Total
253990 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0461 | 1 Redhat | 1 Linux | 2024-02-04 | 2.1 LOW | N/A |
/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, which could allow local users to obtain potentially sensitive information such as the length of passwords. | |||||
CVE-2004-0780 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in uustat in Sun Solaris 8 and 9 allows local users to execute arbitrary code via a long -S command line argument. | |||||
CVE-2001-0808 | 1 Yngve Svendsen | 1 Gnatsweb | 2024-02-04 | 10.0 HIGH | N/A |
gnatsweb.pl in GNATS GnatsWeb 2.7 through 3.95 allows remote attackers to execute arbitrary commands via certain characters in the help_file parameter. | |||||
CVE-1999-0147 | 1 University Of Arizona | 2 Glimpse Http, Webglimpse | 2024-02-04 | 7.5 HIGH | N/A |
The aglimpse CGI program of the Glimpse package allows remote execution of arbitrary commands. | |||||
CVE-2000-0593 | 1 Sapporoworks | 1 Sapporoworks Winproxy | 2024-02-04 | 5.0 MEDIUM | N/A |
WinProxy 2.0 and 2.0.1 allows remote attackers to cause a denial of service by sending an HTTP GET request without listing an HTTP version number. | |||||
CVE-2003-0424 | 1 Apple | 1 Darwin Streaming Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to obtain the source code for scripts by appending encoded space (%20) or . (%2e) characters to an HTTP request for the script, e.g. view_broadcast.cgi. | |||||
CVE-2001-0341 | 1 Microsoft | 3 Frontpage Server Extensions, Windows 2000, Windows Nt | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Microsoft Visual Studio RAD Support sub-component of FrontPage Server Extensions allows remote attackers to execute arbitrary commands via a long registration request (URL) to fp30reg.dll. | |||||
CVE-2001-0252 | 1 Iplanet | 1 Iplanet Enterprise Server | 2024-02-04 | 5.0 MEDIUM | N/A |
iPlanet (formerly Netscape) Enterprise Server 4.1 allows remote attackers to cause a denial of service via a long HTTP GET request that contains many "/../" (dot dot) sequences. | |||||
CVE-1999-1344 | 1 Auto Ftp | 1 Auto Ftp | 2024-02-04 | 7.5 HIGH | N/A |
Auto_FTP.pl script in Auto_FTP 0.2 stores usernames and passwords in plaintext in the auto_ftp.conf configuration file. | |||||
CVE-2000-1174 | 1 Ethereal Group | 1 Ethereal | 2024-02-04 | 7.5 HIGH | N/A |
Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username. | |||||
CVE-2002-1687 | 1 Ibm | 1 Aix | 2024-02-04 | 2.1 LOW | N/A |
Buffer overflow in the diagnostics library in AIX allows local users to "cause data and instructions to be overwritten" via a long DIAGNOSTICS environment variable. | |||||
CVE-2001-0538 | 1 Microsoft | 1 Outlook | 2024-02-04 | 10.0 HIGH | N/A |
Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers to execute arbitrary commands via a malicious HTML e-mail message or web page. | |||||
CVE-2003-0259 | 1 Cisco | 6 Vpn 3000 Concentrator Series Software, Vpn 3002 Hardware Client, Vpn 3015 Concentrator and 3 more | 2024-02-04 | 5.0 MEDIUM | N/A |
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7 allows remote attackers to cause a denial of service (reload) via a malformed SSH initialization packet. | |||||
CVE-1999-0965 | 1 X.org | 1 Xterm | 2024-02-04 | 6.2 MEDIUM | N/A |
Race condition in xterm allows local users to modify arbitrary files via the logging option. | |||||
CVE-2004-1050 | 2 Avaya, Microsoft | 7 Definity One Media Server, Ip600 Media Servers, Modular Messaging Message Storage Server and 4 more | 2024-02-04 | 10.0 HIGH | N/A |
Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka "the IFRAME vulnerability" or the "HTML Elements Vulnerability." | |||||
CVE-2003-0803 | 1 Nokia | 1 Electronic Documentation | 2024-02-04 | 7.5 HIGH | N/A |
Nokia Electronic Documentation (NED) 5.0 allows remote attackers to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user. | |||||
CVE-1999-0178 | 1 Oreilly | 1 Oreilly Website | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a long query string. | |||||
CVE-2001-0489 | 1 Gftp | 1 Gftp | 2024-02-04 | 7.5 HIGH | N/A |
Format string vulnerability in gftp prior to 2.0.8 allows remote malicious FTP servers to execute arbitrary commands. | |||||
CVE-2001-0446 | 1 Ibm | 1 Websphere Commerce Suite | 2024-02-04 | 5.0 MEDIUM | N/A |
IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2 allows remote attackers to read source code for .jsp files by appending a / to the requested URL. | |||||
CVE-2004-0587 | 3 Mandrakesoft, Redhat, Suse | 4 Mandrake Linux, Mandrake Linux Corporate Server, Fedora Core and 1 more | 2024-02-04 | 2.1 LOW | N/A |
Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service. |