Total
253946 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-0193 | 1 Iss | 11 Blackice Agent Server, Blackice Pc Protection, Blackice Server Protection and 8 more | 2024-02-04 | 7.5 HIGH | N/A |
Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0 and 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, and BlackICE Server Protection 3.6, allows remote attackers to execute arbitrary code via an SMB packet containing an authentication request with a long username. | |||||
CVE-2001-1418 | 1 Aol | 1 Instant Messenger | 2024-02-04 | 5.0 MEDIUM | N/A |
AOL Instant Messenger (AIM) 4.7 allows remote attackers to cause a denial of service (application crash) via a malformed WAV file. | |||||
CVE-2002-2071 | 1 Compaq | 1 Tru64 | 2024-02-04 | 5.0 MEDIUM | N/A |
Compaq Tru64 4.0 d allows remote attackers to cause a denial of service in (1) telnet, (2) FTP, (3) ypbind, (4) rpc.lockd, (5) snmp, (6) ttdbserverd, and possibly other services via a TCP SYN scan, as demonstrated using nmap. | |||||
CVE-2003-0221 | 1 Hp | 1 Tru64 | 2024-02-04 | 7.2 HIGH | N/A |
The (1) dupatch and (2) setld utilities in HP Tru64 UNIX 5.1B PK1 and earlier allows local users to overwrite files and possibly gain root privileges via a symlink attack. | |||||
CVE-2003-0019 | 1 Redhat | 1 Linux | 2024-02-04 | 7.2 HIGH | N/A |
uml_net in the kernel-utils package for Red Hat Linux 8.0 has incorrect setuid root privileges, which allows local users to modify network interfaces, e.g. by modifying ARP entries or placing interfaces into promiscuous mode. | |||||
CVE-2004-0829 | 1 Samba | 1 Samba | 2024-02-04 | 5.0 MEDIUM | N/A |
smbd in Samba before 2.2.11 allows remote attackers to cause a denial of service (daemon crash) by sending a FindNextPrintChangeNotify request without a previous FindFirstPrintChangeNotify, as demonstrated by the SMB client in Windows XP SP2. | |||||
CVE-2001-0110 | 1 Iomega | 1 Jazip | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in jaZip Zip/Jaz drive manager allows local users to gain root privileges via a long DISPLAY environmental variable. | |||||
CVE-2000-0686 | 1 Cgi Script Center | 1 Auction Weaver | 2024-02-04 | 5.0 MEDIUM | N/A |
Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the fromfile parameter. | |||||
CVE-2000-0295 | 1 Lcdproc | 1 Lcdproc | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in LCDproc allows remote attackers to gain root privileges via the screen_add command. | |||||
CVE-1999-1298 | 1 Freebsd | 1 Freebsd | 2024-02-04 | 7.5 HIGH | N/A |
Sysinstall in FreeBSD 2.2.1 and earlier, when configuring anonymous FTP, creates the ftp user without a password and with /bin/date as the shell, which could allow attackers to gain access to certain system resources. | |||||
CVE-2002-1578 | 1 Sap | 1 Sap R 3 | 2024-02-04 | 7.5 HIGH | N/A |
The default installation of SAP R/3, when using Oracle and SQL*net V2 3.x, 4.x, and 6.10, allows remote attackers to obtain arbitrary, sensitive SAP data by directly connecting to the Oracle database and executing queries against the database, which is not password-protected. | |||||
CVE-2001-0849 | 1 Duncan Hall | 1 Viralator | 2024-02-04 | 7.5 HIGH | N/A |
viralator CGI script in Viralator 0.9pre1 and earlier allows remote attackers to execute arbitrary code via a URL for a file being downloaded, which is insecurely passed to a call to wget. | |||||
CVE-1999-1516 | 1 Tenfour | 1 Tfs Gateway Smtp | 2024-02-04 | 7.5 HIGH | N/A |
A buffer overflow in TenFour TFS Gateway SMTP mail server 3.2 allows an attacker to crash the mail server and possibly execute arbitrary code by offering more than 128 bytes in a MAIL FROM string. | |||||
CVE-1999-1186 | 3 Redhat, Rxvt, Slackware | 3 Linux, Rxvt, Slackware Linux | 2024-02-04 | 7.2 HIGH | N/A |
rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious program using the -print-pipe command line parameter. | |||||
CVE-1999-1013 | 1 Ibm | 1 Aix | 2024-02-04 | 7.2 HIGH | N/A |
named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f parameter and a malformed zone file. | |||||
CVE-2002-1972 | 1 Sebastian Dehne | 1 Pp Powerswitch | 2024-02-04 | 4.6 MEDIUM | N/A |
Unknown vulnerability in Parallel port powerSwitch (aka pp_powerSwitch) 0.1 does not properly enforce access controls, which allows local users to access arbitrary ports. | |||||
CVE-2000-0053 | 1 Microsoft | 1 Commercial Internet System | 2024-02-04 | 7.5 HIGH | N/A |
Microsoft Commercial Internet System (MCIS) IMAP server allows remote attackers to cause a denial of service via a malformed IMAP request. | |||||
CVE-1999-0812 | 1 Samba | 1 Samba | 2024-02-04 | 7.6 HIGH | N/A |
Race condition in Samba smbmnt allows local users to mount file systems in arbitrary locations. | |||||
CVE-2003-1072 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 2.1 LOW | N/A |
Memory leak in lofiadm in Solaris 8 allows local users to cause a denial of service (kernel memory consumption). | |||||
CVE-1999-0076 | 1 Washington University | 1 Wu-ftpd | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in wu-ftp from PASV command causes a core dump. |