Vulnerabilities (CVE)

Total 258813 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-0027 1 Sun 2 Solaris, Sunos 2024-02-04 5.0 MEDIUM N/A
Directory traversal vulnerability in Sun Kodak Color Management System (KCMS) library service daemon (kcms_server) allows remote attackers to read arbitrary files via the KCS_OPEN_PROFILE procedure.
CVE-2001-0556 1 Nedit 1 Nedit 2024-02-04 7.2 HIGH N/A
The Nirvana Editor (NEdit) 5.1.1 and earlier allows a local attacker to overwrite other users' files via a symlink attack on (1) backup files or (2) temporary files used when nedit prints a file or portions of a file.
CVE-2001-0923 1 Redhat 1 Redhat Package Manager 2024-02-04 7.2 HIGH N/A
RPM Package Manager 4.0.x through 4.0.2.x allows an attacker to execute arbitrary code via corrupted data in the RPM file when the file is queried.
CVE-2004-0846 1 Microsoft 2 Excel, Office 2024-02-04 7.5 HIGH N/A
Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via a malicious file containing certain parameters that are not properly validated.
CVE-2001-0480 1 Alex Linde 1 Alexs Ftp Server 2024-02-04 5.0 MEDIUM N/A
Directory traversal vulnerability in Alex's FTP Server 0.7 allows remote attackers to read arbitrary files via a ... (modified dot dot) in the (1) GET or (2) CD commands.
CVE-2002-0937 1 Macromedia 1 Jrun 2024-02-04 5.0 MEDIUM N/A
The Java Server Pages (JSP) engine in JRun allows web page owners to cause a denial of service (engine crash) on the web server via a JSP page that calls WPrinterJob().pageSetup(null,null).
CVE-2004-0297 1 Ipswitch 1 Imail 2024-02-04 10.0 HIGH N/A
Buffer overflow in the Lightweight Directory Access Protocol (LDAP) daemon (iLDAP.exe 3.9.15.10) in Ipswitch IMail Server 8.03 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via an LDAP message with a large tag length.
CVE-2002-0173 1 Sgi 1 Irix 2024-02-04 7.2 HIGH N/A
Buffer overflow in cpr for the eoe.sw.cpr SGI Checkpoint-Restart Software package on SGI IRIX 6.5.10 and earlier may allow local users to gain root privileges.
CVE-2004-2068 1 Leafnode 1 Leafnode 2024-02-04 5.0 MEDIUM N/A
fetchnews in leafnode 1.9.47 and earlier allows remote attackers to cause a denial of service (process hang) via an empty NNTP news article with missing mandatory headers.
CVE-2003-0225 1 Microsoft 2 Internet Information Server, Internet Information Services 2024-02-04 5.0 MEDIUM N/A
The ASP function Response.AddHeader in Microsoft Internet Information Server (IIS) 4.0 and 5.0 does not limit memory requests when constructing headers, which allow remote attackers to generate a large header to cause a denial of service (memory consumption) with an ASP page.
CVE-2004-1795 1 Info Touch 1 Surfnet 2024-02-04 2.1 LOW N/A
Info Touch Surfnet kiosk allows local users to access the underlying filesystem via a 'file://' URI.
CVE-2002-1339 1 Microsoft 1 Office Web Components 2024-02-04 5.0 MEDIUM N/A
The "XMLURL" property in the Spreadsheet component of Office Web Components (OWC) 10 follows redirections, which allows remote attackers to determine the existence of local files based on exceptions, or to read WorkSheet XML files.
CVE-2002-0897 1 Intranet-server 1 Localweb2000 2024-02-04 7.5 HIGH N/A
LocalWEB2000 2.1.0 web server allows remote attackers to bypass access restrictions for restricted files via a URL that contains the "/./" directory.
CVE-2001-0099 1 Brian Stanback 1 Bsguest.cgi 2024-02-04 10.0 HIGH N/A
bsguest.cgi guestbook script allows remote attackers to execute arbitrary commands via shell metacharacters in the email address.
CVE-1999-0902 1 Linux-nis 1 Ypserv 2024-02-04 7.2 HIGH N/A
ypserv allows local administrators to modify password tables.
CVE-2003-0864 1 Ircnet 1 Ircnet Ircd 2024-02-04 5.0 MEDIUM N/A
Buffer overflow in m_join in channel.c for IRCnet IRCD 2.10.x to 2.10.3p3 allows remote attackers to cause a denial of service.
CVE-1999-0959 1 Sgi 1 Irix 2024-02-04 7.2 HIGH N/A
IRIX startmidi program allows local users to modify arbitrary files via a symlink attack.
CVE-2001-0245 1 Microsoft 2 Index Server, Indexing Service 2024-02-04 5.0 MEDIUM N/A
Microsoft Index Server 2.0 in Windows NT 4.0, and Indexing Service in Windows 2000, allows remote attackers to read server-side include files via a malformed search request, aka a new variant of the "Malformed Hit-Highlighting" vulnerability.
CVE-2001-0239 1 Microsoft 1 Isa Server 2024-02-04 7.5 HIGH N/A
Microsoft Internet Security and Acceleration (ISA) Server 2000 Web Proxy allows remote attackers to cause a denial of service via a long web request with a specific type.
CVE-1999-1297 1 Sun 1 Sunos 2024-02-04 2.1 LOW N/A
cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key.