Total
254017 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0902 | 1 Microsoft | 1 Internet Information Services | 2024-02-04 | 7.5 HIGH | N/A |
Microsoft IIS 5.0 allows remote attackers to spoof web log entries via an HTTP request that includes hex-encoded newline or form-feed characters. | |||||
CVE-2001-0850 | 1 Caldera | 1 Openlinux | 2024-02-04 | 10.0 HIGH | N/A |
A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf and vsnprintf functions, which could allow local or remote users to exploit those functions with a buffer overflow. | |||||
CVE-2002-2006 | 1 Apache | 1 Tomcat | 2024-02-04 | 5.0 MEDIUM | N/A |
The default installation of Apache Tomcat 4.0 through 4.1 and 3.0 through 3.3.1 allows remote attackers to obtain the installation path and other sensitive system information via the (1) SnoopServlet or (2) TroubleShooter example servlets. | |||||
CVE-2000-0454 | 1 Mandrakesoft | 1 Mandrake Linux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter. | |||||
CVE-2000-1160 | 1 Network Associates | 1 Sniffer Agent | 2024-02-04 | 5.0 MEDIUM | N/A |
NAI Sniffer Agent allows remote attackers to cause a denial of service (crash) by sending a large number of login requests. | |||||
CVE-2002-0392 | 2 Apache, Debian | 2 Http Server, Debian Linux | 2024-02-04 | 7.5 HIGH | N/A |
Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes Apache to use an incorrect size. | |||||
CVE-2002-2328 | 1 Microsoft | 1 Windows 2000 | 2024-02-04 | 7.1 HIGH | N/A |
Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service (hang) via an LDAP client that sets the page length to zero during a large request. | |||||
CVE-2002-1964 | 1 Wesmo | 1 Phpeventcalendar | 2024-02-04 | 7.5 HIGH | N/A |
Unknown vulnerability in WesMo phpEventCalendar 1.1 allows remote attackers to execute arbitrary commands via unknown attack vectors. | |||||
CVE-1999-0469 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 5.0 MEDIUM | N/A |
Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client. | |||||
CVE-2000-0281 | 1 Napster | 1 Napster Client | 2024-02-04 | 2.1 LOW | N/A |
Buffer overflow in the Napster client beta 5 allows remote attackers to cause a denial of service via a long message. | |||||
CVE-2002-1999 | 1 Hp | 1 Praesidium Webproxy | 2024-02-04 | 5.0 MEDIUM | N/A |
HP Praesidium Webproxy 1.0 running on HP-UX 11.04 VVOS could allow remote attackers to cause Webproxy to forward requests to the internal network via crafted HTTP requests. | |||||
CVE-2004-1851 | 1 Dameware Development | 1 Mini Remote Control Server | 2024-02-04 | 7.5 HIGH | N/A |
Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier for remote attackers to obtain sensitive information via brute force guessing. | |||||
CVE-2000-0294 | 1 Jim Housley | 1 Healthd | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in healthd for FreeBSD allows local users to gain root privileges. | |||||
CVE-2002-2260 | 1 Mozilla | 1 Bugzilla | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in the quips feature in Mozilla Bugzilla 2.10 through 2.17 allows remote attackers to inject arbitrary web script or HTML via the "show all quips" page. | |||||
CVE-1999-1034 | 1 Att | 1 Svr4 | 2024-02-04 | 7.2 HIGH | N/A |
Vulnerability in login in AT&T System V Release 4 allows local users to gain privileges. | |||||
CVE-2003-1555 | 1 Scoznet | 1 Scozbook | 2024-02-04 | 5.0 MEDIUM | N/A |
ScozNet ScozBook 1.1 BETA allows remote attackers to obtain sensitive information via an invalid PG parameter in view.php, which reveals the installation path in an error message. | |||||
CVE-2004-1693 | 1 Mambo | 1 Mambo | 2024-02-04 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in Function.php in Mambo 4.5 (1.0.9) allows remote attackers to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code. | |||||
CVE-2000-0601 | 1 Leafdigital | 1 Leafchat | 2024-02-04 | 5.0 MEDIUM | N/A |
LeafChat 1.7 IRC client allows a remote IRC server to cause a denial of service by rapidly sending a large amount of error messages. | |||||
CVE-2004-0229 | 2 Gentoo, Linux | 2 Linux, Linux Kernel | 2024-02-04 | 4.6 MEDIUM | N/A |
The framebuffer driver in Linux kernel 2.6.x does not properly use the fb_copy_cmap function, with unknown impact. | |||||
CVE-2001-0828 | 1 Caucho Technology | 1 Resin | 2024-02-04 | 5.1 MEDIUM | N/A |
A cross-site scripting vulnerability in Caucho Technology Resin before 1.2.4 allows a malicious webmaster to embed Javascript in a hyperlink that ends in a .jsp extension, which causes an error message that does not properly quote the Javascript. |