Total
254106 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0413 | 1 Microsoft | 3 Frontpage, Internet Information Server, Internet Information Services | 2024-02-04 | 5.0 MEDIUM | N/A |
The shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers to determine the physical path of HTML, HTM, ASP, and SHTML files by requesting a file that does not exist, which generates an error message that reveals the path. | |||||
CVE-2002-0158 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in Xsun on Solaris 2.6 through 8 allows local users to gain root privileges via a long -co (color database) command line argument. | |||||
CVE-2002-2056 | 1 Teekai | 1 Teekai Forum | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in TeeKai Forum 1.2 allows remote attackers to inject arbitrary web script or HTML via the valid_username_online cookie. | |||||
CVE-2002-1897 | 1 Mywebserver | 1 Mywebserver | 2024-02-04 | 5.0 MEDIUM | N/A |
MyWebServer LLC MyWebServer 1.0.2 allows remote attackers to cause a denial of service (crash) via a long HTTP request, possibly triggering a buffer overflow. | |||||
CVE-1999-0273 | 1 Sun | 1 Sunos | 2024-02-04 | 5.0 MEDIUM | N/A |
Denial of service through Solaris 2.5.1 telnet by sending ^D characters. | |||||
CVE-2001-1180 | 1 Freebsd | 1 Freebsd | 2024-02-04 | 7.2 HIGH | N/A |
FreeBSD 4.3 does not properly clear shared signal handlers when executing a process, which allows local users to gain privileges by calling rfork with a shared signal handler, having the child process execute a setuid program, and sending a signal to the child. | |||||
CVE-2004-2187 | 1 Mediawiki | 1 Mediawiki | 2024-02-04 | 5.0 MEDIUM | N/A |
Unknown vulnerability in ImagePage for MediaWiki 1.3.5, related to "filename validation," has unknown impact and attack vectors. | |||||
CVE-2002-0328 | 1 Ikonboard.com | 1 Ikonboard | 2024-02-04 | 7.5 HIGH | N/A |
Cross-site scripting vulnerability in Ikonboard 3.0.1 allows remote attackers to execute arbitrary script as other Ikonboard users and steal cookies via Javascript in an IMG tag. | |||||
CVE-2000-0185 | 1 Realnetworks | 2 Realserver, Realserver G2 | 2024-02-04 | 5.0 MEDIUM | N/A |
RealMedia RealServer reveals the real IP address of a Real Server, even if the address is supposed to be private. | |||||
CVE-2004-0512 | 1 Sco | 1 Openserver | 2024-02-04 | 2.1 LOW | N/A |
Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a core dump. | |||||
CVE-2000-1132 | 1 Dcscripts | 1 Dcforum | 2024-02-04 | 6.4 MEDIUM | N/A |
DCForum cgforum.cgi CGI script allows remote attackers to read arbitrary files, and delete the program itself, via a malformed "forum" variable. | |||||
CVE-2004-1234 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 2.1 LOW | N/A |
load_elf_binary in Linux before 2.4.26 allows local users to cause a denial of service (system crash) via an ELF binary in which the interpreter is NULL. | |||||
CVE-2000-0075 | 1 Nosque | 1 Msgcore | 2024-02-04 | 5.0 MEDIUM | N/A |
Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating multiple HELO, MAIL FROM, RCPT TO, and DATA commands in the same session. | |||||
CVE-2004-0385 | 1 Oracle | 2 Application Server Web Cache, E-business Suite | 2024-02-04 | 10.0 HIGH | N/A |
Heap-based buffer overflow in Oracle 9i Application Server Web Cache 9.0.4.0.0, 9.0.3.1.0, 9.0.2.3.0, and 9.0.0.4.0 allows remote attackers to execute arbitrary code via a long HTTP request method header to the Web Cache listener. NOTE: due to the vagueness of the Oracle advisory, it is not clear whether there are additional issues besides this overflow, although the advisory alludes to multiple "vulnerabilities." | |||||
CVE-2001-0314 | 1 Aol | 1 Aol Server | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in www.tol module in America Online (AOL) 5.0 may allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL in a link. | |||||
CVE-1999-1491 | 1 Redhat | 1 Linux | 2024-02-04 | 7.2 HIGH | N/A |
abuse.console in Red Hat 2.1 uses relative pathnames to find and execute the undrv program, which allows local users to execute arbitrary commands via a path that points to a Trojan horse program. | |||||
CVE-2003-0233 | 1 Microsoft | 2 Ie, Internet Explorer | 2024-02-04 | 7.5 HIGH | N/A |
Heap-based buffer overflow in plugin.ocx for Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code via the Load() method, a different vulnerability than CVE-2003-0115. | |||||
CVE-1999-0406 | 1 Digital | 1 Unix | 2024-02-04 | 7.2 HIGH | N/A |
Digital Unix Networker program nsralist has a buffer overflow which allows local users to obtain root privilege. | |||||
CVE-2002-1081 | 1 Aprelium Technologies | 1 Abyss Web Server | 2024-02-04 | 5.0 MEDIUM | N/A |
The Administration console for Abyss Web Server 1.0.3 allows remote attackers to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character. | |||||
CVE-2002-2259 | 2 Gnuplot, Suse | 2 Gnuplot, Suse Linux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in the French documentation patch for Gnuplot 3.7 in SuSE Linux before 8.0 allows local users to execute arbitrary code as root via unknown attack vectors. |