Total
254030 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0997 | 1 Textor Webmasters Ltd. | 1 Listrec.pl | 2024-02-04 | 7.5 HIGH | N/A |
Textor Webmasters Ltd listrec.pl CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the TEMPLATE parameter. | |||||
CVE-1999-0850 | 1 Endymion | 1 Mailman Webmail | 2024-02-04 | 3.6 LOW | N/A |
The default permissions for Endymion MailMan allow local users to read email or modify files. | |||||
CVE-2003-1463 | 2 Alt-n, Microsoft | 2 Webadmin, All Windows | 2024-02-04 | 3.5 LOW | N/A |
Absolute path traversal vulnerability in Alt-N Technologies WebAdmin 2.0.0 through 2.0.2 allows remote attackers with administrator privileges to (1) determine the installation path by reading the contents of the Name parameter in a link, and (2) read arbitrary files via an absolute path in the Name parameter. | |||||
CVE-2003-0472 | 1 Sgi | 1 Irix | 2024-02-04 | 5.0 MEDIUM | N/A |
The IPv6 capability in IRIX 6.5.19 allows remote attackers to cause a denial of service (hang) in inetd via port scanning. | |||||
CVE-1999-1056 | 2024-02-04 | N/A | N/A | ||
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1395. Reason: This candidate is a duplicate of CVE-1999-1395. Notes: All CVE users should reference CVE-1999-1395 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
CVE-2002-0155 | 1 Microsoft | 3 Msn Chat Control, Msn Messenger, Msn Messenger Service For Exchange | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Microsoft MSN Chat ActiveX Control, as used in MSN Messenger 4.5 and 4.6, and Exchange Instant Messenger 4.5 and 4.6, allows remote attackers to execute arbitrary code via a long ResDLL parameter in the MSNChat OCX. | |||||
CVE-2001-0715 | 1 Sendmail | 1 Sendmail | 2024-02-04 | 2.1 LOW | N/A |
Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain potentially sensitive information about the mail queue by setting debugging flags to enable debug mode. | |||||
CVE-2001-0169 | 4 Mandrakesoft, Redhat, Trustix and 1 more | 5 Mandrake Linux, Mandrake Linux Corporate Server, Linux and 2 more | 2024-02-04 | 2.1 LOW | N/A |
When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib. | |||||
CVE-2002-1994 | 1 Gamecheats | 1 Advanced Web Server Professional | 2024-02-04 | 5.0 MEDIUM | N/A |
advserver.exe in Advanced Web Server (AdvServer) Professional 1.030000 allows remote attackers to cause a denial of service via multiple HTTP requests containing a single carriage return/line feed (CRLF) sequence. | |||||
CVE-1999-0095 | 1 Eric Allman | 1 Sendmail | 2024-02-04 | 10.0 HIGH | N/A |
The debug command in Sendmail is enabled, allowing attackers to execute commands as root. | |||||
CVE-1999-1453 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 2.6 LOW | N/A |
Internet Explorer 4 allows remote attackers (malicious web site operators) to read the contents of the clipboard via the Internet WebBrowser ActiveX object. | |||||
CVE-2002-1286 | 1 Microsoft | 1 Java Virtual Machine | 2024-02-04 | 7.5 HIGH | N/A |
The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to steal cookies and execute script in a different security context via a URL that contains a colon in the domain portion, which is not properly parsed and loads an applet from a malicious site within the security context of the site that is being visited by the user. | |||||
CVE-1999-1359 | 1 Microsoft | 1 Windows Nt | 2024-02-04 | 7.5 HIGH | N/A |
When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT does not properly enforce policies for global groups, which could allow users to bypass restrictions that were intended by those policies. | |||||
CVE-2002-0790 | 1 Ibm | 1 Aix | 2024-02-04 | 2.1 LOW | N/A |
clchkspuser and clpasswdremote in AIX expose an encrypted password in the cspoc.log file, which could allow local users to gain privileges. | |||||
CVE-2000-1128 | 1 Mcafee | 1 Virusscan | 2024-02-04 | 4.6 MEDIUM | N/A |
The default configuration of McAfee VirusScan 4.5 does not quote the ImagePath variable, which improperly sets the search path and allows local users to place a Trojan horse "common.exe" program in the C:\Program Files directory. | |||||
CVE-1999-1260 | 1 Hughes | 1 Msql | 2024-02-04 | 7.5 HIGH | N/A |
mSQL (Mini SQL) 2.0.6 allows remote attackers to obtain sensitive server information such as logged users, database names, and server version via the ServerStats query. | |||||
CVE-2001-0223 | 1 Spawar.navy.mil | 1 Wwwwais.25.c | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERY_STRING (HTTP GET request). | |||||
CVE-2002-0766 | 1 Openbsd | 1 Openbsd | 2024-02-04 | 7.2 HIGH | N/A |
OpenBSD 2.9 through 3.1 allows local users to cause a denial of service (resource exhaustion) and gain root privileges by filling the kernel's file descriptor table and closing file descriptors 0, 1, or 2 before executing a privileged process, which is not properly handled when OpenBSD fails to open an alternate descriptor. | |||||
CVE-1999-0256 | 2 Jgaa, Microsoft | 3 Warftpd, Windows 95, Windows Nt | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in War FTP allows remote execution of commands. | |||||
CVE-1999-0270 | 1 Sgi | 1 Irix | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in pfdispaly.cgi program (sometimes referred to as "pfdisplay") for SGI's Performer API Search Tool (performer_tools) allows remote attackers to read arbitrary files. |