Total
253964 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0099 | 1 Sco | 1 Unixware | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument. | |||||
CVE-2002-2122 | 1 Pointsec Mobile Technologies | 1 Pointsec | 2024-02-04 | 2.1 LOW | N/A |
Pointsec before 1.2 for PalmOS stores a user's PIN number in memory in plaintext, which allows a local attacker who steals an unlocked Palm to retrieve the PIN by dumping memory. | |||||
CVE-2003-0496 | 1 Microsoft | 2 Windows 2000, Windows 2000 Terminal Services | 2024-02-04 | 7.2 HIGH | N/A |
Microsoft SQL Server before Windows 2000 SP4 allows local users to gain privileges as the SQL Server user by calling the xp_fileexist extended stored procedure with a named pipe as an argument instead of a normal file. | |||||
CVE-2004-1533 | 1 Digital Mappings Systems | 1 Pop3 Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in pop3svr.exe for DMS POP3 1.5.3.27 and earlier allows remote attackers to cause a denial of service (service crash) via a long (1) username or (2) password. | |||||
CVE-2004-1817 | 1 Francisco Burzi | 1 Php-nuke | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in modules.php in Php-Nuke 7.1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) Your Name field, (2) e-mail field, (3) nicname field, (4) fname parameter, (5) ratenum parameter, or (6) search field. | |||||
CVE-2000-0715 | 2 Conectiva, Kirk Bauer | 2 Linux, Diskcheck | 2024-02-04 | 2.1 LOW | N/A |
DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite arbitrary files via a symlink attack on a temporary file. | |||||
CVE-1999-0385 | 1 Microsoft | 1 Exchange Server | 2024-02-04 | 10.0 HIGH | N/A |
The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduct a denial of service or execute commands. | |||||
CVE-1999-1231 | 1 Ssh | 1 Ssh2 | 2024-02-04 | 5.0 MEDIUM | N/A |
ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remote attackers to determine user account names on the server. | |||||
CVE-1999-0389 | 1 Debian | 1 Debian Linux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in the bootp server in the Debian Linux netstd package. | |||||
CVE-1999-1404 | 1 Ibm | 1 Tivoli Opc Tracker Agent | 2024-02-04 | 5.0 MEDIUM | N/A |
IBM/Tivoli OPC Tracker Agent version 2 release 1 allows remote attackers to cause a denial of service (resource exhaustion) via malformed data to the localtracker client port (5011), which prevents the connection from being closed properly. | |||||
CVE-1999-1128 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 5.1 MEDIUM | N/A |
Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands via a .isp file, which is automatically downloaded and executed without prompting the user. | |||||
CVE-2004-1990 | 1 Aldo Vargas | 1 Aldos Web Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Aldo's Web Server (aweb) 1.5 allows remote attackers to gain sensitive information via an arbitrary character, which reveals the full path and the user running the aweb process, possibly due to a malformed request. | |||||
CVE-2001-1116 | 1 Identix | 1 Biologon | 2024-02-04 | 4.6 MEDIUM | N/A |
Identix BioLogon 2.03 and earlier does not lock secondary displays on a multi-monitor system running Windows 98 or ME, which allows an attacker with physical access to the system to bypass authentication through a secondary display. | |||||
CVE-2004-0488 | 8 Apache, Gentoo, Mandrakesoft and 5 more | 10 Http Server, Linux, Mandrake Linux and 7 more | 2024-02-04 | 7.5 HIGH | N/A |
Stack-based buffer overflow in the ssl_util_uuencode_binary function in ssl_util.c for Apache mod_ssl, when mod_ssl is configured to trust the issuing CA, may allow remote attackers to execute arbitrary code via a client certificate with a long subject DN. | |||||
CVE-1999-0869 | 2 Microsoft, Netscape | 2 Internet Explorer, Navigator | 2024-02-04 | 2.6 LOW | N/A |
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing. | |||||
CVE-2003-0124 | 1 Andries Brouwer | 1 Man | 2024-02-04 | 4.6 MEDIUM | N/A |
man before 1.5l allows attackers to execute arbitrary code via a malformed man file with improper quotes, which causes the my_xsprintf function to return a string with the value "unsafe," which is then executed as a program via a system call if it is in the search path of the user who runs man. | |||||
CVE-2003-1280 | 1 Eekim | 1 Cgihtml | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in cgihtml 1.69 allows remote attackers to overwrite and create arbitrary files via a .. (dot dot) in multipart/form-data uploads. | |||||
CVE-2000-0978 | 1 Bb4 | 1 Big Brother Network Monitor | 2024-02-04 | 7.5 HIGH | N/A |
bbd server in Big Brother System and Network Monitor before 1.5c2 allows remote attackers to execute arbitrary commands via the "&" shell metacharacter. | |||||
CVE-2002-2215 | 1 Php | 1 Php | 2024-02-04 | 5.0 MEDIUM | N/A |
The imap_header function in the IMAP functionality for PHP before 4.3.0 allows remote attackers to cause a denial of service via an e-mail message with a large number of "To" addresses, which triggers an error in the rfc822_write_address function. | |||||
CVE-2002-1724 | 1 Onlinetools.org | 1 Phpimageview | 2024-02-04 | 6.8 MEDIUM | N/A |
Cross-site scripting vulnerability (XSS) in phpimageview.php for PHPImageView 1.0 allows remote attackers to execute arbitrary script as other users via the pic parameter. |