Total
254077 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0792 | 1 Xchat | 1 Xchat | 2024-02-04 | 7.5 HIGH | N/A |
Format string vulnerability in XChat 1.2.x allows remote attackers to execute arbitrary code via a malformed nickname. | |||||
CVE-2004-1744 | 1 Efs Software | 1 Efs Web Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Easy File Sharing (EFS) Webserver 1.25 allows remote attackers to cause a denial of service (CPU consumption or crash) via many large HTTP requests. | |||||
CVE-2004-0179 | 3 Apache, Debian, Webdav | 5 Openoffice, Subversion, Debian Linux and 2 more | 2024-02-04 | 6.8 MEDIUM | N/A |
Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code. | |||||
CVE-2004-0604 | 2 Gentoo, Gift-fasttrack | 2 Linux, Gift-fasttrack | 2024-02-04 | 5.0 MEDIUM | N/A |
The HTTP client and server in giFT-FastTrack 0.8.6 and earlier allows remote attackers to cause a denial of service (crash), possibly via an empty search query, which triggers a NULL dereference. | |||||
CVE-2002-1394 | 1 Apache | 1 Tomcat | 2024-02-04 | 7.5 HIGH | N/A |
Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148. | |||||
CVE-2000-0751 | 3 Netbsd, Openbsd, Redhat | 3 Netbsd, Openbsd, Linux | 2024-02-04 | 7.5 HIGH | N/A |
mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands. | |||||
CVE-2003-0308 | 2 Debian, Sendmail | 2 Debian Linux, Sendmail | 2024-02-04 | 7.2 HIGH | N/A |
The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via (1) expn, (2) checksendmail, or (3) doublebounce.pl. | |||||
CVE-2000-0857 | 1 Sebastian Kienzl | 1 Muh | 2024-02-04 | 7.5 HIGH | N/A |
The logging capability in muh 2.05d IRC server does not properly cleanse user-injected format strings, which allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed nickname. | |||||
CVE-2002-0323 | 1 Nombas | 1 Scriptease Webserver | 2024-02-04 | 5.0 MEDIUM | N/A |
comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying the target file as an argument in the URL. | |||||
CVE-2000-0953 | 1 Evolvable Corporation | 1 Shambala Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection. | |||||
CVE-2003-1464 | 1 Siemens | 2 M45, S45 | 2024-02-04 | 7.8 HIGH | N/A |
Buffer overflow in Siemens 45 series mobile phones allows remote attackers to cause a denial of service (disconnect and unavailable inbox) via a Short Message Service (SMS) message with a long image name. | |||||
CVE-1999-0964 | 1 Freebsd | 1 Freebsd | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATH_LOCALE environment variable. | |||||
CVE-2002-0247 | 1 Wliang | 1 Wmtv | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflows in wmtv 0.6.5 and earlier may allow local users to gain privileges. | |||||
CVE-2001-0890 | 1 Sane | 1 Sane | 2024-02-04 | 2.1 LOW | N/A |
Certain backend drivers in the SANE library 1.0.3 and earlier, as used in frontend software such as XSane, allows local users to modify files via a symlink attack on temporary files. | |||||
CVE-2004-0287 | 1 Xlight Ftp Server | 1 Xlight Ftp Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Xlight FTP server 1.52 allows remote authenticated users to cause a denial of service (crash) via a RETR command with a long argument containing a large number of / (slash) characters, possibly triggering a buffer overflow. | |||||
CVE-2001-1454 | 1 Oracle | 1 Mysql | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in MySQL before 3.23.33 allows remote attackers to execute arbitrary code via a long drop database request. | |||||
CVE-2001-1206 | 1 Matrixs Cgi Vault | 1 Last Lines | 2024-02-04 | 7.5 HIGH | N/A |
Matrix CGI vault Last Lines 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the $error_log variable. | |||||
CVE-2001-0524 | 1 Eeye Digital Security | 1 Securells | 2024-02-04 | 7.5 HIGH | N/A |
eEye SecureIIS versions 1.0.3 and earlier does not perform length checking on individual HTTP headers, which allows a remote attacker to send arbitrary length strings to IIS, contrary to an advertised feature of SecureIIS versions 1.0.3 and earlier. | |||||
CVE-1999-0314 | 1 Sgi | 1 Irix | 2024-02-04 | 7.2 HIGH | N/A |
ioconfig on SGI IRIX 6.4 S2MP for Origin/Onyx2 allows local users to gain root access using relative pathnames. | |||||
CVE-2002-1738 | 1 Alt-n | 1 Mdaemon | 2024-02-04 | 5.0 MEDIUM | N/A |
Alt-N Technologies MDaemon 5.0.5.0 and earlier creates a default MDaemon mail account with a password of MServer, which could allow remote attackers to send anonymous email. |