Total
253847 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-1357 | 1 Netscape | 1 Communicator | 2024-02-04 | 7.5 HIGH | N/A |
Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters. | |||||
CVE-2000-0171 | 1 At Computing | 1 Atsar Linux | 2024-02-04 | 7.2 HIGH | N/A |
atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges. | |||||
CVE-2004-0157 | 1 Xonix | 1 Xonix | 2024-02-04 | 4.6 MEDIUM | N/A |
x11.c in xonix 1.4 and earlier uses the current working directory to find and execute the rmail program, which allows local users to execute arbitrary code by modifying the path to point to a malicious rmail program. | |||||
CVE-2000-0713 | 1 Adobe | 3 Acrobat, Acrobat Business Tools, Acrobat Reader | 2024-02-04 | 7.6 HIGH | N/A |
Buffer overflow in Adobe Acrobat 4.05, Reader, Business Tools, and Fill In products that handle PDF files allows attackers to execute arbitrary commands via a long /Registry or /Ordering specifier. | |||||
CVE-2000-0988 | 1 Bardon Data Systems | 1 Winu | 2024-02-04 | 7.2 HIGH | N/A |
WinU 1.0 through 5.1 has a backdoor password that allows remote attackers to gain access to its administrative interface and modify configuration. | |||||
CVE-2000-0385 | 1 Filemaker | 1 Filemaker | 2024-02-04 | 5.0 MEDIUM | N/A |
FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilities. | |||||
CVE-1999-0004 | 3 Hp, Sco, University Of Washington | 3 Dtmail, Unixware, Pine | 2024-02-04 | 5.0 MEDIUM | N/A |
MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook. | |||||
CVE-1999-1513 | 1 3com | 1 Superstack Ii Hub | 2024-02-04 | 7.5 HIGH | N/A |
Management information base (MIB) for a 3Com SuperStack II hub running software version 2.10 contains an object identifier (.1.3.6.1.4.1.43.10.4.2) that is accessible by a read-only community string, but lists the entire table of community strings, which could allow attackers to conduct unauthorized activities. | |||||
CVE-2000-0535 | 2 Freebsd, Openssl | 2 Freebsd, Openssl | 2024-02-04 | 5.0 MEDIUM | N/A |
OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak keys which may be more easily broken. | |||||
CVE-1999-0141 | 1 Netscape | 1 Navigator | 2024-02-04 | 3.7 LOW | N/A |
Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet. | |||||
CVE-1999-0797 | 1 Sun | 1 Sunos | 2024-02-04 | 2.6 LOW | N/A |
NIS finger allows an attacker to conduct a denial of service via a large number of finger requests, resulting in a large number of NIS queries. | |||||
CVE-1999-0164 | 1 Sun | 1 Sunos | 2024-02-04 | 6.2 MEDIUM | N/A |
A race condition in the Solaris ps command allows an attacker to overwrite critical files. | |||||
CVE-2004-2027 | 1 Icecast | 1 Icecast | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in Icecast 2.0.0 and earlier allows remote attackers to cause a denial of service (crash) via a long Basic Authorization header that triggers an out-of-bounds read. | |||||
CVE-2002-2371 | 1 Linksys | 1 Wet11 | 2024-02-04 | 7.8 HIGH | N/A |
Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to cause a denial of service (crash) via a packet containing the device's hardware address as the source MAC address in the DLC header. | |||||
CVE-1999-1232 | 1 Sgi | 1 Irix | 2024-02-04 | 7.2 HIGH | N/A |
Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program. | |||||
CVE-2000-0041 | 1 Apple | 1 Macos | 2024-02-04 | 5.0 MEDIUM | N/A |
Macintosh systems generate large ICMP datagrams in response to malformed datagrams, allowing them to be used as amplifiers in a flood attack. | |||||
CVE-1999-0833 | 2 Isc, Sun | 3 Bind, Solaris, Sunos | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in BIND 8.2 via NXT records. | |||||
CVE-2000-0391 | 3 Cygnus, Mit, Redhat | 5 Cygnus Network Security, Kerbnet, Kerberos and 2 more | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges. | |||||
CVE-2003-0373 | 1 Nessus | 1 Nessus | 2024-02-04 | 4.4 MEDIUM | N/A |
Multiple buffer overflows in libnasl in Nessus before 2.0.6 allow local users with plugin upload privileges to cause a denial of service (core dump) and possibly execute arbitrary code via (1) a long proto argument to the scanner_add_port function, (2) a long user argument to the ftp_log_in function, (3) a long pass argument to the ftp_log_in function. | |||||
CVE-2002-0243 | 1 Opera Software | 1 Opera Web Browser | 2024-02-04 | 7.5 HIGH | N/A |
Cross-site scripting vulnerability in Opera 6.0 and earlier allows remote attackers to execute arbitrary script via an Extended HTML Form, whose output from the remote server is not properly cleansed. |