Total
254713 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-0127 | 1 Netgear | 1 Rp114 | 2024-02-04 | 5.0 MEDIUM | N/A |
Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26, when configured to block traffic below port 1024, allows remote attackers to cause a denial of service (hang) via a port scan of the WAN port. | |||||
CVE-2002-2216 | 1 Soft3304 | 1 04webserver | 2024-02-04 | 5.0 MEDIUM | N/A |
Soft3304 04WebServer before 1.20 does not properly process URL strings, which allows remote attackers to obtain unspecified sensitive information. | |||||
CVE-1999-1028 | 1 Symantec | 1 Pcanywhere | 2024-02-04 | 5.0 MEDIUM | N/A |
Symantec pcAnywhere 8.0 allows remote attackers to cause a denial of service (CPU utilization) via a large amount of data to port 5631. | |||||
CVE-1999-0307 | 1 Hp | 1 Hp-ux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in HP-UX cstm program allows local users to gain root privileges. | |||||
CVE-1999-0685 | 1 Netscape | 1 Communicator | 2024-02-04 | 5.1 MEDIUM | N/A |
Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option. | |||||
CVE-2004-0337 | 1 Software602 | 1 602pro Lan Suite | 2024-02-04 | 6.8 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in LAN SUITE Web Mail 602Pro allows remote attackers to execute arbitrary script or HTML as other users via a URL to index.html, followed by a / (slash) and the desired script. NOTE: the vendor states that this bug could not be reproduced, so this issue may be REJECTed in the future. | |||||
CVE-1999-0485 | 1 Openbsd | 1 Openbsd | 2024-02-04 | 2.6 LOW | N/A |
Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD. | |||||
CVE-2004-1996 | 1 Simple Machines | 1 Smf | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 1.0 allows remote attackers to inject arbitrary web script via the size tag. | |||||
CVE-2000-0225 | 1 Deti Fliegl | 1 Poc32 | 2024-02-04 | 5.0 MEDIUM | N/A |
The Pocsag POC32 program does not properly prevent remote users from accessing its server port, even if the option has been disabled. | |||||
CVE-2004-2054 | 1 Phpbb Group | 1 Phpbb | 2024-02-04 | 5.0 MEDIUM | N/A |
CRLF injection vulnerability in PhpBB 2.0.4 and 2.0.9 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via (1) the mode parameter to privmsg.php or (2) the redirect parameter to login.php. | |||||
CVE-2000-0798 | 1 Sgi | 1 Irix | 2024-02-04 | 10.0 HIGH | N/A |
The truncate function in IRIX 6.x does not properly check for privileges when the file is in the xfs file system, which allows local users to delete the contents of arbitrary files. | |||||
CVE-2000-1083 | 1 Microsoft | 2 Data Engine, Sql Server | 2024-02-04 | 2.1 LOW | N/A |
The xp_showcolv function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability. | |||||
CVE-2002-0089 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in admintool in Solaris 2.5 through 8 allows local users to gain root privileges via long arguments to (1) the -d command line option, or (2) the PRODVERS argument in the .cdtoc file. | |||||
CVE-2004-0304 | 1 Webcortex | 1 Webstores 2000 | 2024-02-04 | 10.0 HIGH | N/A |
SQL injection vulnerability in browse_items.asp in WebCortex WebStores 2000 6.0 allows remote attackers to gain unauthorized access and execute arbitrary commands via the Search_Text parameter. | |||||
CVE-2001-1229 | 2 Icecast, Libshout | 2 Icecast, Libshout | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflows in (1) Icecast before 1.3.9 and (2) libshout before 1.0.4 allow remote attackers to cause a denial of service (crash) and execute arbitrary code. | |||||
CVE-2004-1436 | 1 Cisco | 1 Optical Networking Systems Software | 2024-02-04 | 7.5 HIGH | N/A |
The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters. | |||||
CVE-2002-2242 | 1 Kismac | 1 Kismac | 2024-02-04 | 6.4 MEDIUM | N/A |
The Apple Package Manager in KisMAC 0.02a and earlier modifies file permissions of sensitive files after installation, which could allow attackers to conduct unauthorized activities on those files. | |||||
CVE-2002-1119 | 1 Python | 1 Python | 2024-02-04 | 4.6 MEDIUM | N/A |
os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack. | |||||
CVE-1999-1171 | 2 Ipswitch, Progress | 2 Imail, Ipswitch Ws Ftp Server | 2024-02-04 | 4.6 MEDIUM | N/A |
IPswitch WS_FTP allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920. | |||||
CVE-2000-0116 | 1 Checkpoint | 1 Firewall-1 | 2024-02-04 | 7.5 HIGH | N/A |
Firewall-1 does not properly filter script tags, which allows remote attackers to bypass the "Strip Script Tags" restriction by including an extra < in front of the SCRIPT tag. |