Total
90913 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0532 | 1 Freebsd | 1 Freebsd | 2023-12-10 | 7.5 HIGH | N/A |
A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered. | |||||
CVE-2003-1183 | 1 Oracle | 1 Oracle Files | 2023-12-10 | 4.6 MEDIUM | N/A |
The WebCache component in Oracle Files 9.0.3.1.0, 9.0.3.2.0, and 9.0.3.3.0 of Oracle Collaboration Suite Release 1 caches files despite the cacheability rules imposed by Oracle Files, which allows local users to gain access. | |||||
CVE-2002-0328 | 1 Ikonboard.com | 1 Ikonboard | 2023-12-10 | 7.5 HIGH | N/A |
Cross-site scripting vulnerability in Ikonboard 3.0.1 allows remote attackers to execute arbitrary script as other Ikonboard users and steal cookies via Javascript in an IMG tag. | |||||
CVE-2000-0406 | 1 Netscape | 1 Communicator | 2023-12-10 | 2.6 LOW | N/A |
Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the "Acros-Suencksen SSL" vulnerability. | |||||
CVE-1999-0935 | 2023-12-10 | 10.0 HIGH | N/A | ||
classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form. | |||||
CVE-2002-0252 | 1 Apple | 1 Quicktime | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in Apple QuickTime Player 5.01 and 5.02 allows remote web servers to execute arbitrary code via a response containing a long Content-Type MIME header. | |||||
CVE-2004-1601 | 1 Coolphp | 1 Coolphp Web Portal | 2023-12-10 | 7.5 HIGH | N/A |
Directory traversal vulnerability in index.php in CoolPHP 1.0-stable allows remote attackers to access arbitrary files and execute local PHP scripts via a .. (dot dot) in the op parameter. | |||||
CVE-2000-1206 | 1 Apache | 1 Http Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Vulnerability in Apache httpd before 1.3.11, when configured for mass virtual hosting using mod_rewrite, or mod_vhost_alias in Apache 1.3.9, allows remote attackers to retrieve arbitrary files. | |||||
CVE-1999-1175 | 1 Cisco | 1 Ios | 2023-12-10 | 7.5 HIGH | N/A |
Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048. | |||||
CVE-2003-0879 | 2023-12-10 | N/A | N/A | ||
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2003-0518. Reason: This candidate is a reservation duplicate of CVE-2003-0518. Notes: All CVE users should reference CVE-2003-0518 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage | |||||
CVE-2003-0480 | 1 Vmware | 1 Workstation | 2023-12-10 | 3.7 LOW | N/A |
VMware Workstation 4.0 for Linux allows local users to overwrite arbitrary files and gain privileges via "symlink manipulation." | |||||
CVE-1999-0019 | 7 Data General, Ibm, Ncr and 4 more | 10 Dg Ux, Aix, Mp-ras and 7 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Delete or create a file via rpc.statd, due to invalid information. | |||||
CVE-2000-0136 | 1 Mcmurtrey Whitaker And Associates | 1 Cart32 | 2023-12-10 | 7.5 HIGH | N/A |
The Cart32 shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | |||||
CVE-2001-1214 | 1 Marcus S. Xenakis | 1 Unix Manual | 2023-12-10 | 7.5 HIGH | N/A |
manual.php in Marcus S. Xenakis Unix Manual 1.0 allows remote attackers to execute arbitrary code via a URL that contains shell metacharacters. | |||||
CVE-2003-0640 | 1 Bea | 1 Weblogic Server | 2023-12-10 | 10.0 HIGH | N/A |
BEA WebLogic Server and Express, when using NodeManager to start servers, provides Operator users with privileges to overwrite usernames and passwords, which may allow Operators to gain Admin privileges. | |||||
CVE-2004-2147 | 1 Symantec | 1 Norton Antivirus | 2023-12-10 | 5.0 MEDIUM | N/A |
Unknown versions of Symantec Norton AntiVirus and Microsoft Outlook allow attackers to cause a denial of service (crash) via malformed e-mail messages (1) without a body or (2) without a carriage return ("\n") separating the headers from the body. | |||||
CVE-1999-0395 | 1 Backweb Technologies | 1 Backweb Polite Agent Protocol | 2023-12-10 | 5.1 MEDIUM | N/A |
A race condition in the BackWeb Polite Agent Protocol allows an attacker to spoof a BackWeb server. | |||||
CVE-1999-0136 | 1 Sun | 1 Sunos | 2023-12-10 | 7.2 HIGH | N/A |
Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access. | |||||
CVE-2002-0741 | 1 Psychoid | 1 Psybnc | 2023-12-10 | 5.0 MEDIUM | N/A |
psyBNC 2.3 allows remote attackers to cause a denial of service (CPU consumption and resource exhaustion) by sending a PASS command with a long password argument and quickly killing the connection, which is not properly terminated by psyBNC. | |||||
CVE-2001-0976 | 1 Hp | 1 Process Resource Manager | 2023-12-10 | 7.2 HIGH | N/A |
Vulnerability in HP Process Resource Manager (PRM) C.01.08.2 and earlier, as used by HP-UX Workload Manager (WLM), allows local users to gain root privileges via modified libraries or environment variables. |