Total
254124 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0379 | 1 Microsoft | 1 Backoffice Resource Kit | 2024-02-04 | 7.5 HIGH | N/A |
Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting. | |||||
CVE-2000-0638 | 1 Sean Macguire | 1 Big Brother | 2024-02-04 | 10.0 HIGH | N/A |
bb-hostsvc.sh in Big Brother 1.4h1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack on the HOSTSVC parameter. | |||||
CVE-2003-1372 | 4 Linux, Microsoft, Myphpnuke and 1 more | 4 Linux Kernel, All Windows, Myphpnuke and 1 more | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in links.php script in myPHPNuke 1.8.8, and possibly earlier versions, allows remote attackers to inject arbitrary HTML and web script via the (1) ratenum or (2) query parameters. | |||||
CVE-1999-0876 | 1 Microsoft | 2 Ie, Internet Explorer | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in Internet Explorer 4.0 via EMBED tag. | |||||
CVE-2000-0096 | 1 Qualcomm | 1 Qpopper | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in qpopper 3.0 beta versions allows local users to gain privileges via a long LIST command. | |||||
CVE-2000-0864 | 1 Gnome | 1 Esound | 2024-02-04 | 6.2 MEDIUM | N/A |
Race condition in the creation of a Unix domain socket in GNOME esound 0.2.19 and earlier allows a local user to change the permissions of arbitrary files and directories, and gain additional privileges, via a symlink attack. | |||||
CVE-2000-1233 | 1 Phorum | 1 Phorum | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in read.php3 and other scripts in Phorum 3.0.7 allows remote attackers to execute arbitrary SQL queries via the sSQL parameter. | |||||
CVE-1999-0623 | 2024-02-04 | N/A | N/A | ||
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The X Windows service is running." | |||||
CVE-2002-0310 | 1 Netwin | 1 Webnews | 2024-02-04 | 7.5 HIGH | N/A |
Netwin WebNews 1.1k CGI program includes several default usernames and cleartext passwords that cannot be deleted by the administrator, which allows remote attackers to gain privileges via the username/password combinations (1) testweb/newstest, (2) alwn3845/imaptest, (3) alwi3845/wtest3452, or (4) testweb2/wtest4879. | |||||
CVE-2003-1444 | 1 Kaspersky Lab | 1 Kaspersky Anti-virus | 2024-02-04 | 4.4 MEDIUM | N/A |
Kaspersky Antivirus (KAV) 4.0.9.0 allows local users to cause a denial of service (CPU consumption or crash) and prevent malicious code from being detected via a file with a long pathname. | |||||
CVE-2000-0291 | 1 Sun | 1 Staroffice | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflow in Star Office 5.1 allows attackers to cause a denial of service by embedding a long URL within a document. | |||||
CVE-1999-0599 | 2024-02-04 | 10.0 HIGH | N/A | ||
A network intrusion detection system (IDS) does not properly handle packets with improper sequence numbers. | |||||
CVE-2002-1653 | 1 Farm9 | 1 Cryptcat | 2024-02-04 | 5.0 MEDIUM | N/A |
Farm9 Cryptcat, when started in server mode with the -e option, does not enable encryption, which allows clients to communicate without encryption despite intended configuration, and may allow remote attackers to sniff sensitive information. | |||||
CVE-1999-1563 | 1 Nachuatec | 2 D435, D445 | 2024-02-04 | 5.0 MEDIUM | N/A |
Nachuatec D435 and D445 printer allows remote attackers to cause a denial of service via ICMP redirect storm. | |||||
CVE-2002-0889 | 1 Qualcomm | 1 Qpopper | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflow in Qpopper (popper) 4.0.4 and earlier allows local users to cause a denial of service and possibly execute arbitrary code via a long bulldir argument in the user's .qpopper-options configuration file. | |||||
CVE-2003-1086 | 1 Pmachine | 2 Pmachine Free, Pmachine Pro | 2024-02-04 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in pm/lib.inc.php in pMachine Free and pMachine Pro 2.2 and 2.2.1 allows remote attackers to execute arbitrary PHP code by modifying the pm_path parameter to reference a URL on a remote web server that contains the code. | |||||
CVE-1999-0150 | 1 Gnu | 1 Fingerd | 2024-02-04 | 7.5 HIGH | N/A |
The Perl fingerd program allows arbitrary command execution from remote users. | |||||
CVE-2000-1032 | 1 Checkpoint | 1 Firewall-1 | 2024-02-04 | 5.0 MEDIUM | N/A |
The client authentication interface for Check Point Firewall-1 4.0 and earlier generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to identify valid usernames on the firewall. | |||||
CVE-2000-0349 | 1 Sco | 1 Unixware | 2024-02-04 | 5.0 MEDIUM | N/A |
Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service. | |||||
CVE-1999-0577 | 1 Microsoft | 1 Windows Nt | 2024-02-04 | 10.0 HIGH | N/A |
A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories. |