Total
259268 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0788 | 1 Microsoft | 2 Access, Word | 2024-02-04 | 10.0 HIGH | N/A |
| The Mail Merge tool in Microsoft Word does not prompt the user before executing Visual Basic (VBA) scripts in an Access database, which could allow an attacker to execute arbitrary commands. | |||||
| CVE-2001-0145 | 1 Microsoft | 2 Outlook, Outlook Express | 2024-02-04 | 7.5 HIGH | N/A |
| Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an attacker to execute arbitrary commands via a malformed vCard birthday field. | |||||
| CVE-2000-0131 | 1 Jgaa | 1 Warftpd | 2024-02-04 | 5.0 MEDIUM | N/A |
| Buffer overflow in War FTPd 1.6x allows users to cause a denial of service via long MKD and CWD commands. | |||||
| CVE-1999-0498 | 2024-02-04 | 10.0 HIGH | N/A | ||
| TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files. | |||||
| CVE-2003-1087 | 1 Hp | 1 Hp-ux | 2024-02-04 | 5.0 MEDIUM | N/A |
| Unknown vulnerability in diagmond and possibly other applications in HP9000 Series 700/800 running HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows remote attackers to cause a denial of service (program failure) via certain network traffic. | |||||
| CVE-2001-0788 | 1 Internet Software Solutions | 1 Air Messenger Lan Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows remote attackers to obtain an absolute path for the server directory by viewing the Location header. | |||||
| CVE-2001-0206 | 1 Soft Lite | 1 Serverworx | 2024-02-04 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbitrary files by inserting a .. (dot dot) or ... into the requested pathname of an HTTP GET request. | |||||
| CVE-2000-0243 | 1 Analogx | 1 Simpleserver Www | 2024-02-04 | 5.0 MEDIUM | N/A |
| AnalogX SimpleServer:WWW HTTP server 1.03 allows remote attackers to cause a denial of service via a short GET request to cgi-bin. | |||||
| CVE-2004-2005 | 1 Qualcomm | 1 Eudora | 2024-02-04 | 5.1 MEDIUM | N/A |
| Buffer overflow in Eudora for Windows 5.2.1, 6.0.3, and 6.1 allows remote attackers to execute arbitrary code via an e-mail with (1) a link to a long URL to the C drive or (2) a long attachment name. | |||||
| CVE-2004-0490 | 1 Cpanel | 1 Cpanel | 2024-02-04 | 7.2 HIGH | N/A |
| cPanel, when compiling Apache 1.3.29 and PHP with the mod_phpsuexec option, does not set the --enable-discard-path option, which causes php to use the SCRIPT_FILENAME variable to find and execute a script instead of the PATH_TRANSLATED variable, which allows local users to execute arbitrary PHP code as other users via a URL that references the attacker's script after the user's script, which executes the attacker's script with the user's privileges, a different vulnerability than CVE-2004-0529. | |||||
| CVE-2000-0327 | 1 Microsoft | 1 Virtual Machine | 2024-02-04 | 7.6 HIGH | N/A |
| Microsoft Virtual Machine (VM) allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, aka the "Virtual Machine Verifier" vulnerability. | |||||
| CVE-2000-0578 | 1 Sgi | 1 Mipspro Compilers | 2024-02-04 | 3.7 LOW | N/A |
| SGI MIPSPro compilers C, C++, F77 and F90 generate temporary files in /tmp with predictable file names, which could allow local users to insert malicious contents into these files as they are being compiled by another user. | |||||
| CVE-2001-0462 | 1 Spencer Christensen | 1 Perl Web Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in Perl web server 0.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the URL. | |||||
| CVE-2002-0533 | 1 Phpbb Group | 1 Phpbb | 2024-02-04 | 5.0 MEDIUM | N/A |
| phpBB 1.4.4 and earlier with BBcode allows remote attackers to cause a denial of service (CPU consumption) and corrupt the database via null \0 characters within [code] tags. | |||||
| CVE-2003-1435 | 1 Francisco Burzi | 1 Php-nuke | 2024-02-04 | 7.5 HIGH | N/A |
| SQL injection vulnerability in PHP-Nuke 5.6 and 6.0 allows remote attackers to execute arbitrary SQL commands via the days parameter to the search module. | |||||
| CVE-1999-0028 | 1 Sgi | 1 Irix | 2024-02-04 | 7.2 HIGH | N/A |
| root privileges via buffer overflow in login/scheme command on SGI IRIX systems. | |||||
| CVE-1999-1205 | 1 Hp | 1 Hp-ux | 2024-02-04 | 2.1 LOW | N/A |
| nettune in HP-UX 10.01 and 10.00 is installed setuid root, which allows local users to cause a denial of service by modifying critical networking configuration information. | |||||
| CVE-2000-0135 | 1 Atretail | 1 Atretail | 2024-02-04 | 7.5 HIGH | N/A |
| The @Retail shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | |||||
| CVE-1999-0442 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 2.1 LOW | N/A |
| Solaris ff.core allows local users to modify files. | |||||
| CVE-2001-1540 | 1 David F. Mischler | 1 Iproute | 2024-02-04 | 5.0 MEDIUM | N/A |
| IPRoute 0.973, 0.974 and 1.18 allows remote attackers to cause a denial of service via fragmented IP packets that split the TCP header. | |||||