Total
241098 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0037 | 1 Noffle | 1 Noffle | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflows in noffle news server 1.0.1 and earlier allow remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code. | |||||
CVE-2000-0406 | 1 Netscape | 1 Communicator | 2024-02-04 | 2.6 LOW | N/A |
Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the "Acros-Suencksen SSL" vulnerability. | |||||
CVE-2003-1274 | 1 Nullsoft | 1 Winamp | 2024-02-04 | 5.0 MEDIUM | N/A |
Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux. | |||||
CVE-2001-1334 | 1 Phpslash | 1 Phpslash | 2024-02-04 | 5.0 MEDIUM | N/A |
Block_render_url.class in PHPSlash 0.6.1 allows remote attackers with PHPSlash administrator privileges to read arbitrary files by creating a block and specifying the target file as the source URL. | |||||
CVE-2004-1859 | 1 Trend Micro | 1 Interscan Viruswall For Windows Nt | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Trend Micro Interscan Web Viruswall in InterScan VirusWall 3.5x allows remote attackers to read arbitrary files via a .. (dot dot) in the URL. | |||||
CVE-2004-1326 | 1 Ultrix | 1 Dxterm | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in dxterm in Ultrix 4.5 allows local users to execute arbitrary code via a long -setup parameter. | |||||
CVE-1999-0935 | 2024-02-04 | 10.0 HIGH | N/A | ||
classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form. | |||||
CVE-2004-0920 | 1 Symantec | 1 Norton Antivirus | 2024-02-04 | 5.0 MEDIUM | N/A |
Symantec Norton AntiVirus 2004, and earlier versions, allows a virus or other malicious code to avoid detection or cause a denial of service (application crash) using a filename containing an MS-DOS device name. | |||||
CVE-2002-0569 | 1 Oracle | 1 Application Server | 2024-02-04 | 7.5 HIGH | N/A |
Oracle 9i Application Server allows remote attackers to bypass access restrictions for configuration files via a direct request to the XSQL Servlet (XSQLServlet). | |||||
CVE-2003-0734 | 1 Padl Software | 1 Pam Ldap | 2024-02-04 | 10.0 HIGH | N/A |
Unknown vulnerability in the pam_filter mechanism in pam_ldap before version 162, when LDAP based authentication is being used, allows users to bypass host-based access restrictions and log onto the system. | |||||
CVE-2002-1534 | 1 Macromedia | 1 Flash Player | 2024-02-04 | 5.0 MEDIUM | N/A |
Macromedia Flash Player allows remote attackers to read arbitrary files via XML script in a .swf file that is hosted on a remote SMB share. | |||||
CVE-2000-1057 | 1 Hp | 1 Openview Network Node Manager | 2024-02-04 | 4.6 MEDIUM | N/A |
Vulnerabilities in database configuration scripts in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows local users to gain privileges, possibly via insecure permissions. | |||||
CVE-2004-0123 | 1 Microsoft | 7 Windows 2000, Windows 2003 Server, Windows 98 and 4 more | 2024-02-04 | 7.5 HIGH | N/A |
Double free vulnerability in the ASN.1 library as used in Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service and possibly execute arbitrary code. | |||||
CVE-1999-0640 | 2024-02-04 | 10.0 HIGH | N/A | ||
The Gopher service is running. | |||||
CVE-2004-0795 | 1 Ibm | 1 Db2 Universal Database | 2024-02-04 | 7.2 HIGH | N/A |
DB2 8.1 remote command server (DB2RCMD.EXE) executes the db2rcmdc.exe program as the db2admin administrator, which allows local users to gain privileges via the DB2REMOTECMD named pipe. | |||||
CVE-1999-0673 | 1 Crear | 1 Almail32 | 2024-02-04 | 5.1 MEDIUM | N/A |
Buffer overflow in ALMail32 POP3 client via From: or To: headers. | |||||
CVE-2002-0071 | 1 Microsoft | 2 Internet Information Server, Internet Information Services | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names. | |||||
CVE-1999-0124 | 1 University Of Minnesota | 1 Gopherd | 2024-02-04 | 10.0 HIGH | N/A |
Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon. | |||||
CVE-2003-1450 | 1 Bitchx | 1 Bitchx | 2024-02-04 | 5.0 MEDIUM | N/A |
BitchX 75p3 and 1.0c16 through 1.0c20cvs allows remote attackers to cause a denial of service (segmentation fault) via a malformed RPL_NAMREPLY numeric 353 message. | |||||
CVE-2004-0451 | 2 Debian, Sup | 2 Debian Linux, Sup | 2024-02-04 | 10.0 HIGH | N/A |
Multiple format string vulnerabilities in the (1) logquit, (2) logerr, or (3) loginfo functions in Software Upgrade Protocol (SUP) allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog. |