Vulnerabilities (CVE)

Vendor filter

Intel Subscribe

Filter

204 total CVE
CVE Vendors Products Updated CVSS
CVE-2010-0291 3 Intel, Linux, Debian 4 Kernel, Linux Kernel, E1000 and 1 more 2018-11-16 4.6
The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial of service (panic) by calling the (1) mmap or (2) mremap function, aka the "do_mremap() mess" or "mremap/mmap mess."
CVE-2010-0003 3 Intel, Linux, Debian 4 Kernel, Linux Kernel, E1000 and 1 more 2018-11-16 5.4
The print_fatal_signal function in kernel/signal.c in the Linux kernel before 2.6.32.4 on the i386 platform, when print-fatal-signals is enabled, allows local users to discover the contents of arbitrary memory locations by jumping to an address...
CVE-2009-4538 3 Intel, Linux, Debian 4 Kernel, Linux Kernel, E1000 and 1 more 2018-11-16 10.0
drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets,...
CVE-2009-4537 3 Intel, Linux, Debian 4 Kernel, Linux Kernel, E1000 and 1 more 2018-11-16 7.8
drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to (1) cause a denial of service (temporary network outage)...
CVE-2009-4536 3 Intel, Linux, Debian 4 Kernel, Linux Kernel, E1000 and 1 more 2018-11-16 7.8
drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to...
CVE-2010-0006 2 Intel, Linux 3 Kernel, Linux Kernel, E1000 2018-11-13 7.1
The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.32.4, when network namespaces are enabled, allows remote attackers to cause a denial of service (NULL pointer dereference) via an invalid IPv6 jumbogram, a related...
CVE-2018-3640 2 Arm, Intel 19 Cortex-a, Atom C, Atom E and 16 more 2018-10-31 4.7
Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka...
CVE-2010-3268 2 Intel, Symantec 3 Antivirus, Intel Alert Management System, Endpoint Protection 2018-10-30 5.0
The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec Antivirus Corporate Edition 10.1.4.4010 on...
CVE-2008-3635 2 Intel, Apple 2 Quicktime, Indeo 2018-10-30 9.3
Stack-based buffer overflow in QuickTimeInternetExtras.qtx in an unspecified third-party Indeo v3.2 (aka IV32) codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, allows remote attackers to execute arbitrary code or cause...
CVE-2018-10932 1 Intel 1 Lldptool 2018-10-23 3.3
lldptool version 1.0.1 and older can print a raw, unsanitized attacker controlled buffer when mngAddr information is displayed. This may allow an attacker to inject shell control characters into the buffer and impact the behavior of the terminal.
CVE-2005-4625 2 Intel, Ati 2 Display Adapter Driver, Catalyst Driver 2018-10-19 7.1
Drivers for certain display adapters, including (1) an unspecified ATI driver and (2) an unspecified Intel driver, might allow remote attackers to cause a denial of service (system crash) via a large JPEG image, as demonstrated in Internet...
CVE-2018-12163 1 Intel 1 Iot Developers Kit 2018-10-19 6.8
A DLL injection vulnerability in the Intel IoT Developers Kit 4.0 installer may allow an authenticated user to potentially escalate privileges using file modification via local access.
CVE-2006-2316 1 Intel 1 Proset Wireless 2018-10-18 4.9
S24EvMon.exe in the Intel PROset/Wireless software, possibly 10.1.0.33, uses a S24EventManagerSharedMemory shared memory section with weak permissions, which allows local users to read or modify passwords or other data, or cause a denial of service.
CVE-2006-6385 1 Intel 4 Pro 10gbe Adapters, Pro 1000 Pcie Adapters, Pro 10 100 Adapters and 1 more 2018-10-17 7.2
Stack-based buffer overflow in Intel PRO 10/100, PRO/1000, and PRO/10GbE PCI, PCI-X, and PCIe network adapter drivers (aka NDIS miniport drivers) before 20061205 allows local users to execute arbitrary code with "kernel-level" privileges via an...
CVE-2008-3900 1 Intel 1 Bios 2018-10-11 2.1
Intel firmware PE94510M.86A.0050.2007.0710.1559 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memory...
CVE-2017-5692 1 Intel 1 Graphics Driver 2018-10-11 2.1
Out-of-bounds read condition in older versions of some Intel Graphics Driver for Windows code branches allows local users to perform a denial of service attack.
CVE-2009-1385 2 Intel, Linux 3 Kernel, Linux Kernel, E1000 2018-10-10 7.8
Integer underflow in the e1000_clean_rx_irq function in drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel before 2.6.30-rc8, the e1000e driver in the Linux kernel, and Intel Wired Ethernet (aka e1000) before 7.5.5 allows...
CVE-2018-3615 1 Intel 4 Core I3, Core I5, Core I7 and 1 more 2018-10-10 5.4
Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via...
CVE-2016-5672 1 Intel 1 Crosswalk 2018-10-09 5.8
Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all invalid X.509 certificates should be accepted...
CVE-2016-1493 1 Intel 1 Driver Update Utility 2018-10-09 7.6
Intel Driver Update Utility before 2.4 retrieves driver updates in cleartext, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted file.