Total
240531 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2002-0906 | 1 Sendmail | 1 Sendmail | 2024-02-04 | 7.5 HIGH | N/A |
| Buffer overflow in Sendmail before 8.12.5, when configured to use a custom DNS map to query TXT records, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malicious DNS server. | |||||
| CVE-2002-2128 | 1 W-agora | 1 W-agora | 2024-02-04 | 4.6 MEDIUM | N/A |
| editform.php in w-Agora 4.1.5 allows local users to execute arbitrary PHP code via .. (dot dot) sequences in the file parameter. | |||||
| CVE-2003-0012 | 1 Mozilla | 1 Bugzilla | 2024-02-04 | 2.1 LOW | N/A |
| The data collection script for Bugzilla 2.14.x before 2.14.5, 2.16.x before 2.16.2, and 2.17.x before 2.17.3 sets world-writable permissions for the data/mining directory when it runs, which allows local users to modify or delete the data. | |||||
| CVE-1999-1120 | 1 Sgi | 1 Irix | 2024-02-04 | 4.6 MEDIUM | N/A |
| netprint in SGI IRIX 6.4 and earlier trusts the PATH environmental variable for finding and executing the disable program, which allows local users to gain privileges. | |||||
| CVE-2001-0978 | 1 Hp | 1 Hp-ux | 2024-02-04 | 7.5 HIGH | N/A |
| login in HP-UX 10.26 does not record failed login attempts in /var/adm/btmp, which could allow attackers to conduct brute force password guessing attacks without being detected or observed using the lastb program. | |||||
| CVE-2001-1310 | 1 Ibm | 1 Secureway Directory | 2024-02-04 | 7.5 HIGH | N/A |
| IBM SecureWay 3.2.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, via invalid encodings for the L field of a BER encoding, as demonstrated by the PROTOS LDAPv3 test suite. | |||||
| CVE-2002-1500 | 1 Netbsd | 1 Netbsd | 2024-02-04 | 7.2 HIGH | N/A |
| Buffer overflow in (1) mrinfo, (2) mtrace, and (3) pppd in NetBSD 1.4.x through 1.6 allows local users to gain privileges by executing the programs after filling the file descriptor tables, which produces file descriptors larger than FD_SETSIZE, which are not checked by FD_SET(). | |||||
| CVE-1999-1252 | 1 Sco | 1 Unixware | 2024-02-04 | 7.2 HIGH | N/A |
| Vulnerability in a certain system call in SCO UnixWare 2.0.x and 2.1.0 allows local users to access arbitrary files and gain root privileges. | |||||
| CVE-2000-0230 | 2 Halloween, Redhat | 2 Halloween Linux, Linux | 2024-02-04 | 7.2 HIGH | N/A |
| Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable. | |||||
| CVE-2000-0764 | 1 Intel | 1 Express 8100 | 2024-02-04 | 5.0 MEDIUM | N/A |
| Intel Express 500 series switches allow a remote attacker to cause a denial of service via a malformed IP packet. | |||||
| CVE-2004-2122 | 1 Intra Forum | 1 Intra Forum | 2024-02-04 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in intraforum_db.cgi in Intra Forum allows remote attackers to inject arbitrary web script or HTML via the (1) use_last_read or (2) forum parameters. | |||||
| CVE-2003-0820 | 1 Microsoft | 2 Word, Works | 2024-02-04 | 7.5 HIGH | N/A |
| Microsoft Word 97, 98(J), 2000, and 2002, and Microsoft Works Suites 2001 through 2004, do not properly check the length of the "Macro names" data value, which could allow remote attackers to execute arbitrary code via a buffer overflow attack. | |||||
| CVE-2003-1082 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.2 HIGH | N/A |
| Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4705891, a different vulnerability than CVE-2003-1068. | |||||
| CVE-1999-0339 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.2 HIGH | N/A |
| Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root access. | |||||
| CVE-2004-0666 | 1 Popclient | 1 Popclient | 2024-02-04 | 7.5 HIGH | N/A |
| Off-by-one error in the POP3_readmsg function in popclient 3.0b6 allows remote attackers to cause a denial of service (application crash) via an e-mail message with a certain line length, which leads to a buffer overflow. | |||||
| CVE-2001-0848 | 1 E-zone Media | 1 Fuse Talk | 2024-02-04 | 4.6 MEDIUM | N/A |
| join.cfm in e-Zone Media Fuse Talk allows a local user to execute arbitrary SQL code via a semi-colon (;) in a form variable. | |||||
| CVE-2004-1905 | 1 Panda | 1 Activescan | 2024-02-04 | 5.0 MEDIUM | N/A |
| ascontrol.dll in Panda ActiveScan 5.0 allows remote attackers to cause a denial of service (crash) by calling the SetSitesFile function. | |||||
| CVE-2004-2199 | 1 Duware | 1 Duclassified | 2024-02-04 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in DUware DUclassified 4.0 allows remote attackers to inject arbitrary web script or HTML via the message text. | |||||
| CVE-2004-1437 | 1 Pavuk | 1 Pavuk | 2024-02-04 | 7.5 HIGH | N/A |
| Multiple buffer overflows in the digest authentication functionality in Pavuk 0.9.28-r2 and earlier allow remote attackers to execute arbitrary code. | |||||
| CVE-2002-2003 | 1 Compaq | 1 Tru64 | 2024-02-04 | 5.0 MEDIUM | N/A |
| ypbind in Compaq Tru64 4.0F, 4.0G, 5.0A, 5.1 and 5.1A allows remote attackers to cause the process to core dump via certain network packets generated by nmap. | |||||