Total
254181 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-2262 | 1 Hp | 1 Hp-ux | 2024-02-04 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in xntpd of HP-UX 10.20 through 11.11 allows remote attackers to cause a denial of service (hang) via unknown attack vectors. | |||||
CVE-2001-0698 | 1 Netwin | 1 Surgeftp | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to list arbitrary files and directories via the 'nlist ...' command. | |||||
CVE-2000-0208 | 1 Htdig | 1 Htdig | 2024-02-04 | 5.0 MEDIUM | N/A |
The htdig (ht://Dig) CGI program htsearch allows remote attackers to read arbitrary files by enclosing the file name with backticks (`) in parameters to htsearch. | |||||
CVE-2004-0422 | 1 Gnu | 1 Flim | 2024-02-04 | 2.1 LOW | N/A |
flim before 1.14.3 creates temporary files insecurely, which allows local users to overwrite arbitrary files of the Emacs user via a symlink attack. | |||||
CVE-2001-1126 | 1 Symantec | 1 Liveupdate | 2024-02-04 | 5.0 MEDIUM | N/A |
Symantec LiveUpdate 1.4 through 1.6, and possibly later versions, allows remote attackers to cause a denial of service (flood) via DNS spoofing of the update.symantec.com site. | |||||
CVE-2000-0671 | 1 Roxen | 1 Webserver | 2024-02-04 | 5.0 MEDIUM | N/A |
Roxen web server earlier than 2.0.69 allows allows remote attackers to bypass access restrictions, list directory contents, and read source code by inserting a null character (%00) to the URL. | |||||
CVE-2002-1214 | 1 Microsoft | 3 Windows 2000, Windows 2000 Terminal Services, Windows Xp | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Microsoft PPTP Service on Windows XP and Windows 2000 allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via a certain PPTP packet with malformed control data. | |||||
CVE-2003-0145 | 1 Lbl | 1 Tcpdump | 2024-02-04 | 5.0 MEDIUM | N/A |
Unknown vulnerability in tcpdump before 3.7.2 related to an inability to "Handle unknown RADIUS attributes properly," allows remote attackers to cause a denial of service (infinite loop), a different vulnerability than CAN-2003-0093. | |||||
CVE-2002-0356 | 1 Sgi | 1 Irix | 2024-02-04 | 7.2 HIGH | N/A |
Vulnerability in XFS filesystem reorganizer (fsr_xfs) in SGI IRIX 6.5.10 and earlier allows local users to gain root privileges by overwriting critical system files. | |||||
CVE-1999-0944 | 2024-02-04 | 10.0 HIGH | N/A | ||
IBM WebSphere ikeyman tool uses weak encryption to store a password for a key database that is used for SSL connections. | |||||
CVE-2003-1239 | 1 Wihphoto | 1 Wihphoto | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in sendphoto.php in WihPhoto 0.86 allows remote attackers to read arbitrary files via .. specifiers in the album parameter, and the target filename in the pic parameter. | |||||
CVE-2000-0254 | 1 Craig Dansie | 1 Dansie Shopping Cart | 2024-02-04 | 5.0 MEDIUM | N/A |
The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration information via a URL that references either the env, db, or vars form variables. | |||||
CVE-2002-0548 | 1 Anthill | 1 Anthill | 2024-02-04 | 7.5 HIGH | N/A |
Anthill allows remote attackers to bypass authentication and file bug reports by directly accessing the postbug.php program instead of enterbug.php. | |||||
CVE-2000-0789 | 1 Bardon Data Systems | 1 Winu | 2024-02-04 | 4.6 MEDIUM | N/A |
WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges. | |||||
CVE-1999-0792 | 1 Osicom | 1 Routermate | 2024-02-04 | 5.0 MEDIUM | N/A |
ROUTERmate has a default SNMP community name which allows remote attackers to modify its configuration. | |||||
CVE-2003-0613 | 1 Zblast | 1 Zblast | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflow in zblast-svgalib of zblast 1.2.1 and earlier allows local users to execute arbitrary code via the high score file. | |||||
CVE-2003-0802 | 1 Nokia | 1 Electronic Documentation | 2024-02-04 | 5.0 MEDIUM | N/A |
Nokia Electronic Documentation (NED) 5.0 allows remote attackers to obtain a directory listing of the WebLogic web root, and the physical path of the NED server, via a "retrieve" action with a location parameter of . (dot). | |||||
CVE-1999-0723 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2024-02-04 | 7.1 HIGH | N/A |
The Windows NT Client Server Runtime Subsystem (CSRSS) can be subjected to a denial of service when all worker threads are waiting for user input. | |||||
CVE-1999-1068 | 1 Oracle | 1 Http Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request. | |||||
CVE-2002-2181 | 1 Sonicwall | 1 Content Filtering | 2024-02-04 | 5.0 MEDIUM | N/A |
SonicWall Content Filtering allows local users to access prohibited web sites via requests to the web site's IP address instead of the domain name. |