Total
253940 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0371 | 1 Prishtina Soft | 1 Prishtina Ftp | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Prishtina FTP client 1.x allows remote FTP servers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP banner. | |||||
CVE-2002-1674 | 1 Freebsd | 1 Freebsd | 2024-02-04 | 1.2 LOW | N/A |
procfs on FreeBSD before 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to. | |||||
CVE-2004-1467 | 1 Egroupware | 1 Egroupware | 2024-02-04 | 4.3 MEDIUM | N/A |
Multiple cross-site scripting (XSS) vulnerabilities in eGroupWare 1.0.00.003 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) date or search text field in the calendar module, (2) Field parameter, Filter parameter, QField parameter, Start parameter or Search field in the address module, (3) Subject field in the message module or (4) Subject field in the Ticket module. | |||||
CVE-2003-0519 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 5.0 MEDIUM | N/A |
Certain versions of Internet Explorer 5 and 6, in certain Windows environments, allow remote attackers to cause a denial of service (freeze) via a URL to C:\aux (MS-DOS device name) and possibly other devices. | |||||
CVE-2002-1643 | 1 Realnetworks | 1 Helix Universal Server | 2024-02-04 | 7.5 HIGH | N/A |
Multiple buffer overflows in RealNetworks Helix Universal Server 9.0 (9.0.2.768) allow remote attackers to execute arbitrary code via (1) a long Transport field in a SETUP RTSP request, (2) a DESCRIBE RTSP request with a long URL argument, or (3) two simultaneous HTTP GET requests with long arguments. | |||||
CVE-2000-0704 | 3 Freewnn, Omron, Wnn | 3 Freewnn, Worldview, Wnn4 | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands. | |||||
CVE-2000-0568 | 1 Sybergen | 1 Secure Desktop | 2024-02-04 | 5.0 MEDIUM | N/A |
Sybergen Secure Desktop 2.1 does not properly protect against false router advertisements (ICMP type 9), which allows remote attackers to modify default routes. | |||||
CVE-2003-0101 | 3 Engardelinux, Usermin, Webmin | 3 Guardian Digital Webtool, Usermin, Webmin | 2024-02-04 | 10.0 HIGH | N/A |
miniserv.pl in (1) Webmin before 1.070 and (2) Usermin before 1.000 does not properly handle metacharacters such as line feeds and carriage returns (CRLF) in Base-64 encoded strings during Basic authentication, which allows remote attackers to spoof a session ID and gain root privileges. | |||||
CVE-2004-1700 | 1 Pinnacle Systems | 1 Showcenter | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in SettingsBase.php in Pinnacle ShowCenter 1.51 build 121 allows remote attackers to inject arbitrary HTML or web script via the Skin parameter, which is echoed in an error message. | |||||
CVE-2000-0657 | 1 Analogx | 1 Proxy | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long HELO command in the SMTP protocol. | |||||
CVE-2001-0500 | 1 Microsoft | 3 Index Server, Indexing Service, Internet Information Server | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red. | |||||
CVE-2003-1133 | 1 Ritlabs | 1 The Bat | 2024-02-04 | 2.1 LOW | N/A |
Rit Research Labs The Bat! 1.0.11 through 2.0 creates new accounts with insecure ACLs, which allows local users to read other users' email messages. | |||||
CVE-2002-1401 | 1 Postgresql | 1 Postgresql | 2024-02-04 | 6.5 MEDIUM | N/A |
Buffer overflows in (1) circle_poly, (2) path_encode and (3) path_add (also incorrectly identified as path_addr) for PostgreSQL 7.2.3 and earlier allow attackers to cause a denial of service and possibly execute arbitrary code, possibly as a result of an integer overflow. | |||||
CVE-2004-1426 | 1 Korweblog | 1 Korweblog | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in index.php in KorWeblog 1.6.2-cvs and earlier allows remote attackers to read arbitrary files and execute arbitrary PHP files via .. (dot dot) sequences in the lng parameter. | |||||
CVE-1999-0126 | 1 Xfree86 Project | 1 Xfree86 | 2024-02-04 | 7.2 HIGH | N/A |
SGI IRIX buffer overflow in xterm and Xaw allows root access. | |||||
CVE-2000-0062 | 1 Zope | 1 Zope | 2024-02-04 | 10.0 HIGH | N/A |
The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities. | |||||
CVE-1999-1113 | 1 Eudora | 1 Internet Mail Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in Eudora Internet Mail Server (EIMS) 2.01 and earlier on MacOS systems allows remote attackers to cause a denial of service via a long USER command to port 106. | |||||
CVE-2002-1908 | 1 Microsoft | 1 Internet Information Services | 2024-02-04 | 5.0 MEDIUM | N/A |
Microsoft IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (CPU consumption) via an HTTP request with a Host header that contains a large number of "/" (forward slash) characters. | |||||
CVE-1999-0529 | 2024-02-04 | 7.5 HIGH | N/A | ||
A router or firewall forwards packets that claim to come from IANA reserved or private addresses, e.g. 10.x.x.x, 127.x.x.x, 217.x.x.x, etc. | |||||
CVE-2001-0297 | 1 Dattaraj Rao | 1 Simple Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Simple Server HTTPd 1.0 (originally Free Java Server) allows remote attackers to read arbitrary files via a .. (dot dot) in the URL. |