Total
254010 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0531 | 2 Caldera, Redhat | 3 Openlinux, Openlinux Eserver, Linux | 2024-02-04 | 2.1 LOW | N/A |
Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets. | |||||
CVE-1999-0526 | 1 X.org | 1 X11 | 2024-02-04 | 10.0 HIGH | N/A |
An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server. | |||||
CVE-2002-0526 | 1 Inn | 1 Inn | 2024-02-04 | 7.2 HIGH | N/A |
Vulnerability in (1) inews or (2) rnews for INN 2.2.3 and earlier, related to insecure open() calls. | |||||
CVE-2004-2015 | 1 Webct | 1 Webct | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in WebCT Campus Edition allows remote attackers to inject arbitrary HTML or web script via (1) iframe, (2) img, or (3) object tags. | |||||
CVE-2001-1213 | 1 Datawizard | 1 Ftpxq | 2024-02-04 | 6.4 MEDIUM | N/A |
The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder. | |||||
CVE-2004-0662 | 1 Powerportal | 1 Powerportal | 2024-02-04 | 5.0 MEDIUM | N/A |
PowerPortal 1.x allows remote attackers to gain sensitive information via invalid or missing parameters in HTTP requests to (1) resize.php or (2) modules.php, which reveals the path in an error message. | |||||
CVE-2002-1880 | 1 Lokwa | 1 Lokwabb | 2024-02-04 | 5.0 MEDIUM | N/A |
LokwaBB 1.2.2 allows remote attackers to read arbitrary messages by modifying the pmid parameter to pm.php. | |||||
CVE-2004-0419 | 3 Gentoo, X.org, Xfree86 Project | 3 Linux, X11r6, Xdm | 2024-02-04 | 7.5 HIGH | N/A |
XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions. | |||||
CVE-2002-1896 | 1 Alsaplayer | 1 Alsaplayer | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long (1) -f or (2) -o command line argument. | |||||
CVE-2003-1144 | 1 Perception | 1 Liteserve | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in the log viewing interface in Perception LiteServe 1.25 through 2.2 allows remote attackers to execute arbitrary code via a GET request with a long file name. | |||||
CVE-2004-1376 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command. | |||||
CVE-1999-0487 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 2.6 LOW | N/A |
The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files. | |||||
CVE-2002-0928 | 1 Pirch | 1 Pirch Irc | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in the Pirch 98 IRC client allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long hyperlink in a channel or private message. | |||||
CVE-2004-0819 | 1 Openbsd | 1 Openbsd | 2024-02-04 | 5.0 MEDIUM | N/A |
The bridge functionality in OpenBSD 3.4 and 3.5, when running a gateway configured as a bridging firewall with the link2 option for IPSec enabled, allows remote attackers to cause a denial of service (crash) via an ICMP echo (ping) packet. | |||||
CVE-2002-2336 | 1 Symantec | 1 Norton Personal Firewall | 2024-02-04 | 4.3 MEDIUM | N/A |
Norton Personal Firewall 2002 4.0, when configured to automatically block attacks, allows remote attackers to block IP addresses and cause a denial of service via spoofed packets. | |||||
CVE-2004-1687 | 1 Snitz Communications | 1 Snitz Forums 2000 | 2024-02-04 | 5.0 MEDIUM | N/A |
CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the location parameter. | |||||
CVE-2001-0328 | 2024-02-04 | 5.0 MEDIUM | N/A | ||
TCP implementations that use random increments for initial sequence numbers (ISN) can allow remote attackers to perform session hijacking or disruption by injecting a flood of packets with a range of ISN values, one of which may match the expected ISN. | |||||
CVE-2002-1001 | 1 Analogx | 1 Proxy | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflows in AnalogX Proxy before 4.12 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long HTTP request to TCP port 6588 or (2) a SOCKS 4A request to TCP port 1080 with a long DNS hostname. | |||||
CVE-1999-1414 | 1 Ibm | 1 Netfinity Remote Control | 2024-02-04 | 7.2 HIGH | N/A |
IBM Netfinity Remote Control allows local users to gain administrator privileges by starting programs from the process manager, which runs with system level privileges. | |||||
CVE-2000-1111 | 1 Microsoft | 1 Windows 2000 | 2024-02-04 | 5.0 MEDIUM | N/A |
Telnet Service for Windows 2000 Professional does not properly terminate incomplete connection attempts, which allows remote attackers to cause a denial of service by connecting to the server and not providing any input. |