Total
253942 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0529 | 2024-02-04 | 7.5 HIGH | N/A | ||
A router or firewall forwards packets that claim to come from IANA reserved or private addresses, e.g. 10.x.x.x, 127.x.x.x, 217.x.x.x, etc. | |||||
CVE-2001-0297 | 1 Dattaraj Rao | 1 Simple Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Simple Server HTTPd 1.0 (originally Free Java Server) allows remote attackers to read arbitrary files via a .. (dot dot) in the URL. | |||||
CVE-2000-0101 | 1 Make-a-store | 1 Orderpage | 2024-02-04 | 7.5 HIGH | N/A |
The Make-a-Store OrderPage shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | |||||
CVE-1999-1143 | 1 Sgi | 1 Irix | 2024-02-04 | 7.2 HIGH | N/A |
Vulnerability in runtime linker program rld in SGI IRIX 6.x and earlier allows local users to gain privileges via setuid and setgid programs. | |||||
CVE-2003-1360 | 1 Hp | 1 Hp-ux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in the setupterm function of (1) lanadmin and (2) landiag programs of HP-UX 10.0 through 10.34 allows local users to execute arbitrary code via a long TERM environment variable. | |||||
CVE-1999-0561 | 2024-02-04 | 10.0 HIGH | N/A | ||
IIS has the #exec function enabled for Server Side Include (SSI) files. | |||||
CVE-1999-0251 | 1 Talkd | 1 Talkd | 2024-02-04 | 5.0 MEDIUM | N/A |
Denial of service in talk program allows remote attackers to disrupt a user's display. | |||||
CVE-2003-0166 | 1 Php | 1 Php | 2024-02-04 | 7.5 HIGH | N/A |
Integer signedness error in emalloc() function for PHP before 4.3.2 allow remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via negative arguments to functions such as (1) socket_recv, (2) socket_recvfrom, and possibly other functions. | |||||
CVE-2002-2188 | 1 Openbsd | 1 Openbsd | 2024-02-04 | 4.9 MEDIUM | N/A |
OpenBSD before 3.2 allows local users to cause a denial of service (kernel crash) via a call to getrlimit(2) with invalid arguments, possibly due to an integer signedness error. | |||||
CVE-2004-1637 | 1 Hawking Technology | 1 Har11a Dsl Router | 2024-02-04 | 7.5 HIGH | N/A |
The Hawking Technologies HAR11A modem/router allows remote attackers to obtain sensitive information by connecting to port 254, which displays a management interface and information on established connections. | |||||
CVE-1999-1535 | 1 Persits | 1 Aspupload | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in AspUpload.dll in Persits Software AspUpload before 1.4.0.2 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument in the HTTP request. | |||||
CVE-2003-1557 | 1 Spamassassin | 1 Spamassassin | 2024-02-04 | 7.6 HIGH | N/A |
Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows remote attackers to execute arbitrary code via email containing headers with leading "." characters. | |||||
CVE-2000-0361 | 1 Suse | 1 Suse Linux | 2024-02-04 | 2.1 LOW | N/A |
The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information. | |||||
CVE-2002-2284 | 1 Netscape | 1 Communicator | 2024-02-04 | 6.4 MEDIUM | N/A |
Netscape Communicator 4.0 through 4.79 allows remote attackers to bypass JVM security and execute arbitrary Java code via an applet that loads user-supplied Java classes. | |||||
CVE-2000-1177 | 1 Bb4 | 1 Big Brother Network Monitor | 2024-02-04 | 5.0 MEDIUM | N/A |
bb-hist.sh, bb-histlog.sh, bb-hostsvc.sh, bb-rep.sh, bb-replog.sh, and bb-ack.sh in Big Brother (BB) before 1.5d3 allows remote attackers to determine the existence of files and user ID's by specifying the target file in the HISTFILE parameter. | |||||
CVE-2002-0854 | 1 Suse | 1 Suse Linux | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the i4l package on SuSE 7.3, 8.0, and possibly other operating systems, may allow local users to gain privileges. | |||||
CVE-2004-1810 | 1 Opera | 1 Opera Browser | 2024-02-04 | 5.0 MEDIUM | N/A |
The Javascript engine in Opera 7.23 allows remote attackers to cause a denial of service (crash) by creating a new Array object with a large size value, then writing into that array. | |||||
CVE-1999-1314 | 1 Freebsd | 1 Freebsd | 2024-02-04 | 2.1 LOW | N/A |
Vulnerability in union file system in FreeBSD 2.2 and earlier, and possibly other operating systems, allows local users to cause a denial of service (system reload) via a series of certain mount_union commands. | |||||
CVE-2002-0038 | 1 Sgi | 1 Irix | 2024-02-04 | 5.0 MEDIUM | N/A |
Vulnerability in the cache-limiting function of the unified name service daemon (nsd) in IRIX 6.5.4 through 6.5.11 allows remote attackers to cause a denial of service by forcing the cache to fill the disk. | |||||
CVE-1999-1437 | 1 Ralf S. Engelschall | 1 Eperl | 2024-02-04 | 7.5 HIGH | N/A |
ePerl 2.2.12 allows remote attackers to read arbitrary files and possibly execute certain commands by specifying a full pathname of the target file as an argument to bar.phtml. |