Total
256636 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0370 | 1 Caldera | 1 Openlinux | 2024-02-04 | 10.0 HIGH | N/A |
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command. | |||||
CVE-2002-1175 | 1 Fetchmail | 1 Fetchmail | 2024-02-04 | 5.0 MEDIUM | N/A |
The getmxrecord function in Fetchmail 6.0.0 and earlier does not properly check the boundary of a particular malformed DNS packet from a malicious DNS server, which allows remote attackers to cause a denial of service (crash) when Fetchmail attempts to read data beyond the expected boundary. | |||||
CVE-1999-1076 | 1 Apple | 1 Macos | 2024-02-04 | 4.6 MEDIUM | N/A |
Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selecting a "Cancel" option in the dialog box for an application that attempts to verify that the user wants to log out, which returns the attacker into the locked session. | |||||
CVE-1999-0320 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 9.3 HIGH | N/A |
SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary files. | |||||
CVE-2003-1382 | 1 Instantservers Inc. | 1 Ismail | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in ISMail 1.4.3 and earlier allow remote attackers to execute arbitrary code via long domain names in (1) MAIL FROM or (2) RCPT TO fields. | |||||
CVE-1999-0782 | 3 Freebsd, Kde, Linux | 3 Freebsd, Kde, Linux Kernel | 2024-02-04 | 2.1 LOW | N/A |
KDE kppp allows local users to create a directory in an arbitrary location via the HOME environmental variable. | |||||
CVE-1999-1425 | 1 Sun | 1 Solstice Adminsuite | 2024-02-04 | 6.2 MEDIUM | N/A |
Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd. | |||||
CVE-1999-0397 | 2024-02-04 | 10.0 HIGH | N/A | ||
The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext. | |||||
CVE-2000-0166 | 1 Interaccess | 1 Interaccess Telnetd Server | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in the InterAccess telnet server TelnetD allows remote attackers to execute commands via a long login name. | |||||
CVE-2001-1482 | 1 Phpbb Group | 1 Phpbb | 2024-02-04 | 7.5 HIGH | N/A |
SQL injection vulnerability in bb_memberlist.php for phpBB 1.4.2 allows remote attackers to execute arbitrary SQL queries via the $sortby variable. | |||||
CVE-2004-2195 | 1 Zanfi Solutions | 1 Zanfi Cms Lite | 2024-02-04 | 5.0 MEDIUM | N/A |
PHP remote file inclusion vulnerability in index.php in Zanfi CMS lite 1.1 allows remote attackers to execute arbitrary PHP code via the inc parameter. | |||||
CVE-2002-0001 | 1 Mutt | 1 Mutt | 2024-02-04 | 7.5 HIGH | N/A |
Vulnerability in RFC822 address parser in mutt before 1.2.5.1 and mutt 1.3.x before 1.3.25 allows remote attackers to execute arbitrary commands via an improperly terminated comment or phrase in the address list. | |||||
CVE-2004-1812 | 1 Broadcom | 1 Unicenter Tng | 2024-02-04 | 10.0 HIGH | N/A |
Multiple stack-based buffer overflows in Agent Common Services (1) cam.exe and (2) awservices.exe in Unicenter TNG 2.4 allow remote attackers to execute arbitrary code. | |||||
CVE-2001-0299 | 1 Nokia | 1 Ip440 Firewall Vpn Appliance | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in Voyager web administration server for Nokia IP440 allows local users to cause a denial of service, and possibly execute arbitrary commands, via a long URL. | |||||
CVE-2001-0272 | 1 W3.org | 1 Sendtemp.pl | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in sendtemp.pl in W3.org Anaya Web development server allows remote attackers to read arbitrary files via a .. (dot dot) attack in the templ parameter. | |||||
CVE-2004-0700 | 2 Gentoo, Mod Ssl | 2 Linux, Mod Ssl | 2024-02-04 | 7.5 HIGH | N/A |
Format string vulnerability in the mod_proxy hook functions function in ssl_engine_log.c in mod_ssl before 2.8.19 for Apache before 1.3.31 may allow remote attackers to execute arbitrary messages via format string specifiers in certain log messages for HTTPS that are handled by the ssl_log function. | |||||
CVE-2000-0292 | 1 Adtran | 1 Mx2800 | 2024-02-04 | 5.0 MEDIUM | N/A |
The Adtran MX2800 M13 Multiplexer allows remote attackers to cause a denial of service via a ping flood to the Ethernet interface, which causes the device to crash. | |||||
CVE-2004-0215 | 2 Avaya, Microsoft | 5 Definity One Media Server, Ip600 Media Servers, Modular Messaging Message Storage Server and 2 more | 2024-02-04 | 5.0 MEDIUM | N/A |
Microsoft Outlook Express 5.5 and 6 allows attackers to cause a denial of service (application crash) via a malformed e-mail header. | |||||
CVE-2000-0967 | 1 Php | 1 Php | 2024-02-04 | 10.0 HIGH | N/A |
PHP 3 and 4 do not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands by triggering error messages that are improperly written to the error logs. | |||||
CVE-1999-0302 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.5 HIGH | N/A |
SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server. |