Total
253954 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-1567 | 1 Silent-storm | 1 Silent-storm Portal | 2024-02-04 | 7.5 HIGH | N/A |
profile.php in Silent Storm Portal 2.1 and 2.2 allows remote attackers to gain privileges by setting the mail parameter to 1, which is the value for an administrator. | |||||
CVE-2003-1161 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 7.2 HIGH | N/A |
exit.c in Linux kernel 2.6-test9-CVS, as stored on kernel.bkbits.net, was modified to contain a backdoor, which could allow local users to elevate their privileges by passing __WCLONE|__WALL to the sys_wait4 function. | |||||
CVE-1999-0142 | 2 Netscape, Sun | 2 Navigator, Java | 2024-02-04 | 7.5 HIGH | N/A |
The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts. | |||||
CVE-2001-0286 | 1 A1webserver | 1 Http Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in A1 HTTP server 1.0a allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request. | |||||
CVE-2002-1073 | 1 Atrium Software | 1 Mercur Mailserver | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in the control service for MERCUR Mailserver 4.2 allows remote attackers to execute arbitrary code via a long password. | |||||
CVE-2002-0447 | 1 Xerver | 1 Xerver | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Xerver Free Web Server 2.10 and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in an HTTP GET request. | |||||
CVE-2003-0337 | 1 Platform | 1 Lsadmin | 2024-02-04 | 4.6 MEDIUM | N/A |
The ckconfig command in lsadmin for Load Sharing Facility (LSF) 5.1 allows local users to execute arbitrary programs by modifying the LSF_ENVDIR environment variable to reference an alternate lsf.conf file, then modifying LSF_SERVERDIR to point to a malicious lim program, which lsadmin then executes. | |||||
CVE-2000-0658 | 1 Analogx | 1 Proxy | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long USER command in the POP3 protocol. | |||||
CVE-2001-0277 | 1 Working Resources Inc. | 1 Badblue | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in ext.dll in BadBlue 1.02.07 Personal Edition allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP GET request. | |||||
CVE-2001-0412 | 1 Cisco | 3 Content Services Switch 11050, Content Services Switch 11150, Content Services Switch 11800 | 2024-02-04 | 7.2 HIGH | N/A |
Cisco Content Services (CSS) switch products 11800 and earlier, aka Arrowpoint, allows local users to gain privileges by entering debug mode. | |||||
CVE-2000-0441 | 1 Ibm | 1 Aix | 2024-02-04 | 5.0 MEDIUM | N/A |
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems. | |||||
CVE-2004-0394 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 2.1 LOW | N/A |
A "potential" buffer overflow exists in the panic() function in Linux 2.4.x, although it may not be exploitable due to the functionality of panic. | |||||
CVE-2004-0108 | 3 Redhat, Sgi, Sysstat | 3 Sysstat, Propack, Sysstat | 2024-02-04 | 4.6 MEDIUM | N/A |
The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107. | |||||
CVE-2000-0425 | 1 Lsoft | 1 Listserv | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands. | |||||
CVE-2001-1250 | 1 Vwebserver | 1 Vwebserver | 2024-02-04 | 5.0 MEDIUM | N/A |
vWebServer 1.2.0 allows remote attackers to cause a denial of service (hang) via a small number of long URL requests, possibly due to a buffer overflow. | |||||
CVE-2000-0924 | 1 Armada Design | 1 Master Index | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in search.cgi CGI script in Armada Master Index allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catigory" parameter. | |||||
CVE-2000-0885 | 1 Microsoft | 3 Systems Management Server, Windows 2000, Windows Nt | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflows in Microsoft Network Monitor (Netmon) allow remote attackers to execute arbitrary commands via a long Browser Name in a CIFS Browse Frame, a long SNMP community name, or a long username or filename in an SMB session, aka the "Netmon Protocol Parsing" vulnerability. NOTE: It is highly likely that this candidate will be split into multiple candidates. | |||||
CVE-2004-1680 | 1 Pingtel | 1 Xpressa | 2024-02-04 | 5.0 MEDIUM | N/A |
application.cgi in the Pingtel Xpressa handset running firmware 2.1.11.24 allows remote authenticated users to cause a denial of service (VxWorks OS crash) via a long HTTP GET request, possibly triggering a buffer overflow. | |||||
CVE-2002-1038 | 1 Michael Dean | 1 Double Choco Latte | 2024-02-04 | 5.0 MEDIUM | N/A |
Double Choco Latte (DCL) before 20020706 does not properly verify if a file was uploaded, which allows remote attackers to conduct certain operations on arbitrary files via the (1) Projects: Upload File Attachment or (2) Work Orders: Import features. | |||||
CVE-1999-0551 | 1 Hp | 1 Openmail | 2024-02-04 | 4.6 MEDIUM | N/A |
HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests. |