Total
253999 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0058 | 1 Handspring | 1 Visor Network Hotsync | 2024-02-04 | 5.0 MEDIUM | N/A |
Network HotSync program in Handspring Visor does not have authentication, which allows remote attackers to retrieve email and files. | |||||
CVE-2002-0540 | 1 Nortel | 1 Cvx 1800 Multi-service Access Switch | 2024-02-04 | 7.5 HIGH | N/A |
Nortel CVX 1800 is installed with a default "public" community string, which allows remote attackers to read usernames and passwords and modify the CVX configuration. | |||||
CVE-2003-1154 | 1 Clearswift | 1 Mailsweeper | 2024-02-04 | 7.5 HIGH | N/A |
MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip attachment, as exploited by certain MIMAIL virus variants. | |||||
CVE-2002-2365 | 1 Springer Verlag Berlin Heidelberg | 1 Simple Wais | 2024-02-04 | 10.0 HIGH | N/A |
Simple WAIS (SWAIS) 1.11 allows remote attackers to execute arbitrary commands via the shell metacharacters in the search field, as demonstrated using the "|" (pipe) character. | |||||
CVE-1999-0838 | 1 Deerfield | 1 Serv-u Ftp-server | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command. | |||||
CVE-2000-0170 | 2 Redhat, Turbolinux | 2 Linux, Turbolinux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable. | |||||
CVE-1999-0788 | 1 Knox Software | 1 Arkeia | 2024-02-04 | 5.0 MEDIUM | N/A |
Arkiea nlservd allows remote attackers to conduct a denial of service. | |||||
CVE-2001-1013 | 1 Redhat | 1 Linux | 2024-02-04 | 5.0 MEDIUM | N/A |
Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, which could allow remote attackers to determine valid usernames on the server. | |||||
CVE-2003-1091 | 1 Apple | 1 Quicktime Broadcaster | 2024-02-04 | 7.5 HIGH | N/A |
Integer overflow in MP3Broadcaster for Apple QuickTime/Darwin Streaming Server 4.1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed ID3 tags in MP3 files. | |||||
CVE-1999-0647 | 2024-02-04 | N/A | N/A | ||
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The bootparam (bootparamd) service is running." | |||||
CVE-2004-0624 | 1 Artmedic Webdesign | 1 Artmedic Links | 2024-02-04 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in index.php for Artmedic links 5.0 (artmedic_links5) allows remote attackers to execute arbitrary PHP code by modifying the id parameter to reference a URL on a remote web server that contains the code. | |||||
CVE-2001-0373 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2024-02-04 | 2.1 LOW | N/A |
The default configuration of the Dr. Watson program in Windows NT and Windows 2000 generates user.dmp crash dump files with world-readable permissions, which could allow a local user to gain access to sensitive information. | |||||
CVE-2003-0296 | 1 Ximian | 1 Evolution | 2024-02-04 | 7.5 HIGH | N/A |
The IMAP Client for Evolution 1.2.4 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal size values that cause either integer signedness errors or integer overflow errors. | |||||
CVE-1999-0626 | 1 Sun | 1 Rpc.ruserd | 2024-02-04 | N/A | N/A |
A version of rusers is running that exposes valid user information to any entity on the network. | |||||
CVE-1999-0864 | 1 Sco | 1 Unixware | 2024-02-04 | 7.2 HIGH | N/A |
UnixWare programs that dump core allow a local user to modify files via a symlink attack on the ./core.pid file. | |||||
CVE-2003-0482 | 1 Gero Kohnert | 1 Tutos | 2024-02-04 | 7.5 HIGH | N/A |
TUTOS 1.1 allows remote attackers to execute arbitrary code by uploading the code using file_new.php, then directly accessing the uploaded code via a request to the repository containing the code. | |||||
CVE-2001-0207 | 1 Pierre Beyssac | 1 Bing | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in bing allows remote attackers to execute arbitrary commands via a long hostname, which is copied to a small buffer after a reverse DNS lookup using the gethostbyaddr function. | |||||
CVE-2000-1232 | 1 Phorum | 1 Phorum | 2024-02-04 | 5.0 MEDIUM | N/A |
upgrade.php3 in Phorum 3.0.7 could allow remote attackers to modify certain Phorum database tables via an unknown method. | |||||
CVE-2003-1079 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 5.0 MEDIUM | N/A |
Unknown vulnerability in UDP RPC for Solaris 2.5.1 through 9 for SPARC, and 2.5.1 through 8 for x86, allows remote attackers to cause a denial of service (memory consumption) via certain arguments in RPC calls that cause large amounts of memory to be allocated. | |||||
CVE-2004-2145 | 1 Pd9 Software | 1 Megabbs | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in PD9 Software MegaBBS 2 and 2.1 allows remote attackers to execute arbitrary SQL commands via the (1) sortdir or (2) criteria parameter to ladder-log.asp or the (3) memberid or (4) teamid parameter to view-profile.asp. |