Total
253993 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-2129 | 1 Loom Software | 2 Surfnow Professional, Surfnow Standard | 2024-02-04 | 5.0 MEDIUM | N/A |
SurfNOW 2.2 allows remote attackers to cause a denial of service (crash) via a series of long HTTP GET requests, possibly triggering a buffer overflow. | |||||
CVE-2004-1832 | 1 Apple | 1 Mac Os X Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in the GUI admin service in Mac OS X Server 10.3 allows remote attackers to cause a denial of service (crash and restart) via a large amount of data to TCP port 660. | |||||
CVE-2002-0552 | 1 Melange | 1 Melange Chat System | 2024-02-04 | 7.5 HIGH | N/A |
Multiple buffer overflows in Melange Chat server 2.02 allow remote or local attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long argument in the /yell command, (2) long lines in the /etc/melange.conf configuration file, (3) long file names, or possibly other attacks. | |||||
CVE-2003-1095 | 1 Bea | 1 Weblogic Server | 2024-02-04 | 4.6 MEDIUM | N/A |
BEA WebLogic Server and Express 7.0 and 7.0.0.1, when using "memory" session persistence for web applications, does not clear authentication information when a web application is redeployed, which could allow users of that application to gain access without having to re-authenticate. | |||||
CVE-2004-1707 | 1 Oracle | 5 Application Server, Application Server Portal, Database Server Lite and 2 more | 2024-02-04 | 7.2 HIGH | N/A |
The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libclntsh.so.9.0. | |||||
CVE-2001-0710 | 2 Freebsd, Netbsd | 2 Freebsd, Netbsd | 2024-02-04 | 5.0 MEDIUM | N/A |
NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of service by sending a large number of IP fragments to the machine, exhausting the mbuf pool. | |||||
CVE-2004-2130 | 1 Phpbb Group | 1 Phpbb | 2024-02-04 | 4.3 MEDIUM | N/A |
Multiple cross-site scripting (XSS) vulnerabilities in privmsg.php in phpBB 2.0.6 allow remote attackers to execute arbitrary script or HTML via the (1) folder or (2) mode variables. | |||||
CVE-2004-2177 | 1 Devoybb | 1 Devoybb Web Forum | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in DevoyBB Web Forum 1.0.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. | |||||
CVE-2001-1200 | 1 Microsoft | 1 Windows Xp | 2024-02-04 | 7.2 HIGH | N/A |
Microsoft Windows XP allows local users to bypass a locked screen and run certain programs that are associated with Hot Keys. | |||||
CVE-2003-1302 | 1 Php | 1 Php | 2024-02-04 | 5.0 MEDIUM | N/A |
The IMAP functionality in PHP before 4.3.1 allows remote attackers to cause a denial of service via an e-mail message with a (1) To or (2) From header with an address that contains a large number of "\" (backslash) characters. | |||||
CVE-1999-0840 | 1 Sun | 1 Sunos | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in CDE dtmail and dtmailpr programs allows local users to gain privileges via a long -f option. | |||||
CVE-2002-2363 | 1 Hp | 1 Hp-ux | 2024-02-04 | 7.2 HIGH | N/A |
VJE.VJE-RUN in HP-UX 11.00 adds bin to /etc/PATH, which could allow local users to gain privileges. | |||||
CVE-2002-2391 | 2 Webchat.org, Xoops | 2 Webchat, Xoops | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php of WebChat 1.5 included in XOOPS 1.0 allows remote attackers to execute arbitrary SQL commands via the roomid parameter. | |||||
CVE-2001-0126 | 1 Oracle | 1 Oracle8i | 2024-02-04 | 7.5 HIGH | N/A |
Oracle XSQL servlet 1.0.3.0 and earlier allows remote attackers to execute arbitrary Java code by redirecting the XSQL server to another source via the xml-stylesheet parameter in the xslt stylesheet. | |||||
CVE-2001-0879 | 1 Microsoft | 4 Sql Server, Windows 2000, Windows Nt and 1 more | 2024-02-04 | 5.0 MEDIUM | N/A |
Format string vulnerability in the C runtime functions in SQL Server 7.0 and 2000 allows attackers to cause a denial of service. | |||||
CVE-2002-0442 | 1 Caldera | 1 Openserver | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in dlvr_audit for Caldera OpenServer 5.0.5 and 5.0.6 allows local users to gain root privileges. | |||||
CVE-2003-1184 | 1 Thwboard | 1 Thwboard | 2024-02-04 | 4.3 MEDIUM | N/A |
Multiple cross-site scripting (XSS) vulnerabilities in ThWboard Beta 2.8 and 2.81 allow remote attackers to inject arbitrary web script or HTML via (1) time in board.php, (2) the profile Homepage-Feld, (3) pictures, and (4) other "Diverse XSS Bugs." | |||||
CVE-1999-0472 | 2 Network Appliance, Snmp | 2 Netcache, Snmp | 2024-02-04 | 5.0 MEDIUM | N/A |
The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it. | |||||
CVE-2002-1719 | 1 Bavo | 1 Bavo | 2024-02-04 | 5.0 MEDIUM | N/A |
Unknown vulnerability in Bavo 0.3 allows remote attackers to modify posted messages. | |||||
CVE-1999-0848 | 2 Isc, Sun | 3 Bind, Solaris, Sunos | 2024-02-04 | 5.0 MEDIUM | N/A |
Denial of service in BIND named via consuming more than "fdmax" file descriptors. |