Total
254016 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0028 | 10 Cray, Freebsd, Gnu and 7 more | 13 Unicos, Freebsd, Glibc and 10 more | 2024-02-04 | 7.5 HIGH | N/A |
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different vulnerability than CVE-2002-0391. | |||||
CVE-2003-0382 | 2 Debian, Michael Jennings | 2 Debian Linux, Eterm | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable. | |||||
CVE-2001-0385 | 1 Goahead Software | 1 Goahead Webserver | 2024-02-04 | 5.0 MEDIUM | N/A |
GoAhead webserver 2.1 allows remote attackers to cause a denial of service via an HTTP request to the /aux directory. | |||||
CVE-2002-0033 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 10.0 HIGH | N/A |
Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name. | |||||
CVE-2002-2346 | 1 Phpbb | 1 Phpbb | 2024-02-04 | 5.0 MEDIUM | N/A |
phpBB 2.0 through 2.0.3 generates names for uploaded avatar files with the hex-encoded IP address of the client system, which allows remote attackers to obtain client IP addresses. | |||||
CVE-2000-0966 | 1 Hp | 1 Hp-ux | 2024-02-04 | 4.6 MEDIUM | N/A |
Buffer overflows in lpspooler in the fileset PrinterMgmt.LP-SPOOL of HP-UX 11.0 and earlier allows local users to gain privileges. | |||||
CVE-2002-0238 | 1 Netgear | 1 Rt314 | 2024-02-04 | 7.5 HIGH | N/A |
Cross-site scripting vulnerability in web administration interface for NetGear RT314 and RT311 Gateway Routers allows remote attackers to execute arbitrary script on another client via a URL that contains the script. | |||||
CVE-2002-2308 | 1 Netscape | 1 Communicator | 2024-02-04 | 5.0 MEDIUM | N/A |
Netscape Communicator 6.2.1 allows remote attackers to cause a denial of service in client browsers via a webpage containing a recursive META refresh tag where the content tag is blank and the URL tag references itself. | |||||
CVE-2000-0530 | 2 Caldera, Kde | 2 Openlinux, Kde | 2024-02-04 | 7.2 HIGH | N/A |
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files. | |||||
CVE-2002-1021 | 1 Working Resources Inc. | 1 Badblue | 2024-02-04 | 5.0 MEDIUM | N/A |
BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte. | |||||
CVE-2002-0799 | 1 Youngzsoft | 1 Cmailserver | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in YoungZSoft CMailServer 3.30 allows remote attackers to execute arbitrary code via a long USER argument. | |||||
CVE-2002-1203 | 1 Ibm | 1 Secureway Firewall | 2024-02-04 | 5.0 MEDIUM | N/A |
IBM SecureWay Firewall before 4.2.2 performs extra processing before determining that a packet is invalid and dropping it, which allows remote attackers to cause a denial of service (resource exhaustion) via a flood of malformed TCP packets without any flags set. | |||||
CVE-1999-1450 | 1 Sco | 2 Openserver, Unixware | 2024-02-04 | 7.5 HIGH | N/A |
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges. | |||||
CVE-2001-0855 | 1 Rational Software | 1 Clearcase | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in db_loader in ClearCase 4.2 and earlier allows local users to gain root privileges via a long TERM environment variable. | |||||
CVE-2004-1555 | 1 Broadboard Instant | 1 Asp Message Board | 2024-02-04 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in BroadBoard Instant ASP Message Board allow remote attackers to run arbitrary SQL commands via the (1) keywords parameter to search.asp, (2) handle parameter to profile.asp, (3) txtUserHandle parameter to reg2.asp or (4) txtUserEmail parameter to forgot.asp. | |||||
CVE-2000-0943 | 1 Max-wilhelm Bruker | 1 Bftpd | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in bftp daemon (bftpd) 1.0.11 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long USER command. | |||||
CVE-2000-1101 | 1 Texas Imperial Software | 1 Wftpd | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Winsock FTPd (WFTPD) 3.00 and 2.41 with the "Restrict to home directory" option enabled allows local users to escape the home directory via a "/../" string, a variation of the .. (dot dot) attack. | |||||
CVE-2001-0415 | 1 Redi | 1 Rediplus | 2024-02-04 | 4.6 MEDIUM | N/A |
REDIPlus program, REDI.exe, stores passwords and user names in cleartext in the StartLog.txt log file, which allows local users to gain access to other accounts. | |||||
CVE-2004-0849 | 1 Gnu | 1 Radius | 2024-02-04 | 5.0 MEDIUM | N/A |
Integer overflow in the asn_decode_string() function defined in asn1.c in radiusd for GNU Radius 1.1 and 1.2 before 1.2.94, when compiled with the --enable-snmp option, allows remote attackers to cause a denial of service (daemon crash) via certain SNMP requests. | |||||
CVE-2001-0533 | 1 Ibm | 1 Aix | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environmental variable. |