Total
253940 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-2300 | 1 3com | 1 Webbngss3nbxnts | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in ftpd 5.4 in 3Com NBX 4.0.17 or ftpd 5.4.2 in 3Com NBX 4.1.4 allows remote attackers to cause a denial of service (crash) via a long CEL command. | |||||
CVE-2002-0142 | 1 Pi3 | 1 Pi3web | 2024-02-04 | 7.5 HIGH | N/A |
CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters. | |||||
CVE-2001-0377 | 1 Infradig | 1 Inframail | 2024-02-04 | 5.0 MEDIUM | N/A |
Infradig Inframail prior to 3.98a allows a remote attacker to create a denial of service via a malformed POST request which includes a space followed by a large string. | |||||
CVE-2004-0208 | 1 Microsoft | 4 Windows 2000, Windows 2003 Server, Windows Nt and 1 more | 2024-02-04 | 7.2 HIGH | N/A |
The Virtual DOS Machine (VDM) subsystem of Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local users to access kernel memory and gain privileges via a malicious program that modified some system structures in a way that is not properly validated by privileged operating system functions. | |||||
CVE-1999-0342 | 1 Pam | 1 Pam | 2024-02-04 | 6.2 MEDIUM | N/A |
Linux PAM modules allow local users to gain root access using temporary files. | |||||
CVE-2003-1426 | 1 Cpanel | 1 Cpanel | 2024-02-04 | 3.3 LOW | N/A |
Openwebmail in cPanel 5.0, when run using suid Perl, adds the directory in the SCRIPT_FILENAME environment variable to Perl's @INC include array, which allows local users to execute arbitrary code by modifying SCRIPT_FILENAME to reference a directory containing a malicious openwebmail-shared.pl executable. | |||||
CVE-1999-1406 | 1 Redhat | 1 Linux | 2024-02-04 | 2.1 LOW | N/A |
dumpreg in Red Hat Linux 5.1 opens /dev/mem with O_RDWR access, which allows local users to cause a denial of service (crash) by redirecting fd 1 (stdout) to the kernel. | |||||
CVE-1999-0356 | 2024-02-04 | 10.0 HIGH | N/A | ||
ControlIT v4.5 and earlier uses weak encryption to store usernames and passwords in an address book. | |||||
CVE-2004-0636 | 1 Aol | 1 Instant Messenger | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote attackers to execute arbitrary code via a long Away message. | |||||
CVE-2002-1221 | 3 Freebsd, Isc, Openbsd | 3 Freebsd, Bind, Openbsd | 2024-02-04 | 5.0 MEDIUM | N/A |
BIND 8.x through 8.3.3 allows remote attackers to cause a denial of service (crash) via SIG RR elements with invalid expiry times, which are removed from the internal BIND database and later cause a null dereference. | |||||
CVE-2000-0875 | 1 Texas Imperial Software | 2 Wftpd, Wftpd Pro | 2024-02-04 | 5.0 MEDIUM | N/A |
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to cause a denial of service by sending a long string of unprintable characters. | |||||
CVE-1999-1442 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 7.2 HIGH | N/A |
Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service (crash) via a particular sequence of instructions, possibly related to accessing addresses outside of segments. | |||||
CVE-1999-0462 | 1 Suse | 1 Suse Linux | 2024-02-04 | 7.2 HIGH | N/A |
suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing a setuid script in a mountable file system, e.g. a CD-ROM or floppy disk. | |||||
CVE-2004-0376 | 1 Oftpd | 1 Oftpd | 2024-02-04 | 5.0 MEDIUM | N/A |
oftpd 0.3.6 and earlier allows remote attackers to cause a denial of service (crash) via a PORT command with a large value. | |||||
CVE-2001-1045 | 1 Basilix | 1 Basilix Webmail | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the request_id[DUMMY] parameter. | |||||
CVE-2004-1155 | 1 Microsoft | 2 Ie, Internet Explorer | 2024-02-04 | 7.5 HIGH | N/A |
Internet Explorer 5.01 through 6 allows remote attackers to spoof arbitrary web sites by injecting content from one window into another window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability. NOTE: later research shows that Internet Explorer 7 on Windows XP SP2 is also vulnerable. | |||||
CVE-1999-0341 | 2 Debian, Slackware | 2 Debian Linux, Slackware Linux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in the Linux mail program "deliver" allows local users to gain root access. | |||||
CVE-1999-0114 | 1 Elm Development Group | 1 Elm | 2024-02-04 | 4.6 MEDIUM | N/A |
Local users can execute commands as other users, and read other users' files, through the filter command in the Elm elm-2.4 mail package using a symlink attack. | |||||
CVE-2000-0183 | 1 Michael Sandrof | 1 Ircii | 2024-02-04 | 5.1 MEDIUM | N/A |
Buffer overflow in ircII 4.4 IRC client allows remote attackers to execute commands via the DCC chat capability. | |||||
CVE-2002-2400 | 1 Hughes Technologies | 1 Libhttpd | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in the httpdProcessRequest function in LibHTTPD 1.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP POST request. |