Vulnerabilities (CVE)

Total 240292 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-0038 1 Mcafee 1 Epolicy Orchestrator 2023-12-10 7.5 HIGH N/A
McAfee ePolicy Orchestrator (ePO) 2.5.1 Patch 13 and 3.0 SP2a Patch 3 allows remote attackers to execute arbitrary commands via certain HTTP POST requests to the spipe/file handler on ePO TCP port 81.
CVE-2002-0918 1 Cgiscript.net 1 Cspassword 2023-12-10 5.0 MEDIUM N/A
CGIScript.net csPassword.cgi leaks sensitive information such as the pathname of the server in debug messages that are presented when the script fails, which allows remote attackers to obtain the information via a "remove" option in the command parameter, which generates an error.
CVE-2004-0789 9 Axis, Delegate, Dnrd and 6 more 15 2100 Network Camera, 2110 Network Camera, 2120 Network Camera and 12 more 2023-12-10 5.0 MEDIUM N/A
Multiple implementations of the DNS protocol, including (1) Poslib 1.0.2-1 and earlier as used by Posadis, (2) Axis Network products before firmware 3.13, and (3) Men & Mice Suite 2.2x before 2.2.3 and 3.5.x before 3.5.2, allow remote attackers to cause a denial of service (CPU and network bandwidth consumption) by triggering a communications loop via (a) DNS query packets with localhost as a spoofed source address, or (b) a response packet that triggers a response packet.
CVE-2002-0847 1 Tinyproxy 1 Tinyproxy 2023-12-10 7.5 HIGH N/A
tinyproxy HTTP proxy 1.5.0, 1.4.3, and earlier allows remote attackers to execute arbitrary code via memory that is freed twice (double-free).
CVE-2003-0355 2 Apple, Kde 2 Safari, Konqueror Embedded 2023-12-10 5.0 MEDIUM N/A
Safari 1.0 Beta 2 (v73) and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates.
CVE-2000-0661 1 Wircsrv 1 Irc Server 2023-12-10 5.0 MEDIUM N/A
WircSrv IRC Server 5.07s allows remote attackers to cause a denial of service via a long string to the server port.
CVE-1999-0976 1 Eric Allman 1 Sendmail 2023-12-10 2.1 LOW N/A
Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail.
CVE-2004-0675 1 Mcmurtrey Whitaker And Associates 1 Cart32 2023-12-10 6.8 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in (1) cart32.exe or (2) c32web.exe in Cart32 shopping cart allows remote attackers to execute arbitrary web script via the cart32 parameter to a GetLatestBuilds command.
CVE-2004-1747 1 Network Everywhere 1 Nr041 2023-12-10 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in NetworkEverywhere NR041 running firmware 1.2 Release 03 allows remote attackers to inject arbitrary web script or HTML via the DHCP HOSTNAME option.
CVE-1999-1445 1 Slackware 1 Slackware Linux 2023-12-10 5.0 MEDIUM N/A
Vulnerability in imapd and ipop3d in Slackware 3.4 and 3.3 with shadowing enabled, and possibly other operating systems, allows remote attackers to cause a core dump via a short sequence of USER and PASS commands that do not provide valid usernames or passwords.
CVE-2002-1093 1 Cisco 1 Vpn 3000 Concentrator Series Software 2023-12-10 5.0 MEDIUM N/A
HTML interface for Cisco VPN 3000 Concentrator 2.x.x and 3.x.x before 3.0.3(B) allows remote attackers to cause a denial of service (CPU consumption) via a long URL request.
CVE-2002-1201 1 Ibm 1 Aix 2023-12-10 5.0 MEDIUM N/A
IBM AIX 4.3.3 and AIX 5 allows remote attackers to cause a denial of service (CPU consumption or crash) via a flood of malformed TCP packets without any flags set, which prevents AIX from releasing the associated memory buffers.
CVE-2002-0768 2 Luke Mewburn, Suse 2 Lukemftp, Suse Linux 2023-12-10 7.5 HIGH N/A
Buffer overflow in lukemftp FTP client in SuSE 6.4 through 8.0, and possibly other operating systems, allows a malicious FTP server to execute arbitrary code via a long PASV command.
CVE-2002-1103 1 Cisco 2 Vpn 3000 Concentrator Series Software, Vpn 3002 Hardware Client 2023-12-10 5.0 MEDIUM N/A
Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via (1) malformed or (2) large ISAKMP packets.
CVE-2004-0514 1 Apple 2 Mac Os X, Mac Os X Server 2023-12-10 7.2 HIGH N/A
Unknown vulnerability in LoginWindow for Mac OS X 10.3.4, related to "handling of directory services lookups."
CVE-2000-0227 1 Linux 1 Linux Kernel 2023-12-10 2.1 LOW N/A
The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a denial of service by requesting a large number of sockets.
CVE-2001-1123 1 Hp 1 Openview Network Node Manager 2023-12-10 7.2 HIGH N/A
Vulnerability in Network Node Manager (NNM) 6.2 and earlier in HP OpenView allows a local user to execute arbitrary code, possibly via a buffer overflow in a long hostname or object ID.
CVE-2000-0882 1 Intel 4 Express 510t, Express 520t, Express 550f and 1 more 2023-12-10 5.0 MEDIUM N/A
Intel Express 500 series switches allow a remote attacker to cause a denial of service via a malformed ICMP packet, which causes the CPU to crash.
CVE-1999-0201 1 Ftp 1 Ftp 2023-12-10 6.4 MEDIUM N/A
A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user.
CVE-2001-0945 1 Microsoft 1 Outlook Express 2023-12-10 5.0 MEDIUM N/A
Buffer overflow in Outlook Express 5.0 through 5.02 for Macintosh allows remote attackers to cause a denial of service via an e-mail message that contains a long line.