Total
254537 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0896 | 1 Watchguard | 1 Soho Firewall | 2024-02-04 | 5.0 MEDIUM | N/A |
WatchGuard SOHO firewall allows remote attackers to cause a denial of service via a flood of fragmented IP packets, which causes the firewall to drop connections and stop forwarding packets. | |||||
CVE-2000-0444 | 1 Hp | 1 Jetadmin | 2024-02-04 | 5.0 MEDIUM | N/A |
HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000. | |||||
CVE-2003-0978 | 1 Gnu | 1 Privacy Guard | 2024-02-04 | 7.5 HIGH | N/A |
Format string vulnerability in gpgkeys_hkp (experimental HKP interface) for the GnuPG (gpg) client 1.2.3 and earlier, and 1.3.3 and earlier, allows remote attackers or a malicious keyserver to cause a denial of service (crash) and possibly execute arbitrary code during key retrieval. | |||||
CVE-2003-1212 | 1 Maxwebportal | 1 Maxwebportal | 2024-02-04 | 7.5 HIGH | N/A |
MaxWebPortal 1.30 allows remote attackers to perform unauthorized actions by modifying hidden form fields, such as the (1) news, (2) lock, or (3) allmem fields in the 'start new topic' HTML page. | |||||
CVE-2004-1946 | 1 Cherokee | 1 Cherokee Httpd | 2024-02-04 | 4.6 MEDIUM | N/A |
Format string vulnerability in the PRINT_ERROR function in common.c for Cherokee Web Server 0.4.16 and earlier allows local users to execute arbitrary code via format string specifiers in the -C command line argument. NOTE: it is not clear whether this issue could be exploited remotely, or if Cherokee is running at escalated privileges. Therefore it might not be a vulnerability. | |||||
CVE-2001-0459 | 2 Afterstep.org, Rob Malda | 2 Afterstep, Ascdc | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflows in ascdc Afterstep while running setuid allows local users to gain root privileges via a long (1) -d option, (2) -m option, or (3) -f option. | |||||
CVE-1999-0437 | 1 Ramp Networks | 1 Webramp | 2024-02-04 | 5.0 MEDIUM | N/A |
Remote attackers can perform a denial of service in WebRamp systems by sending a malicious string to the HTTP port. | |||||
CVE-2002-0840 | 2 Apache, Oracle | 5 Http Server, Application Server, Database Server and 2 more | 2024-02-04 | 6.8 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in the default error page of Apache 2.0 before 2.0.43, and 1.3.x up to 1.3.26, when UseCanonicalName is "Off" and support for wildcard DNS is present, allows remote attackers to execute script as other web page visitors via the Host: header, a different vulnerability than CAN-2002-1157. | |||||
CVE-2004-0087 | 1 Apple | 1 Mac Os X | 2024-02-04 | 2.1 LOW | N/A |
The System Configuration subsystem in Mac OS 10.2.8 and 10.3.2 allows local users to modify network settings, a different vulnerability than CVE-2004-0088. | |||||
CVE-2001-0561 | 1 Drummond Miles | 1 A1stats | 2024-02-04 | 7.5 HIGH | N/A |
Directory traversal vulnerability in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in (1) a1disp2.cgi, (2) a1disp3.cgi, or (3) a1disp4.cgi. | |||||
CVE-2004-0420 | 1 Microsoft | 2 Ie, Internet Explorer | 2024-02-04 | 10.0 HIGH | N/A |
The Windows Shell application in Windows 98, Windows ME, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by spoofing the type of a file via a CLSID specifier in the filename, as demonstrated using Internet Explorer 6.0.2800.1106 on Windows XP. | |||||
CVE-2000-0177 | 1 Dnstools Software | 1 Dnstools | 2024-02-04 | 10.0 HIGH | N/A |
DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters. | |||||
CVE-2002-2115 | 1 Hns | 2 Hns, Hns-lite | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in Hyper NIKKI System (HNS) Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML. | |||||
CVE-2000-0644 | 1 Texas Imperial Software | 1 Wftpd | 2024-02-04 | 5.0 MEDIUM | N/A |
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing a STAT command while the LIST command is still executing. | |||||
CVE-2002-1742 | 1 Paul Kulchenko | 1 Soap Lite | 2024-02-04 | 5.0 MEDIUM | N/A |
SOAP::Lite 0.50 through 0.52 allows remote attackers to load arbitrary Perl functions by suppling a non-existent function in a script using a SOAP::Lite module, which causes the AUTOLOAD subroutine to trigger. | |||||
CVE-2001-0780 | 1 Cosmicperl | 1 Directory Pro | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in cosmicpro.cgi in Cosmicperl Directory Pro 2.0 allows remote attackers to gain sensitive information via a .. (dot dot) in the SHOW parameter. | |||||
CVE-1999-1581 | 1 Microsoft | 1 Windows Nt | 2024-02-04 | 5.0 MEDIUM | N/A |
Memory leak in Simple Network Management Protocol (SNMP) agent (snmp.exe) for Windows NT 4.0 before Service Pack 4 allows remote attackers to cause a denial of service (memory consumption) via a large number of SNMP packets with Object Identifiers (OIDs) that cannot be decoded. | |||||
CVE-2002-2315 | 1 Cisco | 1 Ios | 2024-02-04 | 7.8 HIGH | N/A |
Cisco IOS 11.2.x and 12.0.x does not limit the size of its redirect table, which allows remote attackers to cause a denial of service (memory consumption) via spoofed ICMP redirect packets to the router. | |||||
CVE-2001-1557 | 1 Ibm | 1 Aix | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in ftpd in IBM AIX 4.3 and 5.1 allows attackers to gain privileges. | |||||
CVE-2004-0256 | 1 Gnu | 1 Libtool | 2024-02-04 | 2.1 LOW | N/A |
GNU libtool before 1.5.2, during compile time, allows local users to overwrite arbitrary files via a symlink attack on libtool directories in /tmp. |