Vulnerabilities (CVE)

Total 254375 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-1544 1 Microsoft 1 Internet Information Server 2024-02-04 5.0 MEDIUM N/A
Buffer overflow in FTP server in Microsoft IIS 3.0 and 4.0 allows local and sometimes remote attackers to cause a denial of service via a long NLST (ls) command.
CVE-2001-0775 2 Xli, Xloadimage 2 Xli, Xloadimage 2024-02-04 7.5 HIGH N/A
Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in Linux allows remote attackers to execute arbitrary code via a FACES format image containing a long (1) Firstname or (2) Lastname field.
CVE-2002-0913 1 Stephen Hebditch 1 Slurp 2024-02-04 7.5 HIGH N/A
Format string vulnerability in log_doit function of Slurp NNTP client 1.1.0 allows a malicious news server to execute arbitrary code on the client via format strings in a server response.
CVE-1999-0102 1 Seattle Lab Software 1 Slmail 2024-02-04 7.5 HIGH N/A
Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line.
CVE-2004-1088 1 Apple 4 Darwin Streaming Server, Mac Os X, Mac Os X Server and 1 more 2024-02-04 7.5 HIGH N/A
Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information.
CVE-2000-0531 2 Caldera, Redhat 3 Openlinux, Openlinux Eserver, Linux 2024-02-04 2.1 LOW N/A
Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets.
CVE-1999-0526 1 X.org 1 X11 2024-02-04 10.0 HIGH N/A
An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server.
CVE-2002-0526 1 Inn 1 Inn 2024-02-04 7.2 HIGH N/A
Vulnerability in (1) inews or (2) rnews for INN 2.2.3 and earlier, related to insecure open() calls.
CVE-2004-2015 1 Webct 1 Webct 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in WebCT Campus Edition allows remote attackers to inject arbitrary HTML or web script via (1) iframe, (2) img, or (3) object tags.
CVE-2001-1213 1 Datawizard 1 Ftpxq 2024-02-04 6.4 MEDIUM N/A
The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder.
CVE-2004-0662 1 Powerportal 1 Powerportal 2024-02-04 5.0 MEDIUM N/A
PowerPortal 1.x allows remote attackers to gain sensitive information via invalid or missing parameters in HTTP requests to (1) resize.php or (2) modules.php, which reveals the path in an error message.
CVE-2002-1880 1 Lokwa 1 Lokwabb 2024-02-04 5.0 MEDIUM N/A
LokwaBB 1.2.2 allows remote attackers to read arbitrary messages by modifying the pmid parameter to pm.php.
CVE-2004-0419 3 Gentoo, X.org, Xfree86 Project 3 Linux, X11r6, Xdm 2024-02-04 7.5 HIGH N/A
XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions.
CVE-2002-1896 1 Alsaplayer 1 Alsaplayer 2024-02-04 7.2 HIGH N/A
Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long (1) -f or (2) -o command line argument.
CVE-2003-1144 1 Perception 1 Liteserve 2024-02-04 10.0 HIGH N/A
Buffer overflow in the log viewing interface in Perception LiteServe 1.25 through 2.2 allows remote attackers to execute arbitrary code via a GET request with a long file name.
CVE-2004-1376 1 Microsoft 1 Internet Explorer 2024-02-04 5.0 MEDIUM N/A
Directory traversal vulnerability in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.
CVE-1999-0487 1 Microsoft 1 Internet Explorer 2024-02-04 2.6 LOW N/A
The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files.
CVE-2002-0928 1 Pirch 1 Pirch Irc 2024-02-04 7.5 HIGH N/A
Buffer overflow in the Pirch 98 IRC client allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long hyperlink in a channel or private message.
CVE-2004-0819 1 Openbsd 1 Openbsd 2024-02-04 5.0 MEDIUM N/A
The bridge functionality in OpenBSD 3.4 and 3.5, when running a gateway configured as a bridging firewall with the link2 option for IPSec enabled, allows remote attackers to cause a denial of service (crash) via an ICMP echo (ping) packet.
CVE-2002-2336 1 Symantec 1 Norton Personal Firewall 2024-02-04 4.3 MEDIUM N/A
Norton Personal Firewall 2002 4.0, when configured to automatically block attacks, allows remote attackers to block IP addresses and cause a denial of service via spoofed packets.