Total
28647 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-1725 | 1 John Bradley | 1 Xv | 2023-12-10 | 7.5 HIGH | N/A |
Stack-based buffer overflow in xvbmp.c in XV allows remote attackers to execute arbitrary code via a crafted image file. | |||||
CVE-2000-0511 | 1 Debian | 1 Debian Linux | 2023-12-10 | 5.0 MEDIUM | N/A |
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a CGI POST request. | |||||
CVE-2002-0506 | 1 Redhat | 1 Linux | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in newt.c of newt windowing library (libnewt) 0.50.33 and earlier may allow attackers to cause a denial of service or execute arbitrary code in setuid programs that use libnewt. | |||||
CVE-2003-1223 | 1 Bea | 1 Weblogic Server | 2023-12-10 | 5.0 MEDIUM | N/A |
The Node Manager for BEA WebLogic Express and Server 6.1 through 8.1 SP 1 allows remote attackers to cause a denial of service (Node Manager crash) via malformed data to the Node Manager's port, as demonstrated by nmap. | |||||
CVE-2002-1411 | 1 Duma | 1 Photo Gallery System | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in update.dpgs in Duma Photo Gallery System (DPGS) 0.99.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the id parameter. | |||||
CVE-2004-0639 | 3 Open Webmail, Sgi, Squirrelmail | 3 Open Webmail, Propack, Squirrelmail | 2023-12-10 | 6.8 MEDIUM | N/A |
Multiple cross-site scripting (XSS) vulnerabilities in Squirrelmail 1.2.10 and earlier allow remote attackers to inject arbitrary HTML or script via (1) the $mailer variable in read_body.php, (2) the $senderNames_part variable in mailbox_display.php, and possibly other vectors including (3) the $event_title variable or (4) the $event_text variable. | |||||
CVE-1999-0030 | 1 Sgi | 1 Irix | 2023-12-10 | 7.2 HIGH | N/A |
root privileges via buffer overflow in xlock command on SGI IRIX systems. | |||||
CVE-2004-0452 | 1 Larry Wall | 1 Perl | 2023-12-10 | 2.6 LOW | N/A |
Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read files and directories, via a symlink attack. | |||||
CVE-2002-1822 | 1 Ibm | 1 Http Server | 2023-12-10 | 5.0 MEDIUM | N/A |
IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP). | |||||
CVE-2000-0533 | 1 Sgi | 1 Workshop Debugger And Performance Tools | 2023-12-10 | 7.2 HIGH | N/A |
Vulnerability in cvconnect in SGI IRIX WorkShop allows local users to overwrite arbitrary files. | |||||
CVE-2001-1239 | 1 Connect Inc. | 1 Powernet Ix | 2023-12-10 | 5.0 MEDIUM | N/A |
PowerNet IX allows remote attackers to cause a denial of service via a port scan. | |||||
CVE-2002-0090 | 1 Sun | 1 Solaris | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in Low BandWidth X proxy (lbxproxy) in Solaris 8 allows local users to execute arbitrary code via a long display command line option. | |||||
CVE-2004-1104 | 1 Microsoft | 1 Ie | 2023-12-10 | 7.5 HIGH | N/A |
Microsoft Internet Explorer 6.0 SP2 allows remote attackers to spoof a legitimate URL in the status bar and conduct a phishing attack via a web page that contains a BASE element that points to the legitimate site, followed by an anchor (a) element with an empty "href" attribute, and a FORM whose action points to a malicious URL, and an INPUT submit element that is modified to look like a legitimate URL. | |||||
CVE-2002-0387 | 1 Sun | 1 One Application Server | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in gxnsapi6.dll NSAPI plugin of the Connector Module for Sun ONE Application Server before 6.5 allows remote attackers to execute arbitrary code via a long HTTP request URL. | |||||
CVE-2003-0680 | 1 Sgi | 1 Irix | 2023-12-10 | 7.5 HIGH | N/A |
Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions. | |||||
CVE-2004-1541 | 1 Van Dyke Technologies | 1 Securecrt | 2023-12-10 | 7.5 HIGH | N/A |
SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share. | |||||
CVE-2000-0614 | 1 Suse | 1 Suse Linux | 2023-12-10 | 10.0 HIGH | N/A |
Tnef program in Linux systems allows remote attackers to overwrite arbitrary files via TNEF encoded compressed attachments which specify absolute path names for the decompressed output. | |||||
CVE-2002-0148 | 1 Microsoft | 2 Internet Information Server, Internet Information Services | 2023-12-10 | 7.5 HIGH | N/A |
Cross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other users via an HTTP error page. | |||||
CVE-2001-0845 | 1 Dec | 4 Dec Openvms, Dec Openvms Alpha, Sevms and 1 more | 2023-12-10 | 4.6 MEDIUM | N/A |
Vulnerability in DECwindows Motif Server on OpenVMS VAX or Alpha 6.2 through 7.3, and SEVMS VAX or Alpha 6.2, allows local users to gain access to unauthorized resources. | |||||
CVE-2004-0314 | 1 Freewebs | 1 Webzedit | 2023-12-10 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in done.jsp in WebzEdit 1.9 and earlier allows remote attackers to execute arbitrary script as other users via the message parameter. |