| | CVE-2008-4788 | Microsoft | medium | 5.0 | 16.5%
| | Microsoft Internet Explorer 6 omits high-bit URL-encoded characters when displaying the address bar,… | Oct 29, 2008 | Apr 23, 2026 |
| | CVE-2008-4787 | Microsoft | medium | 5.8 | 37.4%
| | Visual truncation vulnerability in Microsoft Internet Explorer 6 allows remote attackers to spoof th… | Oct 29, 2008 | Apr 23, 2026 |
| | CVE-2007-4349 | HPE | medium | 4.3 | 1.0%
| | The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Perfo… | Oct 23, 2008 | Apr 23, 2026 |
| | CVE-2008-4699 | Microsoft | critical | 9.3 | 39.2%
| | Insecure method vulnerability in the ActiveX control (PAWWeb11.ocx) in Peachtree Accounting 2004 all… | Oct 22, 2008 | Apr 23, 2026 |
| | CVE-2007-4350 | HPE | medium | 4.3 | 0.8%
| | Cross-site scripting (XSS) vulnerability in the management interface in HP SiteScope 9.0 build 911 a… | Oct 21, 2008 | Apr 23, 2026 |
| | CVE-2008-1547 | Microsoft | medium | 4.3 | 63.1%
| | Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access (OWA) for Excha… | Oct 21, 2008 | Apr 23, 2026 |
| | CVE-2008-4412 | HPE | medium | 5.0 | 0.9%
| | Unspecified vulnerability in HP Systems Insight Manager (SIM) before 5.2 Update 2 (C.05.02.02.00) al… | Oct 17, 2008 | Apr 23, 2026 |
| | CVE-2008-4020 | Microsoft | medium | 4.3 | 31.3%
| | Cross-site scripting (XSS) vulnerability in Microsoft Office XP SP3 allows remote attackers to injec… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-4019 | Microsoft | critical | 9.3 | 58.6%
| | Integer overflow in the REPT function in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-3477 | Microsoft | critical | 9.3 | 71.3%
| | Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3 does not properly validate data in the VBA … | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-3476 | Microsoft | critical | 9.3 | 62.6%
| | Microsoft Internet Explorer 5.01 SP4 and 6 does not properly handle errors associated with access to… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-3475 | Microsoft | high | 8.8 | 59.2%
| | Microsoft Internet Explorer 6 does not properly handle errors related to using the componentFromPoin… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-3474 | Microsoft | medium | 6.5 | 48.9%
| | Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origi… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-3473 | Microsoft | critical | 9.3 | 47.0%
| | Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origi… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-3472 | Microsoft | critical | 9.3 | 46.0%
| | Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origi… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-3471 | Microsoft | critical | 9.3 | 73.2%
| | Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold a… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-3466 | Microsoft | critical | 10.0 | 84.7%
| | Microsoft Host Integration Server (HIS) 2000, 2004, and 2006 does not limit RPC access to administra… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-1446 | Microsoft | critical | 9.0 | 67.0%
| | Integer overflow in the Internet Printing Protocol (IPP) ISAPI extension in Microsoft Internet Infor… | Oct 15, 2008 | Apr 23, 2026 |
| | CVE-2008-4545 | Cisco | medium | 4.0 | 0.3%
| | Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8 uses weak permis… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4544 | Cisco | medium | 5.0 | 3.4%
| | Unspecified vulnerability in an unspecified Microsoft API, as used by Cisco Unity and possibly other… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4543 | Cisco | high | 7.1 | 1.2%
| | Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anon… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4542 | Cisco | low | 3.5 | 0.3%
| | Cross-site scripting (XSS) vulnerability in Cisco Unity 4.x before 4.2(1)ES162, 5.x before 5.0(1)ES5… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4411 | HPE | medium | 4.3 | 0.4%
| | Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 2.1.15.210 on… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-3545 | HPE | high | 7.8 | 2.7%
| | Unspecified vulnerability in ovtopmd in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-3544 | HPE | critical | 9.0 | 36.7%
| | Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.5… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-3271 | Apache | medium | 4.3 | 4.3%
| | Apache Tomcat 5.5.0 and 4.1.0 through 4.1.31 allows remote attackers to bypass an IP address restric… | Oct 13, 2008 | Apr 23, 2026 |
| | CVE-2008-4493 | Microsoft | medium | 6.8 | 42.1%
| | Microsoft PicturePusher ActiveX control (PipPPush.DLL 7.00.0709), as used in Microsoft Digital Image… | Oct 8, 2008 | Apr 23, 2026 |
| | CVE-2008-3814 | Cisco | medium | 5.8 | 0.5%
| | Unspecified vulnerability in Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x befo… | Oct 8, 2008 | Apr 23, 2026 |
| | CVE-2008-4482 | Apache | high | 7.8 | 2.0%
| | The XML parser in Xerces-C++ before 3.0.0 allows context-dependent attackers to cause a denial of se… | Oct 8, 2008 | Apr 23, 2026 |
| | CVE-2008-3543 | HPE | high | 7.8 | 4.7%
| | Unspecified vulnerability in NFS / ONCplus B.11.31_04 and earlier on HP-UX B.11.31 allows remote att… | Oct 7, 2008 | Apr 23, 2026 |
| | CVE-2008-4279 | VMware | medium | 6.8 | 0.1%
| | The CPU hardware emulation for 64-bit guest operating systems in VMware Workstation 6.0.x before 6.0… | Oct 6, 2008 | Apr 23, 2026 |
| | CVE-2008-4278 | VMware | low | 2.1 | 0.1%
| | VMware VirtualCenter 2.5 before Update 3 build 119838 on Windows displays a user's password in clear… | Oct 6, 2008 | Apr 23, 2026 |
| | CVE-2008-4381 | Microsoft | medium | 5.0 | 30.1%
| | Microsoft Internet Explorer 7 allows remote attackers to cause a denial of service (application cras… | Oct 2, 2008 | Apr 23, 2026 |
| | CVE-2008-3542 | HPE | high | 7.8 | 2.0%
| | Unspecified vulnerability in HP Insight Diagnostics before 7.9.1.2402 allows remote attackers to rea… | Oct 2, 2008 | Apr 23, 2026 |
| | CVE-2008-4326 | Microsoft | medium | 4.3 | 0.4%
| | The PMA_escapeJsString function in libraries/js_escape.lib.php in phpMyAdmin before 2.11.9.2, when I… | Sep 30, 2008 | Apr 23, 2026 |
| | CVE-2008-4301 | Microsoft | critical | 10.0 | 26.4%
| | A certain ActiveX control in iisext.dll in Microsoft Internet Information Services (IIS) allows remo… | Sep 29, 2008 | Apr 23, 2026 |
| | CVE-2008-4300 | Microsoft | medium | 5.0 | 14.2%
| | A certain ActiveX control in adsiis.dll in Microsoft Internet Information Services (IIS) allows remo… | Sep 29, 2008 | Apr 23, 2026 |
| | CVE-2008-4299 | Microsoft | medium | 5.0 | 23.2%
| | A certain ActiveX control in the Microsoft Internet Authentication Service (IAS) Helper COM Componen… | Sep 29, 2008 | Apr 23, 2026 |
| | CVE-2008-3801 | Cisco | high | 7.1 | 1.9%
| | Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 … | Sep 26, 2008 | Apr 23, 2026 |
| | CVE-2008-3800 | Cisco | high | 7.1 | 1.9%
| | Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 … | Sep 26, 2008 | Apr 23, 2026 |
| | CVE-2008-4127 | Microsoft | medium | 4.3 | 23.6%
| | Mshtml.dll in Microsoft Internet Explorer 7 Gold 7.0.5730 and 8 Beta 8.0.6001 on Windows XP SP2 allo… | Sep 18, 2008 | Apr 23, 2026 |
| | CVE-2008-4110 | Microsoft | high | 7.6 | 38.3%
| | Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Micros… | Sep 16, 2008 | Apr 23, 2026 |
| | CVE-2008-4071 | Microsoft | medium | 5.0 | 6.1%
| | A certain ActiveX control in Adobe Acrobat 9, when used with Microsoft Windows Vista and Internet Ex… | Sep 15, 2008 | Apr 23, 2026 |
| | CVE-2008-3957 | Microsoft | critical | 9.3 | 40.1%
| | The Microsoft Windows Image Acquisition Logger ActiveX control allows remote attackers to force the … | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3956 | Microsoft | critical | 9.3 | 43.6%
| | orgchart.exe in Microsoft Organization Chart 2.00 allows user-assisted attackers to cause a denial o… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3539 | HPE | low | 2.1 | 0.1%
| | Unspecified vulnerability in HP OpenView Select Identity (HPSI) Connectors on Windows, as used in HP… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3015 | Microsoft | critical | 9.3 | 71.5%
| | Integer overflow in gdiplus.dll in GDI+ in Microsoft Office XP SP3, Office 2003 SP2 and SP3, 2007 Mi… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3014 | Microsoft | critical | 9.3 | 73.8%
| | Buffer overflow in gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3,… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3013 | Microsoft | critical | 9.3 | 67.4%
| | gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 an… | Sep 11, 2008 | Apr 23, 2026 |
| | CVE-2008-3012 | Microsoft | critical | 9.3 | 68.4%
| | gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 an… | Sep 11, 2008 | Apr 23, 2026 |