Total
253999 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1059 | 1 Van Dyke Technologies | 1 Securecrt | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Van Dyke SecureCRT SSH client before 3.4.6, and 4.x before 4.0 beta 3, allows an SSH server to execute arbitrary code via a long SSH1 protocol version string. | |||||
CVE-1999-1332 | 1 Redhat | 1 Linux | 2024-02-04 | 2.1 LOW | N/A |
gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file. | |||||
CVE-2002-1000 | 1 Analogx | 1 Simpleserver Shout | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in AnalogX SimpleServer:Shout 1.0 allows remote attackers to cause a denial of service and execute arbitrary code via a long request to TCP port 8001. | |||||
CVE-2003-1203 | 1 Mambo | 1 Mambo Site Server | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in index.php for Mambo Site Server 4.0.10 allows remote attackers to execute script on other clients via the ?option parameter. | |||||
CVE-2002-1141 | 1 Microsoft | 1 Services | 2024-02-04 | 5.0 MEDIUM | N/A |
An input validation error in the Sun Microsystems RPC library Services for Unix 3.0 Interix SD, as implemented on Microsoft Windows NT4, 2000, and XP, allows remote attackers to cause a denial of service via malformed fragmented RPC client packets, aka "Denial of service by sending an invalid RPC request." | |||||
CVE-2002-1169 | 1 Ibm | 1 Websphere Caching Proxy Server | 2024-02-04 | 5.0 MEDIUM | N/A |
IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to cause a denial of service (crash) via an HTTP request to helpout.exe with a missing HTTP version number, which causes ibmproxy.exe to crash. | |||||
CVE-2000-0289 | 3 Debian, Linux, Redhat | 3 Debian Linux, Linux Kernel, Linux | 2024-02-04 | 5.0 MEDIUM | N/A |
IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection. | |||||
CVE-2002-0508 | 1 Wwwisis | 1 Wwwisis | 2024-02-04 | 10.0 HIGH | N/A |
wwwisis 3.45 and earlier allows remote attackers to execute arbitrary commands and read files via the parameters (1) prolog or (2) epilog. | |||||
CVE-2002-2114 | 1 Netjuke | 1 Netjuke | 2024-02-04 | 7.5 HIGH | N/A |
Artekopia Netjuke before 1.0 b7 allows remote attackers to execute arbitrary code on the web server, possibly via the section parameter, which is passed to an eval call. | |||||
CVE-2003-1292 | 1 Ashwebstudio | 1 Ashnews | 2024-02-04 | 5.0 MEDIUM | N/A |
PHP remote file include vulnerability in Derek Ashauer ashNews 0.83 allows remote attackers to include and execute arbitrary remote files via a URL in the pathtoashnews parameter to (1) ashnews.php and (2) ashheadlines.php. | |||||
CVE-2001-1007 | 1 Starfish | 1 Truesync Desktop | 2024-02-04 | 5.0 MEDIUM | N/A |
Starfish Truesync Desktop 2.0b as used on the REX 5000 PDA uses a small keyspace for device keys and does not impose a delay when an incorrect key is entered, which allows attackers to more quickly guess the key via a brute force attack. | |||||
CVE-1999-1309 | 1 Sendmail | 1 Sendmail | 2024-02-04 | 7.2 HIGH | N/A |
Sendmail before 8.6.7 allows local users to gain root access via a large value in the debug (-d) command line option. | |||||
CVE-2001-0587 | 1 Sco | 1 Openserver | 2024-02-04 | 7.2 HIGH | N/A |
deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command. | |||||
CVE-1999-0806 | 1 Sun | 1 Sunos | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in Solaris dtprintinfo program. | |||||
CVE-2000-1221 | 3 Debian, Redhat, Sgi | 3 Debian Linux, Linux, Irix | 2024-02-04 | 10.0 HIGH | N/A |
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP. | |||||
CVE-2001-1191 | 1 Ibm | 1 Tivoli Secureway Policy Director | 2024-02-04 | 5.0 MEDIUM | N/A |
WebSeal in IBM Tivoli SecureWay Policy Director 3.8 allows remote attackers to cause a denial of service (crash) via a URL that ends in %2e. | |||||
CVE-2003-1186 | 1 Telcondex | 1 Simplewebserver | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in TelCondex SimpleWebServer 2.12.30210 Build3285 allows remote attackers to execute arbitrary code via a long HTTP Referer header. | |||||
CVE-1999-1087 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 7.5 HIGH | N/A |
Internet Explorer 4 treats a 32-bit number ("dotless IP address") in the a URL as the hostname instead of an IP address, which causes IE to apply Local Intranet Zone settings to the resulting web page, allowing remote malicious web servers to conduct unauthorized activities by using URLs that contain the dotless IP address for their server. | |||||
CVE-2000-0716 | 1 Alt-n | 1 Mdaemon | 2024-02-04 | 2.6 LOW | N/A |
WorldClient email client in MDaemon 2.8 includes the session ID in the referer field of an HTTP request when the user clicks on a URL, which allows the visited web site to hijack the session ID and read the user's email. | |||||
CVE-2002-0911 | 1 Caldera | 1 Volution Manager | 2024-02-04 | 7.2 HIGH | N/A |
Caldera Volution Manager 1.1 stores the Directory Administrator password in cleartext in the slapd.conf file, which could allow local users to gain privileges. |