Total
258813 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0027 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Sun Kodak Color Management System (KCMS) library service daemon (kcms_server) allows remote attackers to read arbitrary files via the KCS_OPEN_PROFILE procedure. | |||||
CVE-2001-0556 | 1 Nedit | 1 Nedit | 2024-02-04 | 7.2 HIGH | N/A |
The Nirvana Editor (NEdit) 5.1.1 and earlier allows a local attacker to overwrite other users' files via a symlink attack on (1) backup files or (2) temporary files used when nedit prints a file or portions of a file. | |||||
CVE-2001-0923 | 1 Redhat | 1 Redhat Package Manager | 2024-02-04 | 7.2 HIGH | N/A |
RPM Package Manager 4.0.x through 4.0.2.x allows an attacker to execute arbitrary code via corrupted data in the RPM file when the file is queried. | |||||
CVE-2004-0846 | 1 Microsoft | 2 Excel, Office | 2024-02-04 | 7.5 HIGH | N/A |
Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via a malicious file containing certain parameters that are not properly validated. | |||||
CVE-2001-0480 | 1 Alex Linde | 1 Alexs Ftp Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Alex's FTP Server 0.7 allows remote attackers to read arbitrary files via a ... (modified dot dot) in the (1) GET or (2) CD commands. | |||||
CVE-2002-0937 | 1 Macromedia | 1 Jrun | 2024-02-04 | 5.0 MEDIUM | N/A |
The Java Server Pages (JSP) engine in JRun allows web page owners to cause a denial of service (engine crash) on the web server via a JSP page that calls WPrinterJob().pageSetup(null,null). | |||||
CVE-2004-0297 | 1 Ipswitch | 1 Imail | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in the Lightweight Directory Access Protocol (LDAP) daemon (iLDAP.exe 3.9.15.10) in Ipswitch IMail Server 8.03 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via an LDAP message with a large tag length. | |||||
CVE-2002-0173 | 1 Sgi | 1 Irix | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in cpr for the eoe.sw.cpr SGI Checkpoint-Restart Software package on SGI IRIX 6.5.10 and earlier may allow local users to gain root privileges. | |||||
CVE-2004-2068 | 1 Leafnode | 1 Leafnode | 2024-02-04 | 5.0 MEDIUM | N/A |
fetchnews in leafnode 1.9.47 and earlier allows remote attackers to cause a denial of service (process hang) via an empty NNTP news article with missing mandatory headers. | |||||
CVE-2003-0225 | 1 Microsoft | 2 Internet Information Server, Internet Information Services | 2024-02-04 | 5.0 MEDIUM | N/A |
The ASP function Response.AddHeader in Microsoft Internet Information Server (IIS) 4.0 and 5.0 does not limit memory requests when constructing headers, which allow remote attackers to generate a large header to cause a denial of service (memory consumption) with an ASP page. | |||||
CVE-2004-1795 | 1 Info Touch | 1 Surfnet | 2024-02-04 | 2.1 LOW | N/A |
Info Touch Surfnet kiosk allows local users to access the underlying filesystem via a 'file://' URI. | |||||
CVE-2002-1339 | 1 Microsoft | 1 Office Web Components | 2024-02-04 | 5.0 MEDIUM | N/A |
The "XMLURL" property in the Spreadsheet component of Office Web Components (OWC) 10 follows redirections, which allows remote attackers to determine the existence of local files based on exceptions, or to read WorkSheet XML files. | |||||
CVE-2002-0897 | 1 Intranet-server | 1 Localweb2000 | 2024-02-04 | 7.5 HIGH | N/A |
LocalWEB2000 2.1.0 web server allows remote attackers to bypass access restrictions for restricted files via a URL that contains the "/./" directory. | |||||
CVE-2001-0099 | 1 Brian Stanback | 1 Bsguest.cgi | 2024-02-04 | 10.0 HIGH | N/A |
bsguest.cgi guestbook script allows remote attackers to execute arbitrary commands via shell metacharacters in the email address. | |||||
CVE-1999-0902 | 1 Linux-nis | 1 Ypserv | 2024-02-04 | 7.2 HIGH | N/A |
ypserv allows local administrators to modify password tables. | |||||
CVE-2003-0864 | 1 Ircnet | 1 Ircnet Ircd | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in m_join in channel.c for IRCnet IRCD 2.10.x to 2.10.3p3 allows remote attackers to cause a denial of service. | |||||
CVE-1999-0959 | 1 Sgi | 1 Irix | 2024-02-04 | 7.2 HIGH | N/A |
IRIX startmidi program allows local users to modify arbitrary files via a symlink attack. | |||||
CVE-2001-0245 | 1 Microsoft | 2 Index Server, Indexing Service | 2024-02-04 | 5.0 MEDIUM | N/A |
Microsoft Index Server 2.0 in Windows NT 4.0, and Indexing Service in Windows 2000, allows remote attackers to read server-side include files via a malformed search request, aka a new variant of the "Malformed Hit-Highlighting" vulnerability. | |||||
CVE-2001-0239 | 1 Microsoft | 1 Isa Server | 2024-02-04 | 7.5 HIGH | N/A |
Microsoft Internet Security and Acceleration (ISA) Server 2000 Web Proxy allows remote attackers to cause a denial of service via a long web request with a specific type. | |||||
CVE-1999-1297 | 1 Sun | 1 Sunos | 2024-02-04 | 2.1 LOW | N/A |
cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key. |