Total
260519 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0894 | 1 Redhat | 1 Linux | 2024-02-04 | 10.0 HIGH | N/A |
Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals. | |||||
CVE-2002-2396 | 1 Remi Lefebvre | 1 Advanced Tftp | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in Advanced TFTP (atftp) 0.5 and 0.6, if installed setuid or setgid, may allow local users to execute arbitrary code via a long argument to the -g option. | |||||
CVE-2001-0283 | 1 Sun | 1 Sun Ftp | 2024-02-04 | 6.4 MEDIUM | N/A |
Directory traversal vulnerability in SunFTP build 9 allows remote attackers to read arbitrary files via .. (dot dot) characters in various commands, including (1) GET, (2) MKDIR, (3) RMDIR, (4) RENAME, or (5) PUT. | |||||
CVE-2002-1614 | 1 Hp | 2 Hp-ux, Tru64 | 2024-02-04 | 7.2 HIGH | N/A |
Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at. | |||||
CVE-2001-0894 | 1 Wietse Venema | 1 Postfix | 2024-02-04 | 5.0 MEDIUM | N/A |
Vulnerability in Postfix SMTP server before 20010228-pl07, when configured to email the postmaster when SMTP errors cause the session to terminate, allows remote attackers to cause a denial of service (memory exhaustion) by generating a large number of SMTP errors, which forces the SMTP session log to grow too large. | |||||
CVE-1999-1004 | 1 Symantec | 1 Norton Antivirus | 2024-02-04 | 5.0 MEDIUM | N/A |
Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command. | |||||
CVE-2004-0129 | 1 Phpmyadmin | 1 Phpmyadmin | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in export.php in phpMyAdmin 2.5.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in the what parameter. | |||||
CVE-2002-2306 | 1 Kazaa | 1 Kazaa Media Desktop | 2024-02-04 | 7.8 HIGH | N/A |
Sharman Networks KaZaA Media Desktop 1.7.1 allows remote attackers to cause a denial of service (CPU consumption) by sending several large messages. | |||||
CVE-1999-1372 | 1 Triactive | 1 Remote Management | 2024-02-04 | 4.6 MEDIUM | N/A |
Triactive Remote Manager with Basic authentication enabled stores the username and password in cleartext in registry keys, which could allow local users to gain privileges. | |||||
CVE-2002-0259 | 1 Instantservers Inc. | 1 Miniportal | 2024-02-04 | 4.6 MEDIUM | N/A |
InstantServers MiniPortal 1.1.5 and earlier stores sensitive login and account data in plaintext in (1) .pwd files in the miniportal/apache directory, or (2) mplog.txt, which could allow local users to gain privileges. | |||||
CVE-1999-1367 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 4.6 MEDIUM | N/A |
Internet Explorer 5.0 does not properly reset the username/password cache for Web sites that do not use standard cache controls, which could allow users on the same system to access restricted web sites that were visited by other users. | |||||
CVE-2001-0057 | 1 Cisco | 2 Broadband Operating System, Cisco 6xx Routers | 2024-02-04 | 5.0 MEDIUM | N/A |
Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attackers to cause a denial of service via a large ICMP echo (ping) packet. | |||||
CVE-1999-1536 | 1 Acushop | 1 Salesbuilder | 2024-02-04 | 7.2 HIGH | N/A |
.sbstart startup script in AcuShop Salesbuilder is world writable, which allows local users to gain privileges by appending commands to the file. | |||||
CVE-2000-0557 | 1 Computalynx | 1 Cmail | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to execute arbitrary commands via a long GET request. | |||||
CVE-2004-1968 | 1 Openbb | 1 Openbb | 2024-02-04 | 5.0 MEDIUM | N/A |
The readmsg action in myhome.php in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote attackers to read arbitrary messages by modifying the id parameter. | |||||
CVE-2003-1090 | 1 Celestial Software | 1 Absolutetelnet | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in AbsoluteTelnet before 2.12 RC10 allows remote attackers to execute arbitrary code via a long window title. | |||||
CVE-2000-0114 | 1 Microsoft | 1 Internet Information Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Frontpage Server Extensions allows remote attackers to determine the name of the anonymous account via an RPC POST request to shtml.dll in the /_vti_bin/ virtual directory. | |||||
CVE-2000-0153 | 1 Microsoft | 2 Frontpage, Personal Web Server | 2024-02-04 | 5.0 MEDIUM | N/A |
FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack. | |||||
CVE-2004-0759 | 1 Mozilla | 1 Mozilla | 2024-02-04 | 6.4 MEDIUM | N/A |
Mozilla before 1.7 allows remote web servers to read arbitrary files via Javascript that sets the value of an <input type="file"> tag. | |||||
CVE-2002-0398 | 1 Red-m | 1 1050ap Lan Acess Point | 2024-02-04 | 10.0 HIGH | N/A |
Red-M 1050 (Bluetooth Access Point) PPP server allows bonded users to cause a denial of service and possibly execute arbitrary code via a long user name. |