Total
254017 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0643 | 1 Itafrica | 1 Webactive | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in WebActive HTTP Server 1.00 allows remote attackers to cause a denial of service via a long URL. | |||||
CVE-2004-0437 | 1 South River Technologies | 1 Titan Ftp Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Titan FTP Server version 3.01 build 163, and possibly other versions before build 169, allows remote authenticated users to cause a denial of service (crash) by disconnecting from the system during a "LIST -L" command, which causes Titan to access an invalid socket. | |||||
CVE-1999-1229 | 1 Id Software | 1 Quake 2 Server | 2024-02-04 | 2.1 LOW | N/A |
Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the target file. | |||||
CVE-2002-0740 | 1 Slrn Development Team | 1 Slrn | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in slrnpull for the SLRN package, when installed setuid or setgid, allows local users to gain privileges via a long -d (SPOOLDIR) argument. | |||||
CVE-2003-1291 | 1 Vmware | 1 Esx | 2024-02-04 | 7.2 HIGH | N/A |
VMware ESX Server 1.5.2 before Patch 4 allows local users to execute arbitrary programs as root via certain modified VMware ESX Server environment variables. | |||||
CVE-2000-0626 | 1 Computer Software Manufaktur | 1 Alibaba | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in Alibaba web server allows remote attackers to cause a denial of service via a long GET request. | |||||
CVE-2003-0452 | 1 Gunnar Ritter | 1 Osh | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflows in osh before 1.7-11 allow local users to execute arbitrary code and bypass shell restrictions via (1) long environment variables or (2) long "file redirections." | |||||
CVE-2000-0407 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in Solaris netpr program allows local users to execute arbitrary commands via a long -p option. | |||||
CVE-2004-0911 | 1 Debian | 1 Netkit | 2024-02-04 | 5.0 MEDIUM | N/A |
telnetd for netkit 0.17 and earlier, and possibly other versions, on Debian GNU/Linux allows remote attackers to cause a denial of service (free of an invalid pointer), a different vulnerability than CVE-2001-0554. | |||||
CVE-2002-1433 | 1 Kerio | 1 Kerio Mailserver | 2024-02-04 | 5.0 MEDIUM | N/A |
Kerio MailServer 5.0 allows remote attackers to cause a denial of service (hang) via SYN packets to the supported network services. | |||||
CVE-2004-1662 | 1 Yabb | 1 Yabb | 2024-02-04 | 5.0 MEDIUM | N/A |
YaBB SE 1.5.1 allows remote attackers to obtain sensitive information via a direct HTTP request to Admin.php, which reveals the full path in a PHP error message. | |||||
CVE-2003-0901 | 1 Postgresql | 1 Postgresql | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in to_ascii for PostgreSQL 7.2.x, and 7.3.x before 7.3.4, allows remote attackers to execute arbitrary code. | |||||
CVE-2002-1825 | 1 Wasd | 1 Wasd Http Server | 2024-02-04 | 6.4 MEDIUM | N/A |
Format string vulnerability in PerlRTE_example1.pl in WASD 7.1, 7.2.0 through 7.2.3, and 8.0.0 allows remote attackers to execute arbitrary commands or crash the server via format strings in the $name variable. | |||||
CVE-1999-1288 | 4 Caldera, Redhat, Samba and 1 more | 4 Openlinux, Linux, Samba and 1 more | 2024-02-04 | 4.6 MEDIUM | N/A |
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program. | |||||
CVE-2004-1498 | 1 Webhost Automation | 1 Helm Control Panel | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute arbitrary SQL commands via the messageToUserAccNum parameter. | |||||
CVE-2004-2062 | 1 Antiboard | 1 Antiboard | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in antiboard.php in AntiBoard 0.7.2 and earlier allows remote attackers to execute arbitrary SQL via the (1) thread_id, (2) parent_id, or (3) mode parameters. | |||||
CVE-2000-0180 | 1 Generation Terrorists Designs And Concepts | 1 Sojourn | 2024-02-04 | 5.0 MEDIUM | N/A |
Sojourn search engine allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
CVE-1999-0764 | 1 Netbsd | 1 Netbsd | 2024-02-04 | 6.4 MEDIUM | N/A |
NetBSD allows ARP packets to overwrite static ARP entries. | |||||
CVE-2001-0345 | 1 Microsoft | 1 Windows 2000 | 2024-02-04 | 5.0 MEDIUM | N/A |
Microsoft Windows 2000 telnet service allows attackers to prevent idle Telnet sessions from timing out, causing a denial of service by creating a large number of idle sessions. | |||||
CVE-2004-2030 | 1 Liferay | 1 Liferay Enterprise Portal | 2024-02-04 | 4.3 MEDIUM | N/A |
Multiple cross-site scripting (XSS) vulnerabilities in index.jsp for Liferay before 2.2.0 release 10/1/2004 allow remote attackers to inject arbitrary web script or HTML, as demonstrated using the message subject. |