Total
28647 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-1165 | 1 Brs | 1 Webweaver | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header. | |||||
CVE-1999-0128 | 5 Digital, Ibm, Linux and 2 more | 9 Osf 1, Aix, Sng and 6 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. | |||||
CVE-2004-0068 | 1 Phpdig.net | 1 Phpdig | 2023-12-10 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in config.php for PhpDig 1.6.5 and earlier allows remote attackers to execute arbitrary PHP code by modifying the $relative_script_path parameter to reference a URL on a remote web server that contains the code. | |||||
CVE-1999-0600 | 2023-12-10 | 10.0 HIGH | N/A | ||
A network intrusion detection system (IDS) does not verify the checksum on a packet. | |||||
CVE-2004-1000 | 1 Debian | 1 Lintian | 2023-12-10 | 2.1 LOW | N/A |
lintian 1.23 and earlier removes the working directory even if it was not created by lintian, which may allow local users to delete arbitrary files or directories via a symlink attack. | |||||
CVE-2002-0340 | 1 Microsoft | 1 Windows Media Player | 2023-12-10 | 7.5 HIGH | N/A |
Windows Media Player (WMP) 8.00.00.4477, and possibly other versions, automatically detects and executes .wmf and other content, even when the file's extension or content type does not specify .wmf, which could make it easier for attackers to conduct unauthorized activities via Trojan horse files containing .wmf content. | |||||
CVE-2000-0175 | 1 Sun | 1 Staroffice | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command. | |||||
CVE-2001-1359 | 1 Caldera | 1 Volution | 2023-12-10 | 10.0 HIGH | N/A |
Volution clients 1.0.7 and earlier attempt to contact the computer creation daemon (CCD) when an LDAP authentication failure occurs, which allows remote attackers to fully control clients via a Trojan horse Volution server. | |||||
CVE-2000-1026 | 1 Lbl | 1 Tcpdump | 2023-12-10 | 10.0 HIGH | N/A |
Multiple buffer overflows in LBNL tcpdump allow remote attackers to execute arbitrary commands. | |||||
CVE-2000-0473 | 1 Analogx | 1 Simpleserver Www | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in AnalogX SimpleServer 1.05 allows a remote attacker to cause a denial of service via a long GET request for a program in the cgi-bin directory. | |||||
CVE-2004-2255 | 1 Phpmyfaq | 1 Phpmyfaq | 2023-12-10 | 6.4 MEDIUM | N/A |
Directory traversal vulnerability in phpMyFAQ 1.3.12 allows remote attackers to read arbitrary files, and possibly execute local PHP files, via the action variable, which is used as part of a template filename. | |||||
CVE-2004-1508 | 1 Webcalendar | 1 Webcalendar | 2023-12-10 | 7.5 HIGH | N/A |
init.php in WebCalendar allows remote attackers to execute arbitrary local PHP scripts via the user_inc parameter. | |||||
CVE-1999-0230 | 1 Cisco | 1 Ios | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in Cisco 7xx routers through the telnet service. | |||||
CVE-1999-1434 | 1 Slackware | 1 Slackware Linux | 2023-12-10 | 7.2 HIGH | N/A |
login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server. | |||||
CVE-2002-1382 | 1 Macromedia | 1 Flash Player | 2023-12-10 | 7.5 HIGH | N/A |
Macromedia Flash Player before 6.0.65.0 allows remote attackers to execute arbitrary code via certain malformed data headers in Shockwave Flash file format (SWF) files, a different issue than CAN-2002-0846. | |||||
CVE-2003-0544 | 1 Openssl | 1 Openssl | 2023-12-10 | 5.0 MEDIUM | N/A |
OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote attackers to cause a denial of service (crash) via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used. | |||||
CVE-1999-0595 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2023-12-10 | 2.1 LOW | N/A |
A Windows NT system does not clear the system page file during shutdown, which might allow sensitive information to be recorded. | |||||
CVE-2001-1363 | 1 Phpwebsite Development Team | 1 Phpwebsite | 2023-12-10 | 10.0 HIGH | N/A |
Vulnerability in phpWebSite before 0.7.9 related to running multiple instances in the same domain, which may allow attackers to gain administrative privileges. | |||||
CVE-2000-0758 | 1 Lyris | 1 List Manager | 2023-12-10 | 4.6 MEDIUM | N/A |
The web interface for Lyris List Manager 3 and 4 allows list subscribers to obtain administrative access by modifying the value of the list_admin hidden form field. | |||||
CVE-2002-1791 | 1 Sgi | 1 Irix | 2023-12-10 | 2.1 LOW | N/A |
SGI IRIX 6.5 through 6.5.17 creates temporary desktop files with world-writable permissions, which allows local users to overwrite or corrupt those files. |