Total
254124 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-1450 | 1 Bitchx | 1 Bitchx | 2024-02-04 | 5.0 MEDIUM | N/A |
BitchX 75p3 and 1.0c16 through 1.0c20cvs allows remote attackers to cause a denial of service (segmentation fault) via a malformed RPL_NAMREPLY numeric 353 message. | |||||
CVE-2004-0451 | 2 Debian, Sup | 2 Debian Linux, Sup | 2024-02-04 | 10.0 HIGH | N/A |
Multiple format string vulnerabilities in the (1) logquit, (2) logerr, or (3) loginfo functions in Software Upgrade Protocol (SUP) allows remote attackers to execute arbitrary code via format string specifiers in messages that are logged by syslog. | |||||
CVE-1999-1420 | 1 N-base | 5 Nh2012, Nh2012r, Nh2015 and 2 more | 2024-02-04 | 10.0 HIGH | N/A |
NBase switches NH2012, NH2012R, NH2015, and NH2048 have a back door password that cannot be disabled, which allows remote attackers to modify the switch's configuration. | |||||
CVE-2003-0420 | 1 Apple | 1 Mac Os X Server | 2024-02-04 | 4.6 MEDIUM | N/A |
Information leak in dsimportexport for Apple Macintosh OS X Server 10.2.6 allows local users to obtain the username and password of the account running the tool. | |||||
CVE-2001-0851 | 3 Caldera, Linux, Suse | 7 Openlinux, Openlinux Edesktop, Openlinux Eserver and 4 more | 2024-02-04 | 5.0 MEDIUM | N/A |
Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie. | |||||
CVE-1999-0921 | 1 Bmc | 1 Patrol Agent | 2024-02-04 | 5.0 MEDIUM | N/A |
BMC Patrol allows any remote attacker to flood its UDP port, causing a denial of service. | |||||
CVE-1999-1401 | 1 Sgi | 1 Irix | 2024-02-04 | 4.6 MEDIUM | N/A |
Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook). | |||||
CVE-1999-1396 | 1 Sun | 1 Sunos | 2024-02-04 | 7.2 HIGH | N/A |
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash). | |||||
CVE-2003-0644 | 1 Johannes Sixt | 1 Kdbg | 2024-02-04 | 4.6 MEDIUM | N/A |
Kdbg 1.1.0 through 1.2.8 does not check permissions of the .kdbgrc file, which allows local users to execute arbitrary commands. | |||||
CVE-1999-1031 | 1 Behold Software | 1 Web Page Counter | 2024-02-04 | 5.0 MEDIUM | N/A |
counter.exe 2.70 allows a remote attacker to cause a denial of service (hang) via a long argument. | |||||
CVE-1999-0131 | 8 Bsdi, Digital, Eric Allman and 5 more | 9 Bsd Os, Osf 1, Sendmail and 6 more | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. | |||||
CVE-2004-0807 | 5 Conectiva, Mandrakesoft, Samba and 2 more | 5 Linux, Mandrake Linux, Samba and 2 more | 2024-02-04 | 5.0 MEDIUM | N/A |
Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop. | |||||
CVE-2003-0197 | 2 Borland Software, Firebirdsql | 2 Interbase, Firebird | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow gds_lock_mgr of Interbase Database 6.x allows local users to gain privileges via a long ISC_LOCK_ENV environment variable (INTERBASE_LOCK). | |||||
CVE-1999-0687 | 4 Cde, Digital, Ibm and 1 more | 5 Cde, Unix, Aix and 2 more | 2024-02-04 | 7.5 HIGH | N/A |
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. | |||||
CVE-2002-0055 | 1 Microsoft | 3 Exchange Server, Windows 2000, Windows Xp | 2024-02-04 | 5.0 MEDIUM | N/A |
SMTP service in Microsoft Windows 2000, Windows XP Professional, and Exchange 2000 allows remote attackers to cause a denial of service via a command with a malformed data transfer (BDAT) request. | |||||
CVE-2002-1515 | 1 Coolforum | 1 Coolforum | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in avatar.php in CoolForum 0.5 beta allows remote attackers to read arbitrary files via .. (dot dot) sequences in the img parameter. | |||||
CVE-2002-1261 | 2024-02-04 | N/A | N/A | ||
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-1292. Reason: This candidate is a reservation duplicate of CVE-2002-1292. Notes: All CVE users should reference CVE-2002-1292 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
CVE-2000-0874 | 1 Qualcomm | 1 Eudora | 2024-02-04 | 5.0 MEDIUM | N/A |
Eudora mail client includes the absolute path of the sender's host within a virtual card (VCF). | |||||
CVE-2004-1883 | 1 Progress | 1 Ipswitch Ws Ftp Server | 2024-02-04 | 7.2 HIGH | N/A |
Multiple buffer overflows in Ipswitch WS_FTP Server 4.0.2 (1) allow remote authenticated users to execute arbitrary code by causing a large error string to be generated by the ALLO handler, or (2) may allow remote FTP administrators to execute arbitrary code by causing a long hostname or username to be inserted into a reply to a STAT command while a file is being transferred. | |||||
CVE-2002-2249 | 1 Php Evolution | 1 News Evolution | 2024-02-04 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in News Evolution 2.0 allows remote attackers to execute arbitrary PHP commands via the neurl parameter to (1) backend.php, (2) screen.php, or (3) admin/modules/comment.php. |