Total
254124 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-1345 | 1 Jetico | 1 Bestcrypt | 2024-02-04 | 4.6 MEDIUM | N/A |
bctool in Jetico BestCrypt 0.7 and earlier trusts the user-supplied PATH to find and execute an fsck utility program, which allows local users to gain privileges by modifying the PATH to point to a Trojan horse program. | |||||
CVE-2004-1779 | 1 Thwboard | 1 Thwboard Beta | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in board.php for ThWboard before beta 2.84 allows remote attackers to inject arbitrary web script or HTML via the lastvisited parameter. | |||||
CVE-2002-0608 | 1 Matu | 1 Matu Ftp | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Matu FTP client 1.74 allows remote FTP servers to execute arbitrary code via a long "220" banner. | |||||
CVE-1999-0811 | 1 Samba | 1 Samba | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in Samba smbd program via a malformed message command. | |||||
CVE-2001-1239 | 1 Connect Inc. | 1 Powernet Ix | 2024-02-04 | 5.0 MEDIUM | N/A |
PowerNet IX allows remote attackers to cause a denial of service via a port scan. | |||||
CVE-2002-0354 | 2 Mozilla, Netscape | 2 Mozilla, Navigator | 2024-02-04 | 5.0 MEDIUM | N/A |
The XMLHttpRequest object (XMLHTTP) in Netscape 6.1 and Mozilla 0.9.7 allows remote attackers to read arbitrary files and list directories on a client system by opening a URL that redirects the browser to the file on the client, then reading the result using the responseText property. | |||||
CVE-2004-1545 | 1 Moniwiki | 1 Moniwiki | 2024-02-04 | 5.0 MEDIUM | N/A |
UploadFile.php in MoniWiki 1.0.9.2 and earlier, when used with Apache mod_mime, does not properly handle files with two file extensions, such as .php.hwp, which allows remote attackers to upload and execute arbitrary code. | |||||
CVE-2004-0619 | 1 Redhat | 3 Fedora Core, Kernel, Linux | 2024-02-04 | 7.2 HIGH | N/A |
Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add_dsa_buf_bytes variable, which leads to a buffer overflow. | |||||
CVE-2000-0335 | 2 Gnu, Isc | 2 Glibc, Bind | 2024-02-04 | 7.5 HIGH | N/A |
The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results. | |||||
CVE-2000-0440 | 2 Freebsd, Netbsd | 2 Freebsd, Netbsd | 2024-02-04 | 5.0 MEDIUM | N/A |
NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option. | |||||
CVE-2001-1269 | 1 Info-zip | 1 Unzip | 2024-02-04 | 2.1 LOW | N/A |
Info-ZIP UnZip 5.42 and earlier allows attackers to overwrite arbitrary files during archive extraction via filenames in the archive that begin with the '/' (slash) character. | |||||
CVE-2003-1105 | 1 Microsoft | 2 Ie, Internet Explorer | 2024-02-04 | 2.6 LOW | N/A |
Unknown vulnerability in Internet Explorer 5.01 SP3 through 6.0 SP1 allows remote attackers to cause a denial of service (browser or Outlook Express crash) via HTML with certain input tags that are not properly rendered. | |||||
CVE-2004-1454 | 1 Cisco | 1 Ios | 2024-02-04 | 5.0 MEDIUM | N/A |
Cisco IOS 12.0S, 12.2, and 12.3, with Open Shortest Path First (OSPF) enabled, allows remote attackers to cause a denial of service (device reload) via a malformed OSPF packet. | |||||
CVE-2002-1733 | 1 Prospero Technologies | 1 Prospero Message Board | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in the web-based message board in Prospero Technologies allows remote attackers to inject arbitrary web script or HTML via a message board post. | |||||
CVE-2000-0196 | 3 Nmh, Redhat, Turbolinux | 3 Nmh, Linux, Turbolinux | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in mhshow in the Linux nmh package allows remote attackers to execute commands via malformed MIME headers in an email message. | |||||
CVE-2004-1782 | 1 David Maciejak | 1 Athena Web Registration | 2024-02-04 | 7.5 HIGH | N/A |
athenareg.php in Athena Web Registration allows remote attackers to execute arbitrary commands via shell metacharacters in the pass parameter. | |||||
CVE-1999-0085 | 3 Freebsd, Ibm, Netbsd | 3 Freebsd, Aix, Netbsd | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in rwhod on AIX and other operating systems allows remote attackers to execute arbitrary code via a UDP packet with a long hostname. | |||||
CVE-1999-0098 | 3 Apple, Pmail, Seattlelab | 3 Appleshare, Mercury Mail Server, Slmail | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities. | |||||
CVE-2004-0270 | 1 Clam Anti-virus | 1 Clamav | 2024-02-04 | 5.0 MEDIUM | N/A |
libclamav in Clam AntiVirus 0.65 allows remote attackers to cause a denial of service (crash) via a uuencoded e-mail message with an invalid line length (e.g., a lowercase character), which causes an assert error in clamd that terminates the calling program. | |||||
CVE-2000-0886 | 1 Microsoft | 2 Internet Information Server, Internet Information Services | 2024-02-04 | 7.5 HIGH | N/A |
IIS 5.0 allows remote attackers to execute arbitrary commands via a malformed request for an executable file whose name is appended with operating system commands, aka the "Web Server File Request Parsing" vulnerability. |