Total
253975 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2003-1109 | 1 Cisco | 4 Ios, Ip Phone 7940, Ip Phone 7960 and 1 more | 2024-02-04 | 7.5 HIGH | N/A |
| The Session Initiation Protocol (SIP) implementation in multiple Cisco products including IP Phone models 7940 and 7960, IOS versions in the 12.2 train, and Secure PIX 5.2.9 to 6.2.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | |||||
| CVE-1999-0690 | 2 Cde, Hp | 2 Cde, Hp-ux | 2024-02-04 | 7.2 HIGH | N/A |
| HP CDE program includes the current directory in root's PATH variable. | |||||
| CVE-2000-1195 | 1 Caldera | 2 Openlinux Edesktop, Openlinux Eserver | 2024-02-04 | 7.5 HIGH | N/A |
| telnet daemon (telnetd) from the Linux netkit package before netkit-telnet-0.16 allows remote attackers to bypass authentication when telnetd is running with the -L command line option. | |||||
| CVE-2003-0778 | 1 Sane | 2 Sane, Sane-backend | 2024-02-04 | 5.0 MEDIUM | N/A |
| saned in sane-backends 1.0.7 and earlier, and possibly later versions, does not properly allocate memory in certain cases, which could allow attackers to cause a denial of service (memory consumption). | |||||
| CVE-2002-1973 | 2 Microsoft, Working Resources Inc. | 2 Foundation Class Library, Badblue | 2024-02-04 | 7.5 HIGH | N/A |
| Buffer overflow in CHttpServer::OnParseError in the ISAPI extension (Isapi.cpp) when built using Microsoft Foundation Class (MFC) static libraries in Visual C++ 5.0, and 6.0 before SP3, as used in multiple products including BadBlue, allows remote attackers to cause a denial of service (access violation and crash) and possibly execute arbitrary code via a long query string that causes a parsing error. | |||||
| CVE-2001-0789 | 1 Kaspersky | 1 Kaspersky Anti-virus | 2024-02-04 | 10.0 HIGH | N/A |
| Format string vulnerability in avpkeeper in Kaspersky KAV 3.5.135.2 for Sendmail allows remote attackers to cause a denial of service or possibly execute arbitrary code via a malformed mail message. | |||||
| CVE-2002-1070 | 1 Php-wiki | 1 Php-wiki | 2024-02-04 | 7.5 HIGH | N/A |
| Cross-site scripting vulnerability in PHPWiki Postnuke wiki module allows remote attackers to execute script as other PHPWiki users via the pagename parameter. | |||||
| CVE-1999-0350 | 1 Rational Software | 1 Clearcase | 2024-02-04 | 6.2 MEDIUM | N/A |
| Race condition in the db_loader program in ClearCase gives local users root access by setting SUID bits. | |||||
| CVE-2002-0382 | 1 Xchat | 1 Xchat | 2024-02-04 | 7.5 HIGH | N/A |
| XChat IRC client allows remote attackers to execute arbitrary commands via a /dns command on a host whose DNS reverse lookup contains shell metacharacters. | |||||
| CVE-2000-0697 | 1 Sun | 1 Solaris Answerbook2 | 2024-02-04 | 10.0 HIGH | N/A |
| The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands via shell metacharacters. | |||||
| CVE-2001-1442 | 1 Isc | 1 Inn | 2024-02-04 | 4.6 MEDIUM | N/A |
| Buffer overflow in innfeed for ISC InterNetNews (INN) before 2.3.0 allows local users in the "news" group to gain privileges via a long -c command line argument. | |||||
| CVE-2003-0445 | 1 Webfs | 1 Webfs | 2024-02-04 | 7.5 HIGH | N/A |
| Buffer overflow in webfs before 1.17.1 allows remote attackers to execute arbitrary code via an HTTP request with a long Request-URI. | |||||
| CVE-2001-1434 | 1 Cisco | 1 Ios | 2024-02-04 | 5.0 MEDIUM | N/A |
| Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created. | |||||
| CVE-2002-0224 | 1 Microsoft | 3 Internet Information Services, Sql Server, Windows 2000 | 2024-02-04 | 5.0 MEDIUM | N/A |
| The MSDTC (Microsoft Distributed Transaction Service Coordinator) for Microsoft Windows 2000, Microsoft IIS 5.0 and SQL Server 6.5 through SQL 2000 0.0 allows remote attackers to cause a denial of service (crash or hang) via malformed (random) input. | |||||
| CVE-2001-0364 | 1 Ssh | 1 Ssh2 | 2024-02-04 | 5.0 MEDIUM | N/A |
| SSH Communications Security sshd 2.4 for Windows allows remote attackers to create a denial of service via a large number of simultaneous connections. | |||||
| CVE-2002-2251 | 1 Marcos Luiz Onisto | 1 Lib Cgi | 2024-02-04 | 10.0 HIGH | N/A |
| Buffer overflow in the changevalue function in libcgi.h for Marcos Luiz Onisto Lib CGI 0.1 allows remote attackers to execute arbitrary code via a long argument. | |||||
| CVE-2002-0918 | 1 Cgiscript.net | 1 Cspassword | 2024-02-04 | 5.0 MEDIUM | N/A |
| CGIScript.net csPassword.cgi leaks sensitive information such as the pathname of the server in debug messages that are presented when the script fails, which allows remote attackers to obtain the information via a "remove" option in the command parameter, which generates an error. | |||||
| CVE-2003-1271 | 1 An | 1 An-http | 2024-02-04 | 4.3 MEDIUM | N/A |
| Cross-site scripting vulnerability (XSS) in AN HTTP 1.41e allows remote attackers to execute arbitrary web script or HTML as other users via a URL containing the script. | |||||
| CVE-2004-1973 | 1 Digi | 1 Www Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| DiGi Web Server allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request that contains a large number of / (slash) characters, which consumes resources when DiGi converts the slashes to \ (backslash) characters. | |||||
| CVE-2004-0272 | 1 Maxwebportal | 1 Maxwebportal | 2024-02-04 | 7.5 HIGH | N/A |
| SQL injection vulnerability in MaxWebPortal allows remote attackers to inject arbitrary SQL code and gain sensitive information via the SendTo parameter in Personal Messages. | |||||