Total
254043 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-0665 | 1 Cgiscript.net | 1 Csfaq | 2024-02-04 | 5.0 MEDIUM | N/A |
csFAQ.cgi in csFAQ allows remote attackers to gain sensitive information via an invalid database parameter, which reveals the path to the web server in an error message. | |||||
CVE-2003-0080 | 1 Gnome | 1 Gnome-lokkit | 2024-02-04 | 7.5 HIGH | N/A |
The iptables ruleset in Gnome-lokkit in Red Hat Linux 8.0 does not include any rules in the FORWARD chain, which could allow attackers to bypass intended access restrictions if packet forwarding is enabled. | |||||
CVE-2002-0141 | 1 Maelstrom | 1 Maelstrom Gpl | 2024-02-04 | 1.2 LOW | N/A |
Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file. | |||||
CVE-2001-0872 | 3 Openbsd, Redhat, Suse | 3 Openssh, Linux, Suse Linux | 2024-02-04 | 7.2 HIGH | N/A |
OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment variables such as LD_PRELOAD, which allows local users to gain root privileges. | |||||
CVE-2004-0073 | 1 Stoitsov | 1 Easydynamicpages | 2024-02-04 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in (1) config.php and (2) config_page.php for EasyDynamicPages 2.0 allows remote attackers to execute arbitrary PHP code by modifying the edp_relative_path parameter to reference a URL on a remote web server that contains a malicious serverdata.php script. | |||||
CVE-2000-0483 | 2 Redhat, Zope | 2 Linux Powertools, Zope | 2024-02-04 | 7.5 HIGH | N/A |
The DocumentTemplate package in Zope 2.2 and earlier allows a remote attacker to modify DTMLDocuments or DTMLMethods without authorization. | |||||
CVE-2000-0588 | 1 Sawmill | 1 Sawmill | 2024-02-04 | 5.0 MEDIUM | N/A |
SawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration commands. | |||||
CVE-2004-0077 | 4 Linux, Netwosix, Redhat and 1 more | 7 Linux Kernel, Netwosix Linux, Bigmem Kernel and 4 more | 2024-02-04 | 7.2 HIGH | N/A |
The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different vulnerability than CAN-2003-0985. | |||||
CVE-2000-0001 | 1 Realnetworks | 1 Realserver | 2024-02-04 | 5.0 MEDIUM | N/A |
RealMedia server allows remote attackers to cause a denial of service via a long ramgen request. | |||||
CVE-2004-1410 | 1 Gadu-gadu | 1 Gadu-gadu Instant Messenger | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229. | |||||
CVE-2000-0314 | 5 Debian, Digital, Netbsd and 2 more | 5 Debian Linux, Unix, Netbsd and 2 more | 2024-02-04 | 5.0 MEDIUM | N/A |
traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero. | |||||
CVE-2000-0363 | 1 Suse | 1 Suse Linux | 2024-02-04 | 6.2 MEDIUM | N/A |
Linux cdwtools 093 and earlier allows local users to gain root privileges via the /tmp directory. | |||||
CVE-2003-1121 | 1 Scriptlogic | 1 Scriptlogic | 2024-02-04 | 10.0 HIGH | N/A |
Services in ScriptLogic 4.01, and possibly other versions before 4.14, process client requests at raised privileges, which allows remote attackers to (1) modify arbitrary registry entries via the ScriptLogic RPC service (SLRPC) or (2) modify arbitrary configuration via the RunAdmin services (SLRAserver.exe and SLRAclient.exe). | |||||
CVE-2000-0586 | 1 Dalnet | 1 Ircd | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in Dalnet IRC server 4.6.5 allows remote attackers to cause a denial of service or execute arbitrary commands via the SUMMON command. | |||||
CVE-2003-1099 | 1 Hp | 1 Hp-ux | 2024-02-04 | 2.1 LOW | N/A |
shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary files with predictable names in /tmp, which allows local users to cause a denial of service and possibly execute arbitrary code via a symlink attack. | |||||
CVE-2002-1607 | 1 Hp | 2 Hp-ux, Tru64 | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflow in ypmatch in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code. | |||||
CVE-2001-0098 | 1 Bea | 1 Weblogic Server | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in Bea WebLogic Server before 5.1.0 allows remote attackers to execute arbitrary commands via a long URL that begins with a ".." string. | |||||
CVE-2002-1043 | 1 Ultrafunk | 1 Popcorn | 2024-02-04 | 5.0 MEDIUM | N/A |
Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial of service (crash) via a malformed Subject ("\t\t"). | |||||
CVE-2003-0639 | 1 Novell | 1 Ichain | 2024-02-04 | 5.0 MEDIUM | N/A |
Unknown vulnerability in Novell iChain 2.2 before Support Pack 1 allows users to access restricted or secure pages without authentication. | |||||
CVE-1999-0839 | 1 Microsoft | 1 Ie | 2024-02-04 | 7.2 HIGH | N/A |
Windows NT Task Scheduler installed with Internet Explorer 5 allows a user to gain privileges by modifying the job after it has been scheduled. |