Total
253999 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0955 | 1 Openbsd | 1 Openbsd | 2024-02-04 | 4.6 MEDIUM | N/A |
OpenBSD kernel 3.3 and 3.4 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code in 3.4 via a program with an invalid header that is not properly handled by (1) ibcs2_exec.c in the iBCS2 emulation (compat_ibcs2) or (2) exec_elf.c, which leads to a stack-based buffer overflow. | |||||
CVE-2003-0879 | 2024-02-04 | N/A | N/A | ||
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2003-0518. Reason: This candidate is a reservation duplicate of CVE-2003-0518. Notes: All CVE users should reference CVE-2003-0518 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
CVE-2000-0333 | 2 Ethereal Group, Lbl | 2 Ethereal, Tcpdump | 2024-02-04 | 5.0 MEDIUM | N/A |
tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet. | |||||
CVE-2004-2118 | 1 Tinyserver | 1 Tinyserver | 2024-02-04 | 5.0 MEDIUM | N/A |
Tiny Server 1.1 allows remote attackers to cause a denial of service (crash) via a GET request with a long filename, possibly due to a buffer overflow. | |||||
CVE-2003-0689 | 1 Redhat | 1 Enterprise Linux | 2024-02-04 | 7.5 HIGH | N/A |
The getgrouplist function in GNU libc (glibc) 2.2.4 and earlier allows attackers to cause a denial of service (segmentation fault) and execute arbitrary code when a user is a member of a large number of groups, which can cause a buffer overflow. | |||||
CVE-2004-0752 | 1 Openoffice | 1 Openoffice | 2024-02-04 | 2.1 LOW | N/A |
OpenOffice (OOo) 1.1.2 creates predictable directory names with insecure permissions during startup, which may allow local users to read or list files of other users. | |||||
CVE-2003-0273 | 1 Best Practical Solutions | 1 Request Tracker | 2024-02-04 | 6.8 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in the web interface for Request Tracker (RT) 1.0 through 1.0.7 allows remote attackers to execute script via message bodies. | |||||
CVE-2000-0308 | 2 Netscape, Sco | 4 Enterprise Server, Fasttrack Server, Proxy Server and 1 more | 2024-02-04 | 10.0 HIGH | N/A |
Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges. | |||||
CVE-2001-0220 | 2 Ja-elvis, Ko-helvis | 2 Ja-elvis, Ko-helvis | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in ja-elvis and ko-helvis ports of elvis allow local users to gain root privileges. | |||||
CVE-2003-1167 | 1 Gernot Stocker | 1 Kpopup | 2024-02-04 | 7.2 HIGH | N/A |
misc.cpp in KPopup 0.9.1 trusts the PATH variable when executing killall, which allows local users to elevate their privileges by modifying the PATH variable to reference a malicious killall program. | |||||
CVE-2002-0698 | 1 Microsoft | 1 Exchange Server | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Internet Mail Connector (IMC) for Microsoft Exchange Server 5.5 allows remote attackers to execute arbitrary code via an EHLO request from a system with a long name as obtained through a reverse DNS lookup, which triggers the overflow in IMC's hello response. | |||||
CVE-2001-0614 | 1 Carello | 1 E-commerce | 2024-02-04 | 7.5 HIGH | N/A |
Carello E-Commerce 1.2.1 and earlier allows a remote attacker to gain additional privileges and execute arbitrary commands via a specially constructed URL. | |||||
CVE-2001-0970 | 1 Tdavid | 1 Td Forum | 2024-02-04 | 7.5 HIGH | N/A |
Cross-site scripting vulnerability in TDForum 1.2 CGI script (tdforum12.cgi) allows remote attackers to execute arbitrary script on other clients via a forum message that contains the script. | |||||
CVE-2004-1306 | 1 Microsoft | 4 Windows 2000, Windows 2003 Server, Windows Nt and 1 more | 2024-02-04 | 5.1 MEDIUM | N/A |
Heap-based buffer overflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote attackers to execute arbitrary code via a crafted .hlp file. | |||||
CVE-2002-1503 | 1 Afd | 1 Afd | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in Automatic File Distributor (AFD) 1.2.14 and earlier allows local users to gain privileges via a long MON_WORK_DIR environment variable or -w (workdir) argument to (1) afd, (2) afdcmd, (3) afd_ctrl, (4) init_afd, (5) mafd, (6) mon_ctrl, (7) show_olog, or (8) udc. | |||||
CVE-2004-0246 | 1 Laurent Adda | 1 Les Commentaires | 2024-02-04 | 10.0 HIGH | N/A |
Multiple PHP remote file inclusion vulnerabilities in (1) fonctions.lib.php, (2) derniers_commentaires.php, and (3) admin.php in Les Commentaires 2.0 allow remote attackers to execute arbitrary PHP code via the rep parameter. | |||||
CVE-2000-0262 | 1 Avm | 1 Ken | 2024-02-04 | 5.0 MEDIUM | N/A |
The AVM KEN! ISDN Proxy server allows remote attackers to cause a denial of service via a malformed request. | |||||
CVE-1999-0018 | 3 Ibm, Sgi, Sun | 4 Aix, Irix, Solaris and 1 more | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in statd allows root privileges. | |||||
CVE-2000-0084 | 1 Globalscape | 1 Cuteftp | 2024-02-04 | 5.0 MEDIUM | N/A |
CuteFTP uses weak encryption to store password information in its tree.dat file. | |||||
CVE-2002-0111 | 1 Funsoft | 1 Dinos Webserver | 2024-02-04 | 7.5 HIGH | N/A |
Directory traversal vulnerability in Funsoft Dino's Webserver 1.2 and earlier allows remote attackers to read files or execute arbitrary commands via a .. (dot dot) in the URL. |