Total
12003 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-2372 | 1 Ibm | 2 Infoprint, Infoprint 21 | 2023-12-10 | 5.0 MEDIUM | N/A |
The telnet server in Infoprint 21 running controller software before 1.056007 allows remote attackers to cause a denial of service (crash) via a long username, possibly due to a buffer overflow. | |||||
CVE-2002-2366 | 1 Cerulean Studios | 1 Trillian | 2023-12-10 | 6.8 MEDIUM | N/A |
Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors file name in trillian.xml. | |||||
CVE-2003-1337 | 1 Aprelium Technologies | 1 Abyss Web Server | 2023-12-10 | 7.5 HIGH | N/A |
Heap-based buffer overflow in Aprelium Abyss Web Server 1.1.2 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request. | |||||
CVE-2003-0222 | 1 Oracle | 3 Database Server, Oracle8i, Oracle9i | 2023-12-10 | 9.0 HIGH | N/A |
Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and earlier allows attackers to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter. | |||||
CVE-2003-0662 | 1 Microsoft | 1 Windows 2000 | 2023-12-10 | 9.3 HIGH | N/A |
Buffer overflow in Troubleshooter ActiveX Control (Tshoot.ocx) in Microsoft Windows 2000 SP4 and earlier allows remote attackers to execute arbitrary code via an HTML document with a long argument to the RunQuery2 method. | |||||
CVE-2003-0096 | 1 Oracle | 3 Database Server, Oracle8i, Oracle9i | 2023-12-10 | 9.0 HIGH | N/A |
Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY parameter to the BFILENAME function. | |||||
CVE-2002-2226 | 1 Tftpd32 | 1 Tftpd32 | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in tftpd of TFTP32 2.21 and earlier allows remote attackers to execute arbitrary code via a long filename argument. | |||||
CVE-2004-1371 | 1 Oracle | 10 Application Server, Collaboration Suite, Database Server and 7 more | 2023-12-10 | 9.0 HIGH | N/A |
Stack-based buffer overflow in Oracle 9i and 10g allows remote attackers to execute arbitrary code via a long token in the text of a wrapped procedure. | |||||
CVE-2002-2251 | 1 Marcos Luiz Onisto | 1 Lib Cgi | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in the changevalue function in libcgi.h for Marcos Luiz Onisto Lib CGI 0.1 allows remote attackers to execute arbitrary code via a long argument. | |||||
CVE-2002-2396 | 1 Remi Lefebvre | 1 Advanced Tftp | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in Advanced TFTP (atftp) 0.5 and 0.6, if installed setuid or setgid, may allow local users to execute arbitrary code via a long argument to the -g option. | |||||
CVE-2003-1407 | 1 Microsoft | 1 Windows Nt | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in cmd.exe in Windows NT 4.0 may allow local users to execute arbitrary code via a long pathname argument to the cd command. | |||||
CVE-2002-0053 | 1 Microsoft | 6 Windows 2000, Windows 95, Windows 98 and 3 more | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be split or merged with other candidates. This and other PROTOS-related candidates, especially CVE-2002-0012 and CVE-2002-0013, will be updated when more accurate information is available. | |||||
CVE-2001-1456 | 4 Mcafee, Network Associates, Pgp and 1 more | 5 Webshield Smtp, Gauntlet Firewall, Mcafee E-ppliance and 2 more | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message. | |||||
CVE-2002-2390 | 1 Cerulean Studios | 2 Trillian, Trillian Pro | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long request. | |||||
CVE-2002-1365 | 1 Fetchmail | 1 Fetchmail | 2023-12-10 | 7.5 HIGH | N/A |
Heap-based buffer overflow in Fetchmail 6.1.3 and earlier does not account for the "@" character when determining buffer lengths for local addresses, which allows remote attackers to execute arbitrary code via a header with a large number of local addresses. | |||||
CVE-2002-0070 | 1 Microsoft | 4 Windows 2000, Windows 98, Windows 98se and 1 more | 2023-12-10 | 7.6 HIGH | N/A |
Buffer overflow in Windows Shell (used as the Windows Desktop) allows local and possibly remote attackers to execute arbitrary code via a custom URL handler that has not been removed for an application that has been improperly uninstalled. | |||||
CVE-2003-1368 | 1 Electrasoft | 1 Ftp Client | 2023-12-10 | 6.4 MEDIUM | N/A |
Buffer overflow in the 32bit FTP client 9.49.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP server banner. | |||||
CVE-2002-2257 | 1 Tuxbr | 1 Libcgi | 2023-12-10 | 10.0 HIGH | N/A |
Stack-based buffer overflow in the parse_field function in cgi_lib.c for LIBCGI 1.0.2 and 1.0.3 allows remote attackers to execute arbitrary code via a long argument. | |||||
CVE-2002-2258 | 1 Mobydisk | 1 Netsuite | 2023-12-10 | 5.0 MEDIUM | N/A |
Moby NetSuite allows remote attackers to cause a denial of service (crash) via an HTTP POST request with a (1) large integer or (2) non-numeric value in the Content-Length header, which causes an access violation after a failed atoi function call. | |||||
CVE-2003-1336 | 1 Mirc | 1 Mirc | 2023-12-10 | 9.3 HIGH | N/A |
Buffer overflow in mIRC before 6.11 allows remote attackers to execute arbitrary code via a long irc:// URL. |