Total
253869 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0878 | 1 Ranson Johnson | 1 Mailto Cgi Script | 2024-02-04 | 7.5 HIGH | N/A |
| The mailto CGI script allows remote attacker to execute arbitrary commands via shell metacharacters in the emailadd form field. | |||||
| CVE-2002-0090 | 1 Sun | 1 Solaris | 2024-02-04 | 7.2 HIGH | N/A |
| Buffer overflow in Low BandWidth X proxy (lbxproxy) in Solaris 8 allows local users to execute arbitrary code via a long display command line option. | |||||
| CVE-1999-0074 | 4 Freebsd, Linux, Microsoft and 1 more | 4 Freebsd, Linux Kernel, Windows Nt and 1 more | 2024-02-04 | 6.4 MEDIUM | N/A |
| Listening TCP ports are sequentially allocated, allowing spoofing attacks. | |||||
| CVE-2002-1019 | 1 Adobe | 1 Adobe Content Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook for an arbitrary length of time via a modified loanMin parameter to download.asp. | |||||
| CVE-2003-1083 | 1 Tildeslash | 1 Monit | 2024-02-04 | 10.0 HIGH | N/A |
| Stack-based buffer overflow in Monit 1.4 to 4.1 allows remote attackers to execute arbitrary code via a long HTTP request. | |||||
| CVE-2001-0687 | 1 Transsoft | 1 Broker Ftp Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| Broker FTP server 5.9.5 for Windows NT and 9x allows a remote attacker to retrieve privileged web server system information by (1) issuing a CD command (CD C:) followed by the LS command, (2) specifying arbitrary paths in the UNC format (\\computername\sharename). | |||||
| CVE-2000-0147 | 1 Sco | 1 Openserver | 2024-02-04 | 2.1 LOW | N/A |
| snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration. | |||||
| CVE-2000-0245 | 1 Sgi | 1 Irix | 2024-02-04 | 10.0 HIGH | N/A |
| Vulnerability in SGI IRIX objectserver daemon allows remote attackers to create user accounts. | |||||
| CVE-2001-0862 | 1 Cisco | 1 12000 Router | 2024-02-04 | 7.5 HIGH | N/A |
| Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote attackers to bypass the ACL. | |||||
| CVE-2002-1348 | 1 W3m | 1 W3m | 2024-02-04 | 5.0 MEDIUM | N/A |
| w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies. | |||||
| CVE-2004-2074 | 1 Bolintech | 1 Dream Ftp Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| Format string vulnerability in Dream FTP 1.02 allows local users to cause a denial of service (crash) via format string specifiers in the (1) PASS or (2) RETR commands. | |||||
| CVE-1999-0295 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.2 HIGH | N/A |
| Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges. | |||||
| CVE-2002-2331 | 1 Cascadesoft | 1 W3mail | 2024-02-04 | 5.8 MEDIUM | N/A |
| W3Mail 1.0.2 through 1.0.5 with server side scripting (SSI) enabled in the attachments directory does not properly restrict the types of files that can be uploaded as attachments, which allows remote attackers to execute arbitrary code by sending code in MIME attachments, then requesting the attachments. | |||||
| CVE-2004-0072 | 1 Accipiter | 1 Accipiter Direct Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in Accipiter Direct Server 6.0 allows remote attackers to read arbitrary files via encoded \.. (backslash .., "%5c%2e%2e") sequences in an HTTP request. | |||||
| CVE-2004-0070 | 1 Visualshapers | 1 Ezcontents | 2024-02-04 | 7.5 HIGH | N/A |
| PHP remote file inclusion vulnerability in module.php for ezContents allows remote attackers to execute arbitrary PHP code by modifying the link parameter to reference a URL on a remote web server that contains the code. | |||||
| CVE-1999-0063 | 1 Cisco | 1 Ios | 2024-02-04 | 5.0 MEDIUM | N/A |
| Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port. | |||||
| CVE-2002-0620 | 1 Microsoft | 1 Commerce Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| Buffer overflow in the Profile Service of Microsoft Commerce Server 2000 allows remote attackers to cause the server to fail or run arbitrary code in the LocalSystem security context via an input field using an affected API. | |||||
| CVE-2002-0933 | 1 Datalex | 1 Bookit Consumer | 2024-02-04 | 7.5 HIGH | N/A |
| Datalex PLC BookIt! Consumer before 2.2 stores usernames and passwords in plaintext in a cookie, which could allow remote attackers to gain privileges via Cross-site scripting or sniffing attacks. | |||||
| CVE-2004-0733 | 1 Ollydbg | 1 Ollydbg | 2024-02-04 | 7.5 HIGH | N/A |
| Format string vulnerability in OllyDbg 1.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers that are directly provided to the OutputDebugString function call. | |||||
| CVE-2000-0539 | 1 Macromedia | 1 Jrun | 2024-02-04 | 6.4 MEDIUM | N/A |
| Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet. | |||||