Total
260589 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-1424 | 1 Alcatel | 1 Speed Touch Home | 2024-02-04 | 7.5 HIGH | N/A |
Alcatel Speed Touch ADSL modem running firmware KHDSAA.108, KHDSAA.132, KHDSBA.133, and KHDSAA.134 has a blank default password, which allows remote attackers to gain unauthorized access. | |||||
CVE-2002-0599 | 1 Blahz-dns | 1 Blahz-dns | 2024-02-04 | 10.0 HIGH | N/A |
Blahz-DNS 0.2 and earlier allows remote attackers to bypass authentication and modify configuration by directly requesting CGI programs such as dostuff.php instead of going through the login screen. | |||||
CVE-2003-1420 | 1 Opera | 1 Opera Browser | 2024-02-04 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in Opera 6.0 through 7.0 with automatic redirection disabled allows remote attackers to inject arbitrary web script or HTML via the HTTP Location header. | |||||
CVE-2002-0052 | 1 Microsoft | 1 Internet Explorer | 2024-02-04 | 5.0 MEDIUM | N/A |
Internet Explorer 6.0 and earlier does not properly handle VBScript in certain domain security checks, which allows remote attackers to read arbitrary files. | |||||
CVE-2003-1147 | 2024-02-04 | N/A | N/A | ||
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2003-0955. Reason: This candidate is a duplicate of CVE-2003-0955. Notes: All CVE users should reference CVE-2003-0955 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
CVE-2002-1926 | 1 Aquonics Scripting | 1 Aquonics File Manager | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in source.php in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP query string. | |||||
CVE-2002-0312 | 1 Essen | 1 Essentia Web Server | 2024-02-04 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Essentia Web Server 2.1 allows remote attackers to read arbitrary files via a .. (dot dot) in a URL. | |||||
CVE-2002-1011 | 1 Ibm | 1 Tivoli Management Framework | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in web server for Tivoli Management Framework (TMF) Endpoint 3.6.x through 3.7.1, before Fixpack 2, allows remote attackers to cause a denial of service or execute arbitrary code via a long HTTP GET request. | |||||
CVE-2001-0061 | 1 Freebsd | 1 Freebsd | 2024-02-04 | 7.2 HIGH | N/A |
procfs in FreeBSD and possibly other operating systems does not properly restrict access to per-process mem and ctl files, which allows local users to gain root privileges by forking a child process and executing a privileged process from the child, while the parent retains access to the child's address space. | |||||
CVE-1999-0422 | 1 Netbsd | 1 Netbsd | 2024-02-04 | 4.6 MEDIUM | N/A |
In some cases, NetBSD 1.3.3 mount allows local users to execute programs in some file systems that have the "noexec" flag set. | |||||
CVE-2002-2368 | 1 Nec | 1 Socks 5 | 2024-02-04 | 10.0 HIGH | N/A |
Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function in proxy.c for the SOCKS5 module or (2) the HandleS4Connection function in proxy.c for the SOCKS4 module. | |||||
CVE-2000-0154 | 1 Sco | 1 Unixware | 2024-02-04 | 1.2 LOW | N/A |
The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack. | |||||
CVE-2001-0482 | 1 Argus Systems | 1 Pitbull Lx | 2024-02-04 | 7.2 HIGH | N/A |
Configuration error in Argus PitBull LX allows root users to bypass specified access control restrictions and cause a denial of service or execute arbitrary commands by modifying kernel variables such as MaxFiles, MaxInodes, and ModProbePath in /proc/sys via calls to sysctl. | |||||
CVE-1999-0214 | 1 Sun | 1 Sunos | 2024-02-04 | 10.0 HIGH | N/A |
Denial of service by sending forged ICMP unreachable packets. | |||||
CVE-2002-0476 | 1 Macromedia | 1 Flash Player | 2024-02-04 | 5.0 MEDIUM | N/A |
Standalone Macromedia Flash Player 5.0 allows remote attackers to save arbitrary files and programs via a .SWF file containing the undocumented "save" FSCommand. | |||||
CVE-2002-0663 | 1 Symantec | 2 Norton Internet Security, Norton Personal Firewall | 2024-02-04 | 7.5 HIGH | N/A |
Buffer overflow in HTTP Proxy for Symantec Norton Personal Internet Firewall 3.0.4.91 and Norton Internet Security 2001 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large outgoing HTTP request. | |||||
CVE-2000-0827 | 1 Mobius | 1 Documentdirect For The Internet | 2024-02-04 | 10.0 HIGH | N/A |
Buffer overflow in the web authorization form of Mobius DocumentDirect for the Internet 1.2 allows remote attackers to cause a denial of service or execute arbitrary commands via a long username. | |||||
CVE-2003-1484 | 1 Microsoft | 1 Ie | 2024-02-04 | 4.3 MEDIUM | N/A |
Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service (crash) by creating a DHTML link that uses the AnchorClick "A" object with a blank href attribute. | |||||
CVE-2001-0448 | 1 Software602 | 1 602pro Lan Suite | 2024-02-04 | 5.0 MEDIUM | N/A |
Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service via an HTTP GET HTTP request to the aux directory, and possibly other directories with legacy DOS device names. | |||||
CVE-2000-0492 | 1 Passwd | 1 Passwd | 2024-02-04 | 5.0 MEDIUM | N/A |
PassWD 1.2 uses weak encryption (trivial encoding) to store passwords, which allows an attacker who can read the password file to easliy decrypt the passwords. |