Total
254104 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0574 | 1 Jason Rahaim | 1 Mp3mystic | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in MP3Mystic prior to 1.04b3 allows a remote attacker to download arbitrary files via a '..' (dot dot) in the URL. | |||||
CVE-2001-0663 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2024-02-04 | 5.0 MEDIUM | N/A |
Terminal Server in Windows NT and Windows 2000 allows remote attackers to cause a denial of service via a sequence of invalid Remote Desktop Protocol (RDP) packets. | |||||
CVE-2001-0636 | 1 Raytheon | 1 Silentrunner | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflows in Raytheon SilentRunner allow remote attackers to (1) cause a denial of service in the collector (cle.exe) component of SilentRunner 2.0 via traffic containing long passwords, or (2) execute arbitrary commands via long HTTP queries in the Knowledge Browser component in SilentRunner 2.0 and 2.0.1. NOTE: It is highly likely that this candidate will be split into multiple candidates. | |||||
CVE-2004-1317 | 1 Netcat | 1 Netcat | 2024-02-04 | 7.5 HIGH | N/A |
Stack-based buffer overflow in doexec.c in Netcat for Windows 1.1, when running with the -e option, allows remote attackers to execute arbitrary code via a long DNS command. | |||||
CVE-2001-1184 | 1 Denicomp | 1 Winsock Rshd Nt | 2024-02-04 | 5.0 MEDIUM | N/A |
wrshdsp.exe in Denicomp Winsock RSHD/NT 2.21.00 and earlier allows remote attackers to cause a denial of service (CPU consumption) via (1) in 2.20.00 and earlier, an invalid port number such as a negative number, which causes a connection attempt to that port and all ports below 1024, and (2) in 2.21.00, a port number of 1024. | |||||
CVE-2001-1085 | 1 Jon Zeeff | 1 Lmail | 2024-02-04 | 3.7 LOW | N/A |
Lmail 2.7 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | |||||
CVE-2004-0797 | 1 Zlib | 1 Zlib | 2024-02-04 | 2.1 LOW | N/A |
The error handling in the (1) inflate and (2) inflateBack functions in ZLib compression library 1.2.x allows local users to cause a denial of service (application crash). | |||||
CVE-1999-1196 | 1 Hummingbird | 1 Exceed | 2024-02-04 | 5.0 MEDIUM | N/A |
Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed data to port 6000. | |||||
CVE-2004-1947 | 1 Softwin | 1 Bitdefender | 2024-02-04 | 5.0 MEDIUM | N/A |
The AVXSCANONLINE.AvxScanOnlineCtrl.1 ActiveX control in BitDefender Scan Online allows remote attackers to (1) obtain sensitive information such as system drives and contents or (2) use the RequestFile method to download and execute arbitrary code via an object codebase that uses bitdefender.cab. | |||||
CVE-2001-0692 | 1 Watchguard | 2 Firebox 2500, Firebox 4500 | 2024-02-04 | 7.5 HIGH | N/A |
SMTP proxy in WatchGuard Firebox (2500 and 4500) 4.5 and 4.6 allows a remote attacker to bypass firewall filtering via a base64 MIME encoded email attachment whose boundary name ends in two dashes. | |||||
CVE-2000-0519 | 1 Microsoft | 2 Ie, Internet Explorer | 2024-02-04 | 2.6 LOW | N/A |
Internet Explorer 4.x and 5.x does not properly re-validate an SSL certificate if the user establishes a new SSL session with the same server during the same Internet Explorer session, aka one of two different "SSL Certificate Validation" vulnerabilities. | |||||
CVE-1999-0050 | 1 Hp | 1 Hp-ux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in HP-UX newgrp program. | |||||
CVE-2001-0992 | 1 Kabotie Software Technologies | 1 Shopplus Cart | 2024-02-04 | 7.5 HIGH | N/A |
shopplus.cgi in ShopPlus shopping cart allows remote attackers to execute arbitrary commands via shell metacharacters in the "file" parameter. | |||||
CVE-2003-0393 | 1 Privacyware | 1 Privatefirewall | 2024-02-04 | 5.0 MEDIUM | N/A |
Privacyware Privatefirewall 3.0 does not block certain incoming packets when in "Filter Internet Traffic" or Deny Internet Traffic" modes, which allows remote attackers to identify running services via FIN scans or Xmas scans. | |||||
CVE-2003-0909 | 1 Microsoft | 1 Windows Xp | 2024-02-04 | 7.2 HIGH | N/A |
Windows XP allows local users to execute arbitrary programs by creating a task at an elevated privilege level through the eventtriggers.exe command-line tool or the Task Scheduler service, aka "Windows Management Vulnerability." | |||||
CVE-2000-0165 | 1 Etl | 1 Delegate | 2024-02-04 | 7.5 HIGH | N/A |
The Delegate application proxy has several buffer overflows which allow a remote attacker to execute commands. | |||||
CVE-2001-0897 | 1 Infopop | 1 Ultimate Bulletin Board | 2024-02-04 | 5.0 MEDIUM | N/A |
Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via an [IMG] tag that references an about: URL with an onerror field. | |||||
CVE-2002-0063 | 1 Easy Software Products | 1 Cups | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values. | |||||
CVE-2002-1293 | 1 Microsoft | 1 Java Virtual Machine | 2024-02-04 | 7.5 HIGH | N/A |
The Microsoft Java implementation, as used in Internet Explorer, provides a public load0() method for the CabCracker class (com.ms.vm.loader.CabCracker), which allows remote attackers to bypass the security checks that are performed by the load() method. | |||||
CVE-1999-1263 | 1 Metamail Corporation | 1 Metamail | 2024-02-04 | 2.6 LOW | N/A |
Metamail before 2.7-7.2 allows remote attackers to overwrite arbitrary files via an e-mail message containing a uuencoded attachment that specifies the full pathname for the file to be modified, which is processed by uuencode in Metamail scripts such as sun-audio-file. |