Total
253967 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1339 | 1 Microsoft | 1 Office Web Components | 2024-02-04 | 5.0 MEDIUM | N/A |
The "XMLURL" property in the Spreadsheet component of Office Web Components (OWC) 10 follows redirections, which allows remote attackers to determine the existence of local files based on exceptions, or to read WorkSheet XML files. | |||||
CVE-2002-0897 | 1 Intranet-server | 1 Localweb2000 | 2024-02-04 | 7.5 HIGH | N/A |
LocalWEB2000 2.1.0 web server allows remote attackers to bypass access restrictions for restricted files via a URL that contains the "/./" directory. | |||||
CVE-2001-0099 | 1 Brian Stanback | 1 Bsguest.cgi | 2024-02-04 | 10.0 HIGH | N/A |
bsguest.cgi guestbook script allows remote attackers to execute arbitrary commands via shell metacharacters in the email address. | |||||
CVE-1999-0902 | 1 Linux-nis | 1 Ypserv | 2024-02-04 | 7.2 HIGH | N/A |
ypserv allows local administrators to modify password tables. | |||||
CVE-2003-0864 | 1 Ircnet | 1 Ircnet Ircd | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in m_join in channel.c for IRCnet IRCD 2.10.x to 2.10.3p3 allows remote attackers to cause a denial of service. | |||||
CVE-1999-0959 | 1 Sgi | 1 Irix | 2024-02-04 | 7.2 HIGH | N/A |
IRIX startmidi program allows local users to modify arbitrary files via a symlink attack. | |||||
CVE-2001-0245 | 1 Microsoft | 2 Index Server, Indexing Service | 2024-02-04 | 5.0 MEDIUM | N/A |
Microsoft Index Server 2.0 in Windows NT 4.0, and Indexing Service in Windows 2000, allows remote attackers to read server-side include files via a malformed search request, aka a new variant of the "Malformed Hit-Highlighting" vulnerability. | |||||
CVE-2001-0239 | 1 Microsoft | 1 Isa Server | 2024-02-04 | 7.5 HIGH | N/A |
Microsoft Internet Security and Acceleration (ISA) Server 2000 Web Proxy allows remote attackers to cause a denial of service via a long web request with a specific type. | |||||
CVE-1999-1297 | 1 Sun | 1 Sunos | 2024-02-04 | 2.1 LOW | N/A |
cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key. | |||||
CVE-1999-0808 | 1 Isc | 1 Dhcp Client | 2024-02-04 | 7.5 HIGH | N/A |
Multiple buffer overflows in ISC DHCP Distribution server (dhcpd) 1.0 and 2.0 allow a remote attacker to cause a denial of service (crash) and possibly execute arbitrary commands via long options. | |||||
CVE-2004-2117 | 1 Tinyserver | 1 Tinyserver | 2024-02-04 | 5.0 MEDIUM | N/A |
Tiny Server 1.1 allows remote attackers to cause a denial of service (crash) via malformed HTTP requests such as (1) a GET request without the HTTP version (HTTP/1.1), or (2) a request without GET or the HTTP version. | |||||
CVE-2001-1133 | 1 Bsdi | 1 Bsd Os | 2024-02-04 | 2.1 LOW | N/A |
Vulnerability in a system call in BSDI 3.0 and 3.1 allows local users to cause a denial of service (reboot) in the kernel via a particular sequence of instructions. | |||||
CVE-2002-2000 | 1 Compaq | 1 Acms | 2024-02-04 | 2.1 LOW | N/A |
ACMS 4.3 and 4.4 in OpenVMS Alpha 7.2 and 7.3 does not properly use process privileges, which allows attackers to access data. | |||||
CVE-2002-2195 | 1 Nullsoft | 1 Winamp | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response. | |||||
CVE-2004-0447 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 7.2 HIGH | N/A |
Unknown vulnerability in Linux before 2.4.26 for IA64 allows local users to cause a denial of service, with unknown impact. NOTE: due to a typo, this issue was accidentally assigned CVE-2004-0477. This is the proper candidate to use for the Linux local DoS. | |||||
CVE-2000-0346 | 1 Apple | 1 Appleshare | 2024-02-04 | 5.0 MEDIUM | N/A |
AppleShare IP 6.1 and later allows a remote attacker to read potentially sensitive information via an invalid range request to the web server. | |||||
CVE-2001-1114 | 1 Netcode | 1 Nc Book | 2024-02-04 | 7.5 HIGH | N/A |
book.cgi in NetCode NC Book 0.2b allows remote attackers to execute arbitrary commands via shell metacharacters in the "current" parameter. | |||||
CVE-2001-1228 | 1 Gnu | 1 Gzip | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server. | |||||
CVE-2000-0045 | 1 Oracle | 1 Mysql | 2024-02-04 | 6.4 MEDIUM | N/A |
MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege. | |||||
CVE-2004-0542 | 1 Php | 1 Php | 2024-02-04 | 10.0 HIGH | N/A |
PHP before 4.3.7 on Win32 platforms does not properly filter all shell metacharacters, which allows local or remote attackers to execute arbitrary code, overwrite files, and access internal environment variables via (1) the "%", "|", or ">" characters to the escapeshellcmd function, or (2) the "%" character to the escapeshellarg function. |