Total
254124 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0087 | 1 Netscape | 2 Communicator, Navigator | 2024-02-04 | 5.0 MEDIUM | N/A |
Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator to use an SSL connection, allowing a remote attacker to sniff usernames and passwords in plaintext. | |||||
CVE-2000-0843 | 2 Dave Airlie, Luke Kenneth Casson Leighton | 2 Pam Smb, Pam Ntdom | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in pam_smb and pam_ntdom pluggable authentication modules (PAM) allow remote attackers to execute arbitrary commands via a login with a long user name. | |||||
CVE-2003-1207 | 1 Crob | 1 Crob Ftp Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Crob FTP Server 3.5.1 allows remote authenticated users to cause a denial of service (crash) via a dir command with a large number of "." characters followed by a "/*" string. | |||||
CVE-2004-1568 | 1 Parachat | 1 Parachat Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in ParaChat Server 5.5 allows remote attackers to read arbitrary files via a ..%5C (hex-encoded dot dot) in the URL. | |||||
CVE-2003-0141 | 1 Realnetworks | 3 Realone Enterprise Desktop, Realone Player, Realplayer | 2024-02-04 | 5.1 MEDIUM | N/A |
The PNG deflate algorithm in RealOne Player 6.0.11.x and earlier, RealPlayer 8/RealPlayer Plus 8 6.0.9.584, and other versions allows remote attackers to corrupt the heap and overwrite arbitrary memory via a PNG graphic file format containing compressed data using fixed trees that contain the length values 286-287, which are treated as a very large length. | |||||
CVE-2000-0120 | 1 Allaire | 1 Spectra | 2024-02-04 | 7.5 HIGH | N/A |
The Remote Access Service invoke.cfm template in Allaire Spectra 1.0 allows users to bypass authentication via the bAuthenticated parameter. | |||||
CVE-2000-0714 | 1 University Of Massachusetts | 1 Scheme | 2024-02-04 | 7.2 HIGH | N/A |
umb-scheme 3.2-11 for Red Hat Linux is installed with world-writeable files. | |||||
CVE-2002-1133 | 1 Funsoft | 1 Dinos Webserver | 2024-02-04 | 5.0 MEDIUM | N/A |
Encoded directory traversal vulnerability in Dino's web server 2.1 allows remote attackers to read arbitrary files via ".." (dot dot) sequences with URL-encoded (1) "/" (%2f") or (2) "\" (%5c) characters. | |||||
CVE-2002-1550 | 1 Ibm | 1 Aix | 2024-02-04 | 4.6 MEDIUM | N/A |
dump_smutil.sh in IBM AIX allows local users to overwrite arbitrary files via a symlink attack on temporary files. | |||||
CVE-2001-0371 | 1 Freebsd | 1 Freebsd | 2024-02-04 | 6.2 MEDIUM | N/A |
Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allows a local user to access otherwise restricted information. | |||||
CVE-2004-1476 | 2 Suse, Xine | 3 Suse Linux, Xine, Xine-lib | 2024-02-04 | 5.1 MEDIUM | N/A |
Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk label. | |||||
CVE-2001-0761 | 1 Trend Micro | 1 Interscan Webmanager | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in HttpSave.dll in Trend Micro InterScan WebManager 1.2 allows remote attackers to execute arbitrary code via a long value to a certain parameter. | |||||
CVE-2001-0907 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 2.1 LOW | N/A |
Linux kernel 2.2.1 through 2.2.19, and 2.4.1 through 2.4.10, allows local users to cause a denial of service via a series of deeply nested symlinks, which causes the kernel to spend extra time when trying to access the link. | |||||
CVE-2002-1496 | 1 Nulllogic | 1 Null Httpd | 2024-02-04 | 7.5 HIGH | N/A |
Heap-based buffer overflow in Null HTTP Server 0.5.0 and earlier allows remote attackers to execute arbitrary code via a negative value in the Content-Length HTTP header. | |||||
CVE-2001-0791 | 1 Trend Micro | 1 Interscan Viruswall | 2024-02-04 | 5.0 MEDIUM | N/A |
Trend Micro InterScan VirusWall for Windows NT allows remote attackers to make configuration changes by directly calling certain CGI programs, which do not restrict access. | |||||
CVE-2004-0734 | 1 Extropia | 1 Extropia Webstore | 2024-02-04 | 7.5 HIGH | N/A |
Web_Store.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter. | |||||
CVE-2002-1613 | 1 Hp | 2 Hp-ux, Tru64 | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in ps in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges. | |||||
CVE-2002-1224 | 1 Kde | 1 Kde | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in kpf for KDE 3.0.1 through KDE 3.0.3a allows remote attackers to read arbitrary files as the kpf user via a URL with a modified icon parameter. | |||||
CVE-2003-0757 | 1 Checkpoint | 1 Firewall-1 | 2024-02-04 | 5.0 MEDIUM | N/A |
Check Point FireWall-1 4.0 and 4.1 before SP5 allows remote attackers to obtain the IP addresses of internal interfaces via certain SecuRemote requests to TCP ports 256 or 264, which leaks the IP addresses in a reply packet. | |||||
CVE-2002-0028 | 1 Mirabilis | 1 Icq | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in ICQ before 2001B Beta v5.18 Build #3659 allows remote attackers to execute arbitrary code via a Voice Video & Games request. |