Total
254104 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0728 | 1 Compaq | 1 Management Agents | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflow in Compaq Management Agents before 5.2, included in Compaq Web-enabled Management Software, allows local users to gain privileges. | |||||
CVE-2004-1534 | 1 Zonelabs | 1 Zonealarm | 2024-02-04 | 5.0 MEDIUM | N/A |
ZoneAlarm and ZoneAlarm Pro before 5.5.062, with ad-blocking enabled, allows remote web sites to cause a denial of service (application instability or system hang) via certain JavaScript. | |||||
CVE-1999-1251 | 1 Hp | 1 Hp-ux | 2024-02-04 | 2.1 LOW | N/A |
Vulnerability in direct audio user space code on HP-UX 10.20 and 10.10 allows local users to cause a denial of service. | |||||
CVE-2002-1978 | 1 Darren Reed | 1 Ipfilter | 2024-02-04 | 7.5 HIGH | N/A |
IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server. | |||||
CVE-2002-0222 | 1 Etype | 1 Eserv | 2024-02-04 | 7.5 HIGH | N/A |
Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command. | |||||
CVE-1999-0587 | 2024-02-04 | 10.0 HIGH | N/A | ||
A WWW server is not running in a restricted file system, e.g. through a chroot, thus allowing access to system-critical data. | |||||
CVE-1999-1522 | 1 Roxen | 1 Roxen Web Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Vulnerability in htmlparse.pike in Roxen Web Server 1.3.11 and earlier, possibly related to recursive parsing and referer tags in RXML. | |||||
CVE-2003-0942 | 1 Sap | 1 Sap Db | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Web Agent Administration service in web-tools for SAP DB before 7.4.03.30 allows remote attackers to execute arbitrary code via a long Name parameter to waadmin.wa. | |||||
CVE-2002-1034 | 1 Sun | 1 I-runbook | 2024-02-04 | 10.0 HIGH | N/A |
none.php for SunPS iRunbook 2.5.2 allows remote attackers to read arbitrary files via an absolute pathname in the argument. | |||||
CVE-2004-1824 | 1 Jelsoft | 1 Vbulletin | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin before 3.0 allows remote attackers to inject arbitrary web script or HTML via the what parameter to memberlist.php. | |||||
CVE-1999-1153 | 1 Hamcards Postcard Cgi | 1 Hamcards Postcard Cgi | 2024-02-04 | 7.5 HIGH | N/A |
HAMcards Postcard CGI script 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address. | |||||
CVE-2002-2303 | 1 3d3.com | 1 Shopfactory | 2024-02-04 | 7.8 HIGH | N/A |
3D3.Com ShopFactory 5.8 uses client-side encryption and decryption for sensitive price data, which allows remote attackers to modify shopping cart prices by using the Javascript to decrypt the cookie that contains the data. | |||||
CVE-2002-1599 | 1 Daniel Barron | 1 Dansguardian | 2024-02-04 | 7.5 HIGH | N/A |
DansGuardian before 2.4.5-1 allows remote attackers to bypass content filtering rules via hex-encoded URLs. | |||||
CVE-1999-0985 | 1 Cc | 1 Cc Whois | 2024-02-04 | 7.5 HIGH | N/A |
CC Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry. | |||||
CVE-2004-0655 | 1 Esearch | 1 Emerge Search Tool | 2024-02-04 | 7.2 HIGH | N/A |
eupdatedb in esearch 0.6.1 and earlier allows local users to create arbitrary files via a symlink attack on the esearchdb.py.tmp temporary file. | |||||
CVE-2003-0089 | 1 Hp | 1 Hp-ux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in the Software Distributor utilities for HP-UX B.11.00 and B.11.11 allows local users to execute arbitrary code via a long LANG environment variable to setuid programs such as (1) swinstall and (2) swmodify. | |||||
CVE-2002-1791 | 1 Sgi | 1 Irix | 2024-02-04 | 2.1 LOW | N/A |
SGI IRIX 6.5 through 6.5.17 creates temporary desktop files with world-writable permissions, which allows local users to overwrite or corrupt those files. | |||||
CVE-2002-1649 | 1 Squirrelmail | 1 Squirrelmail | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in read_body.php in SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary Javascript via a javascript: URL in an IMG tag. | |||||
CVE-1999-1093 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 5.1 MEDIUM | N/A |
Buffer overflow in the Window.External function in the JScript Scripting Engine in Internet Explorer 4.01 SP1 and earlier allows remote attackers to execute arbitrary commands via a malicious web page. | |||||
CVE-2001-1300 | 1 Dynu Systems Inc. | 1 Dynu Ftp Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Dynu FTP server 1.05 and earlier allows remote attackers to read arbitrary files via a .. in the CD (CWD) command. |