Total
254043 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0280 | 1 Atrium Software | 1 Mercur | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in MERCUR SMTP server 3.30 allows remote attackers to execute arbitrary commands via a long EXPN command. | |||||
CVE-2002-1517 | 1 Sgi | 2 Freeware, Irix | 2024-02-04 | 4.6 MEDIUM | N/A |
fsr_efs in IRIX 6.5 allows local users to conduct unauthorized file activities via a symlink attack, possibly via the .fsrlast file. | |||||
CVE-2002-1855 | 1 Macromedia | 1 Jrun | 2024-02-04 | 5.0 MEDIUM | N/A |
Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | |||||
CVE-1999-0936 | 2024-02-04 | 10.0 HIGH | N/A | ||
BNBSurvey survey.cgi program allows remote attackers to execute commands via shell metacharacters. | |||||
CVE-2004-0544 | 1 Ibm | 1 Aix | 2024-02-04 | 7.2 HIGH | N/A |
Multiple buffer overflows in LVM for AIX 5.1 and 5.2 allow local users to gain privileges via the (1) putlvcb or (2) getlvcb commands. | |||||
CVE-1999-0115 | 1 Ibm | 1 Aix | 2024-02-04 | 7.2 HIGH | N/A |
AIX bugfiler program allows local users to gain root access. | |||||
CVE-2002-1759 | 1 Phprojekt | 1 Phprojekt | 2024-02-04 | 5.0 MEDIUM | N/A |
The upload function in PHProjekt 2.0 through 3.1 does not properly verify certain variables related to uploaded data, which allows remote attackers to cause PHProjekt to process arbitrary files. | |||||
CVE-2002-0719 | 1 Microsoft | 1 Content Management Server | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in the function that services for Microsoft Content Management Server (MCMS) 2001 allows remote attackers to execute arbitrary commands via an MCMS resource request for image files or other files. | |||||
CVE-2002-0538 | 1 Symantec | 4 Enterprise Firewall, Gateway Security, Raptor Firewall and 1 more | 2024-02-04 | 7.5 HIGH | N/A |
FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote attackers to redirect FTP data connections to arbitrary ports, a variant of the "FTP bounce" vulnerability. | |||||
CVE-1999-0359 | 1 Marc Schaefer | 1 Ptylogin | 2024-02-04 | 7.5 HIGH | N/A |
ptylogin in Unix systems allows users to perform a denial of service by locking out modems, dial out with that modem, or obtain passwords. | |||||
CVE-2003-0622 | 1 Bea | 2 Tuxedo, Weblogic Server | 2024-02-04 | 5.0 MEDIUM | N/A |
The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to cause a denial of service (hang) via pathname arguments that contain MS-DOS device names such as CON and AUX. | |||||
CVE-2003-1272 | 1 Nullsoft | 1 Winamp | 2024-02-04 | 9.3 HIGH | N/A |
Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a long path in a file: argument to the Playstring parameter. | |||||
CVE-2002-1913 | 1 Myphpnuke | 1 Myphpnuke | 2024-02-04 | 5.0 MEDIUM | N/A |
phptonuke.php in myPHPNuke 1.8.8 allows remote attackers to read arbitrary files via a full pathname in the filnavn variable. | |||||
CVE-1999-0760 | 1 Allaire | 1 Coldfusion Server | 2024-02-04 | 10.0 HIGH | N/A |
Undocumented ColdFusion Markup Language (CFML) tags and functions in the ColdFusion Administrator allow users to gain additional privileges. | |||||
CVE-1999-0692 | 2 Cray, Sgi | 2 Unicos, Irix | 2024-02-04 | 10.0 HIGH | N/A |
The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privileges. | |||||
CVE-2001-0886 | 2 Debian, Redhat | 2 Debian Linux, Linux | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace "{" character. | |||||
CVE-2000-0012 | 1 Hughes | 1 Msql | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands. | |||||
CVE-2001-0361 | 2 Openbsd, Ssh | 2 Openssh, Ssh | 2024-02-04 | 4.0 MEDIUM | N/A |
Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ssh-1 up to version 1.2.31, in certain configurations, allow a remote attacker to decrypt and/or alter traffic via a "Bleichenbacher attack" on PKCS#1 version 1.5. | |||||
CVE-2001-0467 | 1 Robtex | 1 Viking Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in RobTex Viking Web server before 1.07-381 allows remote attackers to read arbitrary files via a \... (modified dot dot) in an HTTP URL request. | |||||
CVE-2002-0411 | 1 Aeromail | 1 Aeromail | 2024-02-04 | 7.5 HIGH | N/A |
Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript as an AeroMail user via an email message with the script in the Subject line. |