Total
254124 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1940 | 1 Jacob Navia | 1 Lcc-win32 | 2024-02-04 | 5.0 MEDIUM | N/A |
LCC-Win32 3.2 compiler, when running on Windows 95, 98, or ME, writes portions of previously used memory after the import table, which could allow attackers to gain sensitive information. NOTE: it has been reported that this problem is due to the OS and not the application. | |||||
CVE-2004-1380 | 1 Mozilla | 2 Firefox, Mozilla | 2024-02-04 | 5.0 MEDIUM | N/A |
Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows and facilitate phishing attacks, aka the "Dialog Box Spoofing Vulnerability." | |||||
CVE-1999-0799 | 1 Cmu | 1 Bootpd | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in bootpd 2.4.3 and earlier via a long boot file location. | |||||
CVE-2004-0657 | 2 Hp, Ntp | 2 Tru64 Unix, Ntp | 2024-02-04 | 5.0 MEDIUM | N/A |
Integer overflow in the NTP daemon (NTPd) before 4.0 causes the NTP server to return the wrong date/time offset when a client requests a date/time that is more than 34 years away from the server's time. | |||||
CVE-2003-0211 | 1 Xinetd | 1 Xinetd | 2024-02-04 | 5.0 MEDIUM | N/A |
Memory leak in xinetd 2.3.10 allows remote attackers to cause a denial of service (memory consumption) via a large number of rejected connections. | |||||
CVE-2001-0105 | 1 Hp | 1 Hp-ux | 2024-02-04 | 2.1 LOW | N/A |
Vulnerability in top in HP-UX 11.04 and earlier allows local users to overwrite files owned by the "sys" group. | |||||
CVE-1999-1494 | 1 Sgi | 1 Irix | 2024-02-04 | 2.1 LOW | N/A |
colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files via the -text argument. | |||||
CVE-2002-2047 | 1 Sketch | 1 Sketch | 2024-02-04 | 10.0 HIGH | N/A |
The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file. | |||||
CVE-2001-0743 | 1 Oreilly | 1 Webboard | 2024-02-04 | 5.0 MEDIUM | N/A |
Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service via a message with an escaped ' character followed by JavaScript commands. | |||||
CVE-1999-1086 | 1 Novell | 1 Netware | 2024-02-04 | 10.0 HIGH | N/A |
Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote attackers to gain administrator privileges by spoofing the MAC address in IPC fragmented packets that make NetWare Core Protocol (NCP) calls. | |||||
CVE-2002-0705 | 1 Surfcontrol | 2 Superscout Web Filter, Web Filter | 2024-02-04 | 7.5 HIGH | N/A |
The Web Reports Server for SurfControl SuperScout WebFilter stores the "scwebusers" username and password file in a web-accessible directory, which allows remote attackers to obtain valid usernames and crack the passwords. | |||||
CVE-2004-0263 | 2 Apache, Ibm | 2 Http Server, Http Server | 2024-02-04 | 5.0 MEDIUM | N/A |
PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote attackers to obtain sensitive information. | |||||
CVE-2004-1682 | 1 Qnx | 1 Rtp | 2024-02-04 | 10.0 HIGH | N/A |
Format string vulnerability in QNX 6.1 FTP client allows remote authenticated users to gain group bin privileges via format string specifiers in the QUOTE command. | |||||
CVE-2002-0945 | 1 Seanox | 1 Devwex | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in SeaNox Devwex allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request. | |||||
CVE-1999-1480 | 1 Ibm | 1 Aix | 2024-02-04 | 1.2 LOW | N/A |
(1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack. | |||||
CVE-2003-0316 | 1 Fourelle Venturi Wireless | 1 Venturi Client | 2024-02-04 | 5.0 MEDIUM | N/A |
Venturi Client before 2.2, as used in certain Fourelle and Venturi Wireless products, can be used as an open proxy for various protocols, including an open relay for SMTP, which allows it to be abused by spammers. | |||||
CVE-2001-1264 | 1 Hp | 2 Hp-ux, Vvos | 2024-02-04 | 10.0 HIGH | N/A |
Vulnerability in mkacct in HP-UX 11.04 running Virtualvault Operating System (VVOS) 4.0 and 4.5 allows attackers to elevate privileges. | |||||
CVE-2004-0472 | 2024-02-04 | N/A | N/A | ||
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is a reservation duplicate of CVE-2004-0434. Notes: All CVE users should reference CVE-2004-0434 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
CVE-2004-0252 | 1 Typsoft | 1 Typsoft Ftp Server | 2024-02-04 | 5.0 MEDIUM | N/A |
TYPSoft FTP Server 1.10 allows remote attackers to cause a denial of service (CPU consumption) via an empty USER name. | |||||
CVE-1999-1214 | 5 Bsd, Freebsd, Netbsd and 2 more | 5 Bsd, Freebsd, Netbsd and 2 more | 2024-02-04 | 2.1 LOW | N/A |
The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to an arbitrary process ID. |