Total
253999 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0148 | 1 Oracle | 1 Mysql | 2024-02-04 | 7.5 HIGH | N/A |
MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string. | |||||
CVE-2001-0939 | 1 Lotus | 1 Domino | 2024-02-04 | 5.0 MEDIUM | N/A |
Lotus Domino 5.08 and earlier allows remote attackers to cause a denial of service (crash) via a SunRPC NULL command to port 443. | |||||
CVE-2000-0865 | 1 Tridia | 1 Doublevision | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in dvtermtype in Tridia Double Vision 3.07.00 allows local users to gain root privileges via a long terminal type argument. | |||||
CVE-2000-1024 | 1 Unify | 1 Ewave Servletexec | 2024-02-04 | 10.0 HIGH | N/A |
eWave ServletExec 3.0C and earlier does not restrict access to the UploadServlet Java/JSP servlet, which allows remote attackers to upload files and execute arbitrary commands. | |||||
CVE-1999-0866 | 1 Sco | 1 Unixware | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in UnixWare xauto program allows local users to gain root privilege. | |||||
CVE-2002-0303 | 1 Novell | 1 Groupwise | 2024-02-04 | 4.6 MEDIUM | N/A |
GroupWise 6, when using LDAP authentication and when Post Office has a blank username and password, allows attackers to gain privileges of other users by logging in without a password. | |||||
CVE-2003-1143 | 1 Croteam | 1 Serioussam | 2024-02-04 | 7.5 HIGH | N/A |
Croteam Serious Sam demo test 2 2.1a, Serious Sam: the First Encounter 1.05, and Serious Sam: the Second Encounter 1.05 allow remote attackers to cause a denial of service (crash or freeze) via a TCP packet with an invalid first parameter. | |||||
CVE-2001-1384 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 7.2 HIGH | N/A |
ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp. | |||||
CVE-2003-1343 | 1 Trend Micro | 1 Scanmail | 2024-02-04 | 7.5 HIGH | N/A |
Trend Micro ScanMail for Exchange (SMEX) before 3.81 and before 6.1 might install a back door account in smg_Smxcfg30.exe, which allows remote attackers to gain access to the web management interface via the vcc parameter, possibly "3560121183d3". | |||||
CVE-2001-0275 | 1 Moby | 1 Netsuite Web Server | 2024-02-04 | 2.1 LOW | N/A |
Moby Netsuite Web Server 1.02 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request. | |||||
CVE-2000-0855 | 1 Xs4all Data | 1 Xs4all Data Sunftp | 2024-02-04 | 5.0 MEDIUM | N/A |
SunFTP build 9(1) allows remote attackers to cause a denial of service by connecting to the server and disconnecting before sending a newline. | |||||
CVE-2004-0944 | 1 Mitel | 1 Mitel 3300 Integrated Communication Platform | 2024-02-04 | 5.0 MEDIUM | N/A |
The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 generates easily predictable web session IDs, which allows remote attackers to hijack other sessions via the parentsessionid cookie. | |||||
CVE-1999-0081 | 1 Washington University | 1 Wu-ftpd | 2024-02-04 | 5.0 MEDIUM | N/A |
wu-ftp allows files to be overwritten via the rnfr command. | |||||
CVE-2000-0461 | 2 Freebsd, Netbsd | 2 Freebsd, Netbsd | 2024-02-04 | 2.1 LOW | N/A |
The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call. | |||||
CVE-2003-0576 | 1 Sgi | 1 Irix | 2024-02-04 | 5.0 MEDIUM | N/A |
Unknown vulnerability in the NFS daemon (nfsd) in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of service (kernel panic) via certain packets that cause XDR decoding errors, a different vulnerability than CVE-2003-0619. | |||||
CVE-2002-2146 | 1 Savant | 1 Savant Webserver | 2024-02-04 | 7.5 HIGH | N/A |
cgitest.exe in Savant Web Server 3.1 and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request. | |||||
CVE-2000-0251 | 1 Hp | 2 Hp-ux, Vvos | 2024-02-04 | 5.0 MEDIUM | N/A |
HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses. | |||||
CVE-1999-1157 | 1 Microsoft | 1 Windows Nt | 2024-02-04 | 5.0 MEDIUM | N/A |
Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an ICMP Subnet Mask Address Request packet, when certain multiple IP addresses are bound to the same network interface. | |||||
CVE-2002-0807 | 1 Mozilla | 1 Bugzilla | 2024-02-04 | 7.5 HIGH | N/A |
Cross-site scripting vulnerabilities in Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, could allow remote attackers to execute script as other Bugzilla users via the full name (real name) field, which is not properly quoted by editusers.cgi. | |||||
CVE-1999-0176 | 1 Webgais Development Team | 1 Webgais | 2024-02-04 | 7.5 HIGH | N/A |
The Webgais program allows a remote user to execute arbitrary commands. |