Total
254124 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1580 | 1 Carnegie Mellon University | 1 Cyrus Imap Server | 2024-02-04 | 7.5 HIGH | N/A |
Integer overflow in imapparse.c for Cyrus IMAP server 1.4 and 2.1.10 allows remote attackers to execute arbitrary code via a large length value that facilitates a buffer overflow attack, a different vulnerability than CVE-2002-1347. | |||||
CVE-2003-0635 | 1 Novell | 1 Ichain | 2024-02-04 | 5.0 MEDIUM | N/A |
Unknown vulnerability or vulnerabilities in Novell iChain 2.2 before Support Pack 1, with unknown impact, possibly related to unauthorized access to (1) NCPIP.NLM and (2) JSTCP.NLM. | |||||
CVE-2004-0622 | 1 Apple | 1 Mac Os X | 2024-02-04 | 2.1 LOW | N/A |
Apple Mac OS X 10.3.4, 10.4, 10.5, and possibly other versions does not properly clear memory for login (aka Loginwindow.app), Keychain, or FileVault passwords, which could allow the root user or an attacker with physical access to obtain sensitive information by reading memory. | |||||
CVE-2004-1394 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 4.6 MEDIUM | N/A |
The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the exec_attr database, which may allow local users with custom rights profiles to execute profile commands with additional privileges. | |||||
CVE-1999-1315 | 1 Dec | 1 Dec Openvms | 2024-02-04 | 4.6 MEDIUM | N/A |
Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow local users to gain privileges or cause a denial of service. | |||||
CVE-1999-0491 | 1 Gnu | 1 Bash | 2024-02-04 | 4.6 MEDIUM | N/A |
The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute. | |||||
CVE-2000-1159 | 1 Network Associates | 1 Sniffer Agent | 2024-02-04 | 7.5 HIGH | N/A |
NAI Sniffer Agent allows remote attackers to gain privileges on the agent by sniffing the initial UDP authentication packets and spoofing commands. | |||||
CVE-2003-0865 | 1 Mpg123 | 1 Mpg123 | 2024-02-04 | 7.5 HIGH | N/A |
Heap-based buffer overflow in readstring of httpget.c for mpg123 0.59r and 0.59s allows remote attackers to execute arbitrary code via a long request. | |||||
CVE-2003-0543 | 1 Openssl | 1 Openssl | 2024-02-04 | 5.0 MEDIUM | N/A |
Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values. | |||||
CVE-2004-0248 | 1 Phpx | 1 Phpx | 2024-02-04 | 6.8 MEDIUM | N/A |
Cross-site scripting vulnerability (XSS) in PHPX 3.2.3 allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into (1) keywords argument of main.inc.php, (2) body argument of help.inc.php, or (3) the subject field in Personal Messages and Forum. | |||||
CVE-2001-0675 | 1 Ritlabs | 1 The Bat | 2024-02-04 | 5.0 MEDIUM | N/A |
Rit Research Labs The Bat! 1.51 for Windows allows a remote attacker to cause a denial of service by sending an email to a user's account containing a carriage return <CR> that is not followed by a line feed <LF>. | |||||
CVE-2002-1047 | 1 Watchguard | 1 Soho Firewall | 2024-02-04 | 7.5 HIGH | N/A |
The FTP service in Watchguard Soho Firewall 5.0.35a allows remote attackers to gain privileges with a correct password but an incorrect user name. | |||||
CVE-2001-1021 | 1 Progress | 1 Ipswitch Ws Ftp Server | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflows in WS_FTP 2.02 allow remote attackers to execute arbitrary code via long arguments to (1) DELE, (2) MDTM, (3) MLST, (4) MKD, (5) RMD, (6) RNFR, (7) RNTO, (8) SIZE, (9) STAT, (10) XMKD, or (11) XRMD. | |||||
CVE-2000-1182 | 1 Watchguard | 1 Firebox Ii | 2024-02-04 | 5.0 MEDIUM | N/A |
WatchGuard Firebox II allows remote attackers to cause a denial of service by flooding the Firebox with a large number of FTP or SMTP requests, which disables proxy handling. | |||||
CVE-2003-1216 | 1 Phpbb Group | 1 Phpbb | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in search.php for phpBB 2.0.6 and earlier allows remote attackers to execute arbitrary SQL and gain privileges via the search_id parameter. | |||||
CVE-2000-0547 | 3 Cygnus Network Security Project, Kerbnet Project, Mit | 4 Cygnus Network Security, Kerbnet, Kerberos and 1 more | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the localrealm variable in the process_v4 function. | |||||
CVE-2001-0381 | 1 Pgp | 1 Openpgp | 2024-02-04 | 4.6 MEDIUM | N/A |
The OpenPGP PGP standard allows an attacker to determine the private signature key via a cryptanalytic attack in which the attacker alters the encrypted private key file and captures a single message signed with the signature key. | |||||
CVE-1999-1408 | 2 Hp, Ibm | 2 Hp-ux, Aix | 2024-02-04 | 2.1 LOW | N/A |
Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost. | |||||
CVE-2004-1429 | 1 Argosoft | 1 Ftp Server | 2024-02-04 | 7.5 HIGH | N/A |
ArGoSoft FTP 1.4.2.4 and earlier does not limit the number of times that a bad password can be entered, which makes it easier for remote attackers to guess passwords via a brute force attack. | |||||
CVE-2002-0056 | 1 Microsoft | 1 Sql Server | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in SQL Server 7.0 and 2000 allows remote attackers to execute arbitrary code via a long OLE DB provider name to (1) OpenDataSource or (2) OpenRowset in an ad hoc connection. |