-2006-3449Unspecified vulnerability in Microsoft PowerPoint 2000 through 2003, possibly a buffer overflow, allows user-assisted re...
CVE-2006-3444Unspecified vulnerability in the kernel in Microsoft Windows 2000 SP4, probably a buffer overflow, allows local users to...
CVE-2006-3640Microsoft Internet Explorer 5.01 and 6 allows certain script to persist across navigations between pages, which allows r...
CVE-2006-4026PHP remote file inclusion vulnerability in SAPID CMS 123 rc3 allows remote attackers to execute arbitrary PHP code via a...
CVE-2006-4025SQL injection vulnerability in profile.php in XennoBB 2.1.0 and earlier allows remote authenticated users to execute arb...
CVE-2006-4023The ip2long function in PHP 5.1.4 and earlier may incorrectly validate an arbitrary string and return a valid network IP...
CVE-2006-3643Cross-site scripting (XSS) vulnerability in Internet Explorer 5.01 and 6 in Microsoft Windows 2000 SP4 permits access to...
CVE-2006-3450Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code by using the document.getElementByID Jav...
CVE-2006-3638Microsoft Internet Explorer 5.01 and 6 does not properly handle uninitialized COM objects, which allows remote attackers...
CVE-2006-3637Microsoft Internet Explorer 5.01 SP4 and 6 does not properly handle various HTML layout component combinations, which al...
CVE-2006-3451Microsoft Internet Explorer 5 SP4 and 6 do not properly garbage collect when "multiple imports are used on a styleSheets...
CVE-2006-3585Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS 2.1 SR1 allow remote attackers to inject arbitrary web...
CVE-2006-3583Session fixation vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to hijack web sessions via a crafted link a...
CVE-2006-3584Dynamic variable evaluation vulnerability in index.php in Jetbox CMS 2.1 SR1 allows remote attackers to overwrite config...
CVE-2006-3586SQL injection vulnerability in Jetbox CMS 2.1 SR1 allows remote attackers to execute arbitrary SQL commands via the (1) ...
CVE-2006-3114PC Tools AntiVirus 2.1.0.51 uses insecure default permissions on the "PC Tools AntiVirus" directory, which allows local ...
CVE-2006-3858IBM Informix Dynamic Server (IDS) before 9.40.xC8 and 10.00 before 10.00.xC4 stores passwords in plaintext in shared mem...
CVE-2006-3855The ifx_load_internal function in IBM Informix Dynamic Server (IDS) allows remote authenticated users to execute arbitra...
CVE-2006-3856IBM Informix Dynamic Server (IDS) before 9.40.xC7 and 10.00 before 10.00.xC3 allows local users to cause a denial of ser...
CVE-2006-3861IBM Informix Dynamic Server (IDS) before 9.40.xC7 and 10.00 before 10.00.xC3 does not use database creation permissions,...
CVE-2006-3862Buffer overflow in IBM Informix Dynamic Server (IDS) 9.40.TC5 through 9.40.xC7 and 10.00.TC1 through 10.00.xC3 allows at...
CVE-2006-3853Buffer overflow in IBM Informix Dynamic Server (IDS) before 9.40.TC7 and 10.00 before 10.00.TC3, when running on Windows...

Check if your code is affected by 2006 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now