Total
253964 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0441 | 1 Ibm | 1 Aix | 2024-02-04 | 5.0 MEDIUM | N/A |
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems. | |||||
CVE-2004-0394 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 2.1 LOW | N/A |
A "potential" buffer overflow exists in the panic() function in Linux 2.4.x, although it may not be exploitable due to the functionality of panic. | |||||
CVE-2004-0108 | 3 Redhat, Sgi, Sysstat | 3 Sysstat, Propack, Sysstat | 2024-02-04 | 4.6 MEDIUM | N/A |
The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107. | |||||
CVE-2000-0425 | 1 Lsoft | 1 Listserv | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands. | |||||
CVE-2001-1250 | 1 Vwebserver | 1 Vwebserver | 2024-02-04 | 5.0 MEDIUM | N/A |
vWebServer 1.2.0 allows remote attackers to cause a denial of service (hang) via a small number of long URL requests, possibly due to a buffer overflow. | |||||
CVE-2000-0924 | 1 Armada Design | 1 Master Index | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in search.cgi CGI script in Armada Master Index allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catigory" parameter. | |||||
CVE-2000-0885 | 1 Microsoft | 3 Systems Management Server, Windows 2000, Windows Nt | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflows in Microsoft Network Monitor (Netmon) allow remote attackers to execute arbitrary commands via a long Browser Name in a CIFS Browse Frame, a long SNMP community name, or a long username or filename in an SMB session, aka the "Netmon Protocol Parsing" vulnerability. NOTE: It is highly likely that this candidate will be split into multiple candidates. | |||||
CVE-2004-1680 | 1 Pingtel | 1 Xpressa | 2024-02-04 | 5.0 MEDIUM | N/A |
application.cgi in the Pingtel Xpressa handset running firmware 2.1.11.24 allows remote authenticated users to cause a denial of service (VxWorks OS crash) via a long HTTP GET request, possibly triggering a buffer overflow. | |||||
CVE-2002-1038 | 1 Michael Dean | 1 Double Choco Latte | 2024-02-04 | 5.0 MEDIUM | N/A |
Double Choco Latte (DCL) before 20020706 does not properly verify if a file was uploaded, which allows remote attackers to conduct certain operations on arbitrary files via the (1) Projects: Upload File Attachment or (2) Work Orders: Import features. | |||||
CVE-1999-0551 | 1 Hp | 1 Openmail | 2024-02-04 | 4.6 MEDIUM | N/A |
HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests. | |||||
CVE-2002-2341 | 1 Sonicwall | 1 Soho3 | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in content blocking in SonicWALL SOHO3 6.3.0.0 allows remote attackers to inject arbitrary web script or HTML via a blocked URL. | |||||
CVE-2003-1063 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.5 HIGH | N/A |
The patches (1) 105693-13, (2) 108800-02, (3) 105694-13, and (4) 108801-02 for cachefs on Solaris 2.6 and 7 overwrite the inetd.conf file, which may silently reenable services and allow remote attackers to bypass the intended security policy. | |||||
CVE-2000-0296 | 1 Michael A. Gumienny | 1 Fcheck | 2024-02-04 | 7.2 HIGH | N/A |
fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck. | |||||
CVE-2001-1509 | 1 Hp | 1 Hp-ux | 2024-02-04 | 4.6 MEDIUM | N/A |
geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user's effective user id, which could allow local users to gain privileges. | |||||
CVE-1999-1343 | 1 Xerox | 1 Docucolor 4lp | 2024-02-04 | 5.0 MEDIUM | N/A |
HTTP server for Xerox DocuColor 4 LP allows remote attackers to cause a denial of service (hang) via a long URL that contains a large number of . characters. | |||||
CVE-1999-0914 | 1 Debian | 1 Debian Linux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in the FTP client in the Debian GNU/Linux netstd package. | |||||
CVE-1999-0347 | 2024-02-04 | 10.0 HIGH | N/A | ||
Internet Explorer 4.01 allows remote attackers to read local files and spoof web pages via a "%01" character in an "about:" Javascript URL, which causes Internet Explorer to use the domain specified after the character. | |||||
CVE-2004-0235 | 8 Clearswift, F-secure, Rarlab and 5 more | 13 Mailsweeper, F-secure Anti-virus, F-secure For Firewalls and 10 more | 2024-02-04 | 6.4 MEDIUM | N/A |
Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path"). | |||||
CVE-2000-1013 | 1 Freebsd | 1 Freebsd | 2024-02-04 | 7.2 HIGH | N/A |
The setlocale function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable. | |||||
CVE-2002-2385 | 1 Hotfoon Corporation | 1 Hotfoon | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in hotfoon4.exe in Hotfoon 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL containing a long voice phone number. |