Total
91551 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0398 | 1 Rockliffe | 1 Mailsite | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long query_string parameter in the HTTP GET request. | |||||
CVE-2000-0866 | 1 Borland Software | 1 Interbase Superserver | 2023-12-10 | 2.1 LOW | N/A |
Interbase 6 SuperServer for Linux allows an attacker to cause a denial of service via a query containing 0 bytes. | |||||
CVE-2003-0555 | 1 Imagemagick | 1 Imagemagick | 2023-12-10 | 7.5 HIGH | N/A |
ImageMagick 5.4.3.x and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a "%x" filename, possibly triggering a format string vulnerability. | |||||
CVE-2001-1316 | 1 Teamware | 1 Teamware Office | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflows in Teamware Office Enterprise Directory allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite. | |||||
CVE-2002-1815 | 1 Aquonics Scripting | 1 Aquonics File Manager | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in source.php and source.cgi in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the URL. | |||||
CVE-2002-0871 | 1 Xinetd | 1 Xinetd | 2023-12-10 | 2.1 LOW | N/A |
xinetd 2.3.4 leaks file descriptors for the signal pipe to services that are launched by xinetd, which could allow those services to cause a denial of service via the pipe. | |||||
CVE-2002-2157 | 2023-12-10 | N/A | N/A | ||
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-1660. Reason: This candidate is a duplicate of CVE-2002-1660. Notes: All CVE users should reference CVE-2002-1660 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage | |||||
CVE-2004-0445 | 1 Symantec | 5 Client Firewall, Client Security, Norton Antispam and 2 more | 2023-12-10 | 2.6 LOW | N/A |
The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself. | |||||
CVE-2003-0647 | 1 Cisco | 1 Ios | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in the HTTP server for Cisco IOS 12.2 and earlier allows remote attackers to execute arbitrary code via an extremely long (2GB) HTTP GET request. | |||||
CVE-1999-1188 | 1 Oracle | 1 Mysql | 2023-12-10 | 4.6 MEDIUM | N/A |
mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database. | |||||
CVE-1999-1371 | 1 Sun | 1 Sunos | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument. | |||||
CVE-2001-0610 | 2 Kde, Suse | 2 Kde, Suse Linux | 2023-12-10 | 4.6 MEDIUM | N/A |
kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp. | |||||
CVE-2001-0386 | 1 Analogx | 1 Simpleserver Www | 2023-12-10 | 5.0 MEDIUM | N/A |
AnalogX SimpleServer:WWW 1.08 allows remote attackers to cause a denial of service via an HTTP request to the /aux directory. | |||||
CVE-2004-1439 | 1 Sapporoworks | 1 Black Jumbodog | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in BlackJumboDog 3.x allows remote attackers to execute arbitrary code via long FTP commands such as (1) USER, (2) PASS, (3) RETR,(4) CWD, (5) XMKD, and (6) XRMD. | |||||
CVE-2004-0793 | 1 Debian | 1 Bsdmainutils | 2023-12-10 | 7.2 HIGH | N/A |
The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop root privileges when executed with the -a flag, which allows attackers to execute arbitrary commands via a calendar event file. | |||||
CVE-2001-1222 | 1 Plesk | 1 Plesk Server Administrator | 2023-12-10 | 5.0 MEDIUM | N/A |
Plesk Server Administrator (PSA) 1.0 allows remote attackers to obtain PHP source code via an HTTP request containing the target's IP address and a valid account name for the domain. | |||||
CVE-2001-1548 | 1 Zonelabs | 1 Zonealarm | 2023-12-10 | 2.1 LOW | N/A |
ZoneAlarm 2.1 through 2.6 and ZoneAlarm Pro 2.4 and 2.6 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters. | |||||
CVE-1999-1489 | 1 Slackware | 1 Slackware Linux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument. | |||||
CVE-2004-0542 | 1 Php | 1 Php | 2023-12-10 | 10.0 HIGH | N/A |
PHP before 4.3.7 on Win32 platforms does not properly filter all shell metacharacters, which allows local or remote attackers to execute arbitrary code, overwrite files, and access internal environment variables via (1) the "%", "|", or ">" characters to the escapeshellcmd function, or (2) the "%" character to the escapeshellarg function. | |||||
CVE-2001-0853 | 1 Entrust | 1 Getaccess | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Entrust GetAccess allows remote attackers to read arbitrary files via a .. (dot dot) in the locale parameter to (1) helpwin.gas.bat or (2) AboutBox.gas.bat. |