Total
90284 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0344 | 1 Microsoft | 1 Windows Nt | 2023-12-10 | 7.2 HIGH | N/A |
NT users can gain debug-level access on a system process using the Sechole exploit. | |||||
CVE-2004-0640 | 2 Netkit, Ssltelnetd | 2 Linux Netkit, Secure Telnet | 2023-12-10 | 10.0 HIGH | N/A |
Format string vulnerability in the SSL_set_verify function in telnetd.c for SSLtelnet daemon (SSLtelnetd) 0.13 allows remote attackers to execute arbitrary code. | |||||
CVE-2001-1390 | 1 Linux | 1 Linux Kernel | 2023-12-10 | 6.2 MEDIUM | N/A |
Unknown vulnerability in binfmt_misc in the Linux kernel before 2.2.19, related to user pages. | |||||
CVE-2001-1171 | 1 Checkpoint | 1 Firewall-1 | 2023-12-10 | 7.2 HIGH | N/A |
Check Point Firewall-1 3.0b through 4.0 SP1 follows symlinks and creates a world-writable temporary .cpp file when compiling Policy rules, which could allow local users to gain privileges or modify the firewall policy. | |||||
CVE-2000-0722 | 1 Helix Code | 1 Gnome Updater | 2023-12-10 | 6.2 MEDIUM | N/A |
Helix GNOME Updater helix-update 0.5 and earlier allows local users to install arbitrary RPM packages by creating the /tmp/helix-install installation directory before root has begun installing packages. | |||||
CVE-2000-0010 | 1 Tony Greenwood | 1 Webwho\+ | 2023-12-10 | 10.0 HIGH | N/A |
WebWho+ whois.cgi program allows remote attackers to execute commands via shell metacharacters in the TLD parameter. | |||||
CVE-2000-0335 | 2 Gnu, Isc | 2 Glibc, Bind | 2023-12-10 | 7.5 HIGH | N/A |
The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results. | |||||
CVE-1999-0484 | 1 Openbsd | 1 Openbsd | 2023-12-10 | 2.1 LOW | N/A |
Buffer overflow in OpenBSD ping. | |||||
CVE-2001-0261 | 1 Microsoft | 1 Windows 2000 | 2023-12-10 | 2.1 LOW | N/A |
Microsoft Windows 2000 Encrypted File System does not properly destroy backups of files that are encrypted, which allows a local attacker to recover the text of encrypted files. | |||||
CVE-1999-0723 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2023-12-10 | 7.1 HIGH | N/A |
The Windows NT Client Server Runtime Subsystem (CSRSS) can be subjected to a denial of service when all worker threads are waiting for user input. | |||||
CVE-2002-1674 | 1 Freebsd | 1 Freebsd | 2023-12-10 | 1.2 LOW | N/A |
procfs on FreeBSD before 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to. | |||||
CVE-2004-1594 | 1 E-zone Media Inc. | 1 Fusetalk | 2023-12-10 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in FuseTalk 4.0 allows remote attackers to execute arbitrary web script via an img src tag. | |||||
CVE-2001-1504 | 1 Ibm | 1 Lotus Notes | 2023-12-10 | 7.5 HIGH | N/A |
Lotus Notes R5 Client 4.6 allows remote attackers to execute arbitrary commands via a Lotus Notes object with code in an event, which is automatically executed when the user processes the e-mail message. | |||||
CVE-2003-1430 | 3 Epic Games, Linux, Microsoft | 3 Unreal Engine, Linux Kernel, All Windows | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Unreal Tournament Server 436 and earlier allows remote attackers to access known files via a ".." (dot dot) in an unreal:// URL. | |||||
CVE-2004-0840 | 1 Microsoft | 3 Exchange Server, Windows Server 2003, Windows Xp | 2023-12-10 | 10.0 HIGH | N/A |
The SMTP (Simple Mail Transfer Protocol) component of Microsoft Windows XP 64-bit Edition, Windows Server 2003, Windows Server 2003 64-bit Edition, and the Exchange Routing Engine component of Exchange Server 2003, allows remote attackers to execute arbitrary code via a malicious DNS response message containing length values that are not properly validated. | |||||
CVE-2001-0650 | 1 Cisco | 1 Ios | 2023-12-10 | 5.0 MEDIUM | N/A |
Cisco devices IOS 12.0 and earlier allow a remote attacker to cause a crash, or bad route updates, via malformed BGP updates with unrecognized transitive attribute. | |||||
CVE-2004-1610 | 2 Best Software, Saleslogix Corporation | 2 Saleslogix, Saleslogix | 2023-12-10 | 7.5 HIGH | N/A |
SalesLogix 6.1 uses client-specified pathnames for writing certain files, which might allow remote authenticated users to create arbitrary files and execute code via the (1) vMME.AttachmentPath or (2) vMME.LibraryPath variables. | |||||
CVE-1999-1479 | 1 Matt Wright | 1 Textcounter | 2023-12-10 | 10.0 HIGH | N/A |
The textcounter.pl by Matt Wright allows remote attackers to execute arbitrary commands via shell metacharacters. | |||||
CVE-2001-0128 | 6 Conectiva, Debian, Freebsd and 3 more | 7 Linux, Debian Linux, Freebsd and 4 more | 2023-12-10 | 7.2 HIGH | N/A |
Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges. | |||||
CVE-2002-1744 | 1 Microsoft | 1 Internet Information Services | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote attackers to view source code and determine the existence of arbitrary files via a hex-encoded "%c0%ae%c0%ae" string, which is the Unicode representation for ".." (dot dot). |