Total
254016 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2001-1476 | 1 Ssh | 1 Ssh | 2024-02-04 | 7.5 HIGH | N/A |
| SSH before 2.0, with RC4 encryption and the "disallow NULL passwords" option enabled, makes it easier for remote attackers to guess portions of user passwords by replaying user sessions with certain modifications, which trigger different messages depending on whether the guess is correct or not. | |||||
| CVE-1999-0480 | 1 Midnight Commander | 1 Midnight Commander | 2024-02-04 | 2.1 LOW | N/A |
| Local attackers can conduct a denial of service in Midnight Commander 4.x with a symlink attack. | |||||
| CVE-2002-1923 | 1 Oracle | 1 Mysql | 2024-02-04 | 7.5 HIGH | N/A |
| The default configuration in MySQL 3.20.32 through 3.23.52, when running on Windows, does not have logging enabled, which could allow remote attackers to conduct activities without detection. | |||||
| CVE-2002-0720 | 1 Microsoft | 2 Windows 2000, Windows 2000 Terminal Services | 2024-02-04 | 7.2 HIGH | N/A |
| A handler routine for the Network Connection Manager (NCM) in Windows 2000 allows local users to gain privileges via a complex attack that causes the handler to run in the LocalSystem context with user-specified code. | |||||
| CVE-2004-0591 | 1 Inter7 | 1 Sqwebmail | 2024-02-04 | 6.8 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in the print_header_uc function for SqWebMail 4.0.4 and earlier, and possibly 3.x, allows remote attackers to inject arbitrary web script or HRML via (1) e-mail headers or (2) a message with a "message/delivery-status" MIME Content-Type. | |||||
| CVE-2000-0179 | 1 Hp | 1 Openview Omniback Ii | 2024-02-04 | 5.0 MEDIUM | N/A |
| HP OpenView OmniBack 2.55 allows remote attackers to cause a denial of service via a large number of connections to port 5555. | |||||
| CVE-2003-1001 | 1 Cisco | 9 Catalyst 6500, Catalyst 6500 Ws-svc-nam-1, Catalyst 6500 Ws-svc-nam-2 and 6 more | 2024-02-04 | 5.0 MEDIUM | N/A |
| Buffer overflow in the Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices allows remote attackers to cause a denial of service (crash and reload) via HTTP auth requests for (1) TACACS+ or (2) RADIUS authentication. | |||||
| CVE-2002-1391 | 1 Gert Doering | 1 Mgetty | 2024-02-04 | 7.5 HIGH | N/A |
| Buffer overflow in cnd-program for mgetty before 1.1.29 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a Caller ID string with a long CallerName argument. | |||||
| CVE-2003-0959 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 10.0 HIGH | N/A |
| Multiple integer overflows in the 32bit emulation for AMD64 architectures in Linux 2.4 kernel before 2.4.21 allows attackers to cause a denial of service or gain root privileges via unspecified vectors that trigger copy_from_user function calls with improper length arguments. | |||||
| CVE-2001-0649 | 1 Apple | 1 Personal Web Sharing | 2024-02-04 | 5.0 MEDIUM | N/A |
| Personal Web Sharing 1.5.5 allows a remote attacker to cause a denial of service via a long HTTP request. | |||||
| CVE-2004-0561 | 1 University Of Minnesota | 1 Gopherd | 2024-02-04 | 7.5 HIGH | N/A |
| Format string vulnerability in the log routine for gopher daemon (gopherd) 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code. | |||||
| CVE-2003-0776 | 1 Sane | 2 Sane, Sane-backend | 2024-02-04 | 7.5 HIGH | N/A |
| saned in sane-backends 1.0.7 and earlier does not properly "check the validity of the RPC numbers it gets before getting the parameters," with unknown consequences. | |||||
| CVE-1999-0096 | 3 Bsdi, Freebsd, Sco | 4 Bsd Os, Freebsd, Internet Faststart and 1 more | 2024-02-04 | 5.0 MEDIUM | N/A |
| Sendmail decode alias can be used to overwrite sensitive files. | |||||
| CVE-2001-0200 | 1 Heat-on Software | 1 Hsweb | 2024-02-04 | 5.0 MEDIUM | N/A |
| HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled. | |||||
| CVE-2004-2188 | 1 Dmxready | 1 Dmxready Site Chassis Manager | 2024-02-04 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in DMXReady Site Chassis Manager allows remote attackers to inject arbitrary web script or HTML via unknown vectors. | |||||
| CVE-2003-0071 | 1 Xfree86 Project | 1 X11r6 | 2024-02-04 | 2.1 LOW | N/A |
| The DEC UDK processing feature in the xterm terminal emulator in XFree86 4.2.99.4 and earlier allows attackers to cause a denial of service via a certain character escape sequence that causes the terminal to enter a tight loop. | |||||
| CVE-2004-0785 | 1 Rob Flynn | 1 Gaim | 2024-02-04 | 7.5 HIGH | N/A |
| Multiple buffer overflows in Gaim before 0.82 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) Rich Text Format (RTF) messages, (2) a long hostname for the local system as obtained from DNS, or (3) a long URL that is not properly handled by the URL decoder. | |||||
| CVE-1999-0793 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 2.6 LOW | N/A |
| Internet Explorer allows remote attackers to read files by redirecting data to a Javascript applet. | |||||
| CVE-2000-0761 | 1 Ibm | 1 Os2 Ftp Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| OS2/Warp 4.5 FTP server allows remote attackers to cause a denial of service via a long username. | |||||
| CVE-2004-1457 | 1 Novell | 1 Bordermanager | 2024-02-04 | 5.0 MEDIUM | N/A |
| The Virtual Private Network (VPN) capability in Novell Bordermanager 3.8 allows remote attackers to cause a denial of service (ABEND in IKE.NLM) via a malformed IKE packet, as sent by the Striker ISAKMP Protocol Test Suite. | |||||