Total
254017 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-1064 | 1 Hp | 1 Jetdirect | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in the LPD service in HP JetDirect printer card Firmware x.08.20 and earlier allows remote attackers to cause a denial of service. | |||||
CVE-2000-0362 | 1 Suse | 1 Suse Linux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges. | |||||
CVE-1999-0177 | 1 Oreilly | 1 Website | 2024-02-04 | 7.5 HIGH | N/A |
The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs. | |||||
CVE-1999-1337 | 1 Midnight Commander | 1 Midnight Commander | 2024-02-04 | 4.6 MEDIUM | N/A |
FTP client in Midnight Commander (mc) before 4.5.11 stores usernames and passwords for visited sites in plaintext in the world-readable history file, which allows other local users to gain privileges. | |||||
CVE-2002-1053 | 1 W3c | 1 Jigsaw | 2024-02-04 | 6.8 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in W3C Jigsaw Proxy Server before 2.2.1 allows remote attackers to execute arbitrary script via a URL that contains a reference to a nonexistent host followed by the script, which is included in the resulting error message. | |||||
CVE-1999-1021 | 1 Sun | 1 Sunos | 2024-02-04 | 7.2 HIGH | N/A |
NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade. | |||||
CVE-2000-0618 | 1 Stanley T. Shebs | 1 Xconq | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long DISPLAY environmental variable. | |||||
CVE-1999-0842 | 1 Symantec | 1 Mail-gear | 2024-02-04 | 5.0 MEDIUM | N/A |
Symantec Mail-Gear 1.0 web interface server allows remote users to read arbitrary files via a .. (dot dot) attack. | |||||
CVE-2001-1118 | 1 Roxen | 1 Roxen Webserver | 2024-02-04 | 7.5 HIGH | N/A |
A module in Roxen 2.0 before 2.0.92, and 2.1 before 2.1.264, does not properly decode UTF-8, Mac and ISO-2202 encoded URLs, which could allow a remote attacker to execute arbitrary commands or view arbitrary files via an encoded URL. | |||||
CVE-2004-0683 | 1 Symantec | 1 Norton Antivirus | 2024-02-04 | 5.0 MEDIUM | N/A |
Symantec Norton AntiVirus 2002 and 2003 allows remote attackers to cause a denial of service (CPU consumption) via a compressed archive that contains a large number of directories. | |||||
CVE-2002-0118 | 1 Infopop | 1 Ultimate Bulletin Board | 2024-02-04 | 7.5 HIGH | N/A |
Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) 6.2.0 Beta Release 1.0 allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag. | |||||
CVE-2001-0709 | 1 Microsoft | 1 Internet Information Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Microsoft IIS 4.0 and before, when installed on a FAT partition, allows a remote attacker to obtain source code of ASP files via a URL encoded with Unicode. | |||||
CVE-2002-0666 | 6 Apple, Freebsd, Frees Wan and 3 more | 12 Mac Os X, Mac Os X Server, Freebsd and 9 more | 2024-02-04 | 5.0 MEDIUM | N/A |
IPSEC implementations including (1) FreeS/WAN and (2) KAME do not properly calculate the length of authentication data, which allows remote attackers to cause a denial of service (kernel panic) via spoofed, short Encapsulating Security Payload (ESP) packets, which result in integer signedness errors. | |||||
CVE-2004-1957 | 1 Postnuke Software Foundation | 1 Postnuke | 2024-02-04 | 2.6 LOW | N/A |
Multiple cross-site scripting (XSS) vulnerabilities in PostNuke 0.726 allows remote attackers to inject arbitrary web script or HTML via the (1) lid and query parameters to the Downloads module, (2) query parameter to the Web_links module, or (3) hlpfile parameter to openwindow.php. | |||||
CVE-2003-0886 | 1 Hylafax | 1 Hylafax | 2024-02-04 | 10.0 HIGH | N/A |
Format string vulnerability in hfaxd for Hylafax 4.1.7 and earlier allows remote attackers to execute arbitrary code. | |||||
CVE-2004-1732 | 1 Mydms | 1 Mydms | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in out.ViewFolder.php in MyDMS before 1.4.2 allows remote attackers to execute arbitrary SQL commands via the folderid parameter. | |||||
CVE-1999-0111 | 1 Ibm | 1 Aix | 2024-02-04 | 5.0 MEDIUM | N/A |
RIP v1 is susceptible to spoofing. | |||||
CVE-2003-0300 | 8 Microsoft, Mozilla, Mutt and 5 more | 8 Outlook Express, Mozilla, Mutt and 5 more | 2024-02-04 | 5.0 MEDIUM | N/A |
The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors. | |||||
CVE-2000-0111 | 1 Avt | 1 Rightfax | 2024-02-04 | 7.5 HIGH | N/A |
The RightFax web client uses predictable session numbers, which allows remote attackers to hijack user sessions. | |||||
CVE-2002-1439 | 1 Hp | 2 Virtualvault, Vvos | 2024-02-04 | 4.6 MEDIUM | N/A |
Unknown vulnerability related to stack corruption in the TGA daemon for HP-UX 11.04 (VVOS) Virtualvault 4.0, 4.5, and 4.6 may allow attackers to obtain access to system files. |