Total
254001 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0848 | 1 Slocate | 1 Slocate | 2024-02-04 | 4.6 MEDIUM | N/A |
Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions, may allow local users to gain privileges via a modified slocate database that causes a negative "pathlen" value to be used. | |||||
CVE-2001-1111 | 1 Khamil Landross And Zack Jones | 1 Eftp | 2024-02-04 | 4.6 MEDIUM | N/A |
EFTP 2.0.7.337 stores user passwords in plaintext in the eftp2users.dat file. | |||||
CVE-2000-1003 | 1 Microsoft | 3 Windows 95, Windows 98, Windows 98se | 2024-02-04 | 2.6 LOW | N/A |
NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash. | |||||
CVE-2002-0482 | 1 Newlog | 1 Netsupport Manager | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in PCI Netsupport Manager before version 7, when running web extensions, allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP GET request. | |||||
CVE-1999-1107 | 1 Kde | 1 Kde | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in kppp in KDE allows local users to gain root access via a long PATH environmental variable. | |||||
CVE-2003-0998 | 2 Broadcom, Ca | 4 Unicenter Remote Control, Unicenter Remote Control Option, Controlit and 1 more | 2024-02-04 | 4.6 MEDIUM | N/A |
Unknown "potential system security vulnerability" in Computer Associates (CA) Unicenter Remote Control 5.0 through 5.2, and ControlIT 5.0 and 5.1, may allow attackers to gain privileges to the local system account. | |||||
CVE-2003-0794 | 1 Gnome | 1 Gdm | 2024-02-04 | 2.1 LOW | N/A |
GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not limit the number or duration of commands and uses a blocking socket connection, which allows attackers to cause a denial of service (resource exhaustion) by sending commands and not reading the results. | |||||
CVE-2002-1005 | 1 Argosoft | 1 Argosoft Mail Server | 2024-02-04 | 5.0 MEDIUM | N/A |
ArGoSoft Mail Server 1.8.1.7 and earlier allows a webmail user to cause a denial of service (CPU consumption) by forwarding the email to the user while autoresponse is enabled, which creates an infinite loop. | |||||
CVE-2004-0518 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-02-04 | 7.5 HIGH | N/A |
Unknown vulnerability in AppleFileServer for Mac OS X 10.3.4, related to "the use of SSH and reporting errors," has unknown impact and attack vectors. | |||||
CVE-2000-0355 | 3 Bent Bagger, Redhat, Suse | 3 Pbpg, Linux, Suse Linux | 2024-02-04 | 7.5 HIGH | N/A |
pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files. | |||||
CVE-2000-1124 | 1 Ibm | 1 Aix | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in piobe command in IBM AIX 4.3.x allows local users to gain privileges via long environmental variables. | |||||
CVE-2000-1122 | 1 Ibm | 1 Aix | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in setclock command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long argument. | |||||
CVE-2003-0365 | 1 Icq Inc | 1 Icqlite | 2024-02-04 | 4.6 MEDIUM | N/A |
ICQLite 2003a creates the ICQ Lite directory with an ACE for "Full Control" privileges for Interactive Users, which allows local users to gain privileges as other users by replacing the executables with malicious programs. | |||||
CVE-2003-0740 | 1 Stunnel | 1 Stunnel | 2024-02-04 | 4.6 MEDIUM | N/A |
Stunnel 4.00, and 3.24 and earlier, leaks a privileged file descriptor returned by listen(), which allows local users to hijack the Stunnel server. | |||||
CVE-2002-1211 | 1 Jason Orcutt | 1 Prometheus | 2024-02-04 | 7.5 HIGH | N/A |
Prometheus 6.0 and earlier allows remote attackers to execute arbitrary PHP code via a modified PROMETHEUS_LIBRARY_BASE that points to code stored on a remote server, which is then used in (1) index.php, (2) install.php, or (3) various test_*.php scripts. | |||||
CVE-2002-1737 | 1 Astaro | 1 Security Linux | 2024-02-04 | 2.1 LOW | N/A |
Astaro Security Linux 2.016 creates world-writable files and directories, which allows local users to overwrite arbitrary files. | |||||
CVE-2000-1088 | 1 Microsoft | 2 Data Engine, Sql Server | 2024-02-04 | 4.6 MEDIUM | N/A |
The xp_SetSQLSecurity function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability. | |||||
CVE-2000-1240 | 1 Anyportal Php | 1 Anyportal Php | 2024-02-04 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in siteman.php3 in AnyPortal(php) before 22 APR 00 allows remote attackers to obtain sensitive information via unknown attack vectors, which reveal the absolute path. NOTE: the provenance of this information is unknown; the details are obtained from third party information. | |||||
CVE-2003-0467 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 5.0 MEDIUM | N/A |
Unknown vulnerability in ip_nat_sack_adjust of Netfilter in Linux kernels 2.4.20, and some 2.5.x, when CONFIG_IP_NF_NAT_FTP or CONFIG_IP_NF_NAT_IRC is enabled, or the ip_nat_ftp or ip_nat_irc modules are loaded, allows remote attackers to cause a denial of service (crash) in systems using NAT, possibly due to an integer signedness error. | |||||
CVE-2000-0130 | 1 Sco | 1 Unixware | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in SCO scohelp program allows remote attackers to execute commands. |