Total
254124 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-1203 | 1 Lotus | 1 Domino | 2024-02-04 | 5.0 MEDIUM | N/A |
Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop. | |||||
CVE-2001-0625 | 1 Broadcom | 1 Inoculateit | 2024-02-04 | 7.2 HIGH | N/A |
ftpdownload in Computer Associates InoculateIT 6.0 allows a local attacker to overwrite arbitrary files via a symlink attack on /tmp/ftpdownload.log . | |||||
CVE-2002-0696 | 1 Microsoft | 1 Visual Foxpro | 2024-02-04 | 7.5 HIGH | N/A |
Microsoft Visual FoxPro 6.0 does not register its associated files with Internet Explorer, which allows remote attackers to execute Visual FoxPro applications without warning via HTML that references specially-crafted filenames. | |||||
CVE-2003-0477 | 1 Wzdftpd | 1 Wzdftpd | 2024-02-04 | 5.0 MEDIUM | N/A |
wzdftpd 0.1rc4 and earlier allows remote attackers to cause a denial of service (crash) via a PORT command without an argument. | |||||
CVE-2000-0797 | 1 Sgi | 1 Irix | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in gr_osview in IRIX 6.2 and 6.3 allows local users to gain privileges via a long -D option. | |||||
CVE-2002-0606 | 1 3com | 1 3cdaemon | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in 3Cdaemon 2.0 FTP server allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long commands such as login. | |||||
CVE-2004-1561 | 1 Icecast | 1 Icecast | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers. | |||||
CVE-1999-1059 | 1 Att | 1 Svr4 | 2024-02-04 | 10.0 HIGH | N/A |
Vulnerability in rexec daemon (rexecd) in AT&T TCP/IP 4.0 for various SVR4 systems allows remote attackers to execute arbitrary commands. | |||||
CVE-2004-0985 | 1 Microsoft | 1 Ie | 2024-02-04 | 10.0 HIGH | N/A |
Internet Explorer 6.x on Windows XP SP2 allows remote attackers to execute arbitrary code, as demonstrated using a document with a draggable file type such as .xml, .doc, .py, .cdf, .css, .pdf, or .ppt, and using ADODB.Connection and ADODB.recordset to write to a .hta file that is interpreted in the Local Zone by HTML Help. | |||||
CVE-2002-1262 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 7.5 HIGH | N/A |
Internet Explorer 5.5 and 6.0 does not perform complete security checks on external caching, which allows remote attackers to read arbitrary files. | |||||
CVE-1999-1046 | 1 Ipswitch | 1 Imail | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in IMonitor in IMail 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to port 8181. | |||||
CVE-1999-1111 | 1 Immunix | 1 Stackguard | 2024-02-04 | 7.5 HIGH | N/A |
Vulnerability in StackGuard before 1.21 allows remote attackers to bypass the Random and Terminator Canary security mechanisms by using a non-linear attack which directly modifies a pointer to a return address instead of using a buffer overflow to reach the return address entry itself. | |||||
CVE-2002-1631 | 1 Oracle | 1 Application Server | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in the query.xsql sample page in Oracle 9i Application Server (9iAS) allows remote attackers to execute arbitrary code via the sql parameter. | |||||
CVE-1999-1475 | 1 Proftpd Project | 1 Proftpd | 2024-02-04 | 4.6 MEDIUM | N/A |
ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command. | |||||
CVE-1999-0232 | 1 Ncsa Httpd Project | 1 Ncsa Httpd | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in NCSA WebServer (version 1.5c) gives remote access. | |||||
CVE-2003-1244 | 1 Phpbb Group | 1 Phpbb | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in page_header.php in phpBB 2.0, 2.0.1 and 2.0.2 allows remote attackers to brute force user passwords and possibly gain unauthorized access to forums via the forum_id parameter to index.php. | |||||
CVE-2001-0271 | 1 Mailnews.cgi | 1 Mailnews.cgi | 2024-02-04 | 10.0 HIGH | N/A |
mailnews.cgi 1.3 and earlier allows remote attackers to execute arbitrary commands via a user name that contains shell metacharacters. | |||||
CVE-2003-0559 | 1 Phpforum | 1 Phpforum | 2024-02-04 | 7.5 HIGH | N/A |
mainfile.php in phpforum 2 RC-1, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by modifying the MAIN_PATH parameter to reference a URL on a remote web server that contains the code. | |||||
CVE-2000-0250 | 1 Qnx | 1 Qnx | 2024-02-04 | 7.2 HIGH | N/A |
The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords. | |||||
CVE-2004-0837 | 3 Debian, Mysql, Oracle | 3 Debian Linux, Mysql, Mysql | 2024-02-04 | 2.6 LOW | N/A |
MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows attackers to cause a denial of service (crash or hang) via multiple threads that simultaneously alter MERGE table UNIONs. |