Total
91551 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2002-1062 | 1 T. Hauck | 1 Jana Web Server | 2023-12-10 | 7.5 HIGH | N/A |
| Signedness error in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to execute arbitrary code via long (1) Username, (2) Password, or (3) Hostname entries. | |||||
| CVE-2002-0978 | 1 Microsoft | 1 File Transfer Manager | 2023-12-10 | 5.0 MEDIUM | N/A |
| Microsoft File Transfer Manager (FTM) ActiveX control before 4.0 allows remote attackers to upload or download arbitrary files to arbitrary locations via a man-in-the-middle attack with modified TGT and TGN parameters in a call to the "Persist" function. | |||||
| CVE-2002-1866 | 1 Sws | 1 Sws Simple Web Server | 2023-12-10 | 5.0 MEDIUM | N/A |
| Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attackers to cause a denial of service (file descriptor exhaustion) via multiple requests for pages that do not exist. | |||||
| CVE-2003-0929 | 1 Clearswift | 1 Mailsweeper | 2023-12-10 | 7.5 HIGH | N/A |
| Clearswift MAILsweeper before 4.3.15 does not properly detect and filter ZIP 6.0 encoded files, which allows remote attackers to bypass intended policy. | |||||
| CVE-2000-0247 | 1 Gnqs | 1 Gnqs | 2023-12-10 | 7.2 HIGH | N/A |
| Unknown vulnerability in Generic-NQS (GNQS) allows local users to gain root privileges. | |||||
| CVE-1999-1057 | 1 Digital | 1 Vms | 2023-12-10 | 4.6 MEDIUM | N/A |
| VMS 4.0 through 5.3 allows local users to gain privileges via the ANALYZE/PROCESS_DUMP dcl command. | |||||
| CVE-2004-1891 | 1 Sgi | 1 Irix | 2023-12-10 | 5.0 MEDIUM | N/A |
| The ftp_syslog function in ftpd in SGI IRIX 6.5.20 "doesn't work with anonymous FTP," which has an unknown impact, possibly preventing the actions of anonymous users from being logged. | |||||
| CVE-2002-2050 | 1 Modlogan | 1 Modlogan | 2023-12-10 | 2.1 LOW | N/A |
| Directory traversal vulnerability in processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a .. (dot dot) in the hostname of a log entry. | |||||
| CVE-2004-1550 | 1 Motorola | 1 Wr850g | 2023-12-10 | 7.5 HIGH | N/A |
| Motorola Wireless Router WR850G running firmware 4.03 allows remote attackers to bypass authentication, log on as an administrator, and obtain sensitive information by repeatedly making an HTTP request for ver.asp until an administrator logs on. | |||||
| CVE-2003-0492 | 1 Snitz Communications | 1 Snitz Forums 2000 | 2023-12-10 | 6.8 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in search.asp for Snitz Forums 3.4.03 and earlier allows remote attackers to execute arbitrary web script via the Search parameter. | |||||
| CVE-2004-0057 | 1 Lbl | 1 Tcpdump | 2023-12-10 | 5.0 MEDIUM | N/A |
| The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via malformed ISAKMP packets that cause invalid "len" or "loc" values to be used in a loop, a different vulnerability than CVE-2003-0989. | |||||
| CVE-2002-2104 | 1 Ganglia | 1 Php Rrd Web Client | 2023-12-10 | 7.5 HIGH | N/A |
| graph.php in Ganglia PHP RRD Web Client 1.0.2 allows remote attackers to execute arbitrary commands via the command parameter, which is provided to the passthru function. | |||||
| CVE-2001-1328 | 1 Sun | 1 Sunos | 2023-12-10 | 7.5 HIGH | N/A |
| Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code. | |||||
| CVE-2003-1106 | 1 Microsoft | 1 Windows 2000 | 2023-12-10 | 5.0 MEDIUM | N/A |
| The SMTP service in Microsoft Windows 2000 before SP4 allows remote attackers to cause a denial of service (crash or hang) via an e-mail message with a malformed time stamp in the FILETIME attribute. | |||||
| CVE-2000-0395 | 1 Computalynx | 1 Cproxy Server | 2023-12-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in CProxy 3.3 allows remote users to cause a denial of service via a long HTTP request. | |||||
| CVE-2000-1002 | 1 Stalker | 1 Communigate Pro | 2023-12-10 | 5.0 MEDIUM | N/A |
| POP3 daemon in Stalker CommuniGate Pro 3.3.2 generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to determine valid email addresses on the server for SPAM attacks. | |||||
| CVE-2003-1171 | 1 Mod Security | 1 Mod Security | 2023-12-10 | 7.5 HIGH | N/A |
| Heap-based buffer overflow in the sec_filter_out function in mod_security 1.7RC1 through 1.7.1 in Apache 2 allows remote attackers to execute arbitrary code via a server side script that sends a large amount of data. | |||||
| CVE-2002-1997 | 1 Zonelabs | 1 Zonealarm | 2023-12-10 | 7.5 HIGH | N/A |
| ZoneAlarm Pro 3.0 MailSafe allows remote attackers to bypass filtering and possibly execute arbitrary code via email attachments containing a trailing dot after the file extension. | |||||
| CVE-1999-1104 | 1 Microsoft | 1 Windows 95 | 2023-12-10 | 4.6 MEDIUM | N/A |
| Windows 95 uses weak encryption for the password list (.pwl) file used when password caching is enabled, which allows local users to gain privileges by decrypting the passwords. | |||||
| CVE-2002-2065 | 1 Webcalendar | 1 Webcalendar | 2023-12-10 | 5.0 MEDIUM | N/A |
| WebCalendar 0.9.34 and earlier with 'browsing in includes directory' enabled allows remote attackers to read arbitrary include files with .inc extensions from the web root. | |||||