Total
254124 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-0867 | 1 Microsoft | 1 Virtual Machine | 2024-02-04 | 5.0 MEDIUM | N/A |
Microsoft Virtual Machine (VM) up to and including build 5.0.3805 allows remote attackers to cause a denial of service (crash) in Internet Explorer via invalid handle data in a Java applet, aka "Handle Validation Flaw." | |||||
CVE-2000-1244 | 1 Broadcom | 1 Inoculateit Agent For Exchange | 2024-02-04 | 7.5 HIGH | N/A |
Computer Associates InoculateIT Agent for Exchange Server does not recognize an e-mail virus attachment if the SMTP header is missing the "From" field, which allows remote attackers to bypass virus protection. | |||||
CVE-2004-1664 | 1 Activision | 2 Call Of Duty, Call Of Duty United Offensive | 2024-02-04 | 5.0 MEDIUM | N/A |
Call of Duty 1.4 and earlier allows remote attackers to cause a denial of service (game end) via a large (1) query or (2) reply packet, which is not properly handled by the buffer overflow protection mechanism. NOTE: this issue might overlap CVE-2005-0430. | |||||
CVE-2000-0754 | 1 Hp | 1 Openview Network Node Manager | 2024-02-04 | 2.1 LOW | N/A |
Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords. | |||||
CVE-1999-1011 | 1 Microsoft | 4 Data Access Components, Index Server, Internet Information Server and 1 more | 2024-02-04 | 10.0 HIGH | N/A |
The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands. | |||||
CVE-2000-0453 | 1 Xfree86 Project | 1 X11r6 | 2024-02-04 | 5.0 MEDIUM | N/A |
XFree86 3.3.x and 4.0 allows a user to cause a denial of service via a negative counter value in a malformed TCP packet that is sent to port 6000. | |||||
CVE-2001-1527 | 1 Easyscripts | 1 Easynews | 2024-02-04 | 2.1 LOW | N/A |
easyNews 1.5 and earlier stores administration passwords in cleartext in settings.php, which allows local users to obtain the passwords and gain access. | |||||
CVE-2001-0542 | 1 Microsoft | 1 Sql Server | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflows in Microsoft SQL Server 7.0 and 2000 allow attackers with access to SQL Server to execute arbitrary code through the functions (1) raiserror, (2) formatmessage, or (3) xp_sprintf. NOTE: the C runtime format string vulnerability reported in MS01-060 is identified by CVE-2001-0879. | |||||
CVE-2004-0551 | 1 Cisco | 24 Catalyst 2901, Catalyst 2902, Catalyst 2926 and 21 more | 2024-02-04 | 5.0 MEDIUM | N/A |
Cisco CatOS 5.x before 5.5(20) through 8.x before 8.2(2) and 8.3(2)GLX, as used in Catalyst switches, allows remote attackers to cause a denial of service (system crash and reload) by sending invalid packets instead of the final ACK portion of the three-way handshake to the (1) Telnet, (2) HTTP, or (3) SSH services, aka "TCP-ACK DoS attack." | |||||
CVE-2000-0762 | 2 Broadcom, Ca | 2 Etrust Access Control, Etrust Access Control | 2024-02-04 | 10.0 HIGH | N/A |
The default installation of eTrust Access Control (formerly SeOS) uses a default encryption key, which allows remote attackers to spoof the eTrust administrator and gain privileges. | |||||
CVE-2002-0293 | 1 Alcatel-lucent | 1 Omnipcx | 2024-02-04 | 6.2 MEDIUM | N/A |
FTP service in Alcatel OmniPCX 4400 allows the "halt" user to gain root privileges by modifying root's .profile file. | |||||
CVE-2002-1390 | 1 Geneweb | 1 Geneweb | 2024-02-04 | 5.0 MEDIUM | N/A |
The daemon for GeneWeb before 4.09 does not properly handle requested paths, which allows remote attackers to read arbitrary files via a crafted URL. | |||||
CVE-2002-0692 | 1 Microsoft | 3 Frontpage Server Extensions, Windows 2000, Windows Xp | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in SmartHTML Interpreter (shtml.dll) in Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to cause a denial of service (CPU consumption) or run arbitrary code, respectively, via a certain type of web file request. | |||||
CVE-2001-0432 | 1 Trend Micro | 1 Interscan Viruswall | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflows in various CGI programs in the remote administration service for Trend Micro Interscan VirusWall 3.01 allow remote attackers to execute arbitrary commands. | |||||
CVE-2000-1087 | 1 Microsoft | 2 Data Engine, Sql Server | 2024-02-04 | 4.6 MEDIUM | N/A |
The xp_proxiedmetadata function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability. | |||||
CVE-2000-1136 | 1 Debian | 1 Elvis Tiny | 2024-02-04 | 4.6 MEDIUM | N/A |
elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack. | |||||
CVE-2004-0913 | 1 Ecartis | 1 Ecartis | 2024-02-04 | 4.6 MEDIUM | N/A |
Unknown vulnerability in ecartis 0.x before 0.129a+1.0.0-snap20020514-1.3 and 1.x before 1.0.0+cvs.20030911-8 allows attackers in the same domain to gain administrator privileges and modify configuration. | |||||
CVE-1999-1281 | 1 Winddance Networks Corporation | 1 Breeze Network Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Development version of Breeze Network Server allows remote attackers to cause the system to reboot by accessing the configbreeze CGI program. | |||||
CVE-2002-2191 | 1 Lotus | 1 Domino | 2024-02-04 | 5.0 MEDIUM | N/A |
Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner. | |||||
CVE-2002-0044 | 3 Debian, Gnu, Redhat | 3 Debian Linux, Enscript, Linux | 2024-02-04 | 3.6 LOW | N/A |
GNU Enscript 1.6.1 and earlier allows local users to overwrite arbitrary files of the Enscript user via a symlink attack on temporary files. |