Total
247013 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-1009 | 1 Fetchmail | 1 Fetchmail | 2023-12-10 | 10.0 HIGH | N/A |
Fetchmail (aka fetchmail-ssl) before 5.8.17 allows a remote malicious (1) IMAP server or (2) POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request. | |||||
CVE-2004-1411 | 1 Gadu-gadu | 1 Gadu-gadu Instant Messenger | 2023-12-10 | 2.6 LOW | N/A |
Gadu-Gadu build 155 and earlier allows remote attackers to cause a denial of service (infinite loop) via a message that contains an image whose filename does not start with restricted characters. | |||||
CVE-2004-0598 | 1 Greg Roelofs | 1 Libpng | 2023-12-10 | 5.0 MEDIUM | N/A |
The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference. | |||||
CVE-2004-1854 | 1 Picophone | 1 Internet Telephone | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in the logging function in Picophone 1.63 and earlier allows remote attackers to execute arbitrary code via a large packet. | |||||
CVE-2002-1369 | 2 Apple, Easy Software Products | 2 Mac Os X, Cups | 2023-12-10 | 10.0 HIGH | N/A |
jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitrary code via a buffer overflow attack. | |||||
CVE-1999-0664 | 2023-12-10 | 10.0 HIGH | N/A | ||
An application-critical Windows NT registry key has inappropriate permissions. | |||||
CVE-2000-1147 | 1 Microsoft | 1 Internet Information Server | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in IIS ISAPI .ASP parsing mechanism allows attackers to execute arbitrary commands via a long string to the "LANGUAGE" argument in a script tag. | |||||
CVE-1999-1299 | 2 Redhat, Slackware | 2 Linux, Slackware Linux | 2023-12-10 | 10.0 HIGH | N/A |
rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system calls, which causes the calls to fail to modify the ownership of the file. | |||||
CVE-2002-0268 | 1 Identix | 1 Biologon | 2023-12-10 | 7.2 HIGH | N/A |
Identix BioLogon 3 allows users with physical access to the system to gain administrative privileges by using CTRL-ALT-DEL and running a "Browse" function, which runs Explorer with SYSTEM privileges. | |||||
CVE-2001-0560 | 1 Paul Vixie | 1 Vixie Cron | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in Vixie cron 3.0.1-56 and earlier could allow a local attacker to gain additional privileges via a long username (> 20 characters). | |||||
CVE-1999-0580 | 2023-12-10 | 10.0 HIGH | N/A | ||
The HKEY_LOCAL_MACHINE key in a Windows NT system has inappropriate, system-critical permissions. | |||||
CVE-2001-0114 | 1 Omnicron | 1 Omnihttpd | 2023-12-10 | 5.0 MEDIUM | N/A |
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter. | |||||
CVE-2002-0291 | 1 Funsoft | 1 Dinos Webserver | 2023-12-10 | 5.0 MEDIUM | N/A |
Dino's Webserver 1.2 allows remote attackers to cause a denial of service (CPU consumption) and possibly execute arbitrary code via several large HTTP requests within a short time. | |||||
CVE-2000-0480 | 1 Shadow Op Software | 1 Dragon Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Dragon telnet server allows remote attackers to cause a denial of service via a long username. | |||||
CVE-1999-0614 | 2023-12-10 | N/A | N/A | ||
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The FTP service is running. | |||||
CVE-2003-0631 | 1 Vmware | 2 Gsx Server, Workstation | 2023-12-10 | 7.2 HIGH | N/A |
VMware GSX Server 2.5.1 build 4968 and earlier, and Workstation 4.0 and earlier, allows local users to gain root privileges via certain enivronment variables that are used when launching a virtual machine session. | |||||
CVE-2002-0116 | 1 Palm | 1 Palm Os | 2023-12-10 | 5.0 MEDIUM | N/A |
Palm OS 3.5h and possibly other versions, as used in Handspring Visor and Xircom products, allows remote attackers to cause a denial of service via a TCP connect scan, e.g. from nmap. | |||||
CVE-2001-0933 | 1 Cooolsoft | 1 Powerftp | 2023-12-10 | 7.5 HIGH | N/A |
Cooolsoft PowerFTP Server 2.03 allows remote attackers to list the contents of arbitrary drives via a ls (LIST) command that includes the drive letter as an argument, e.g. "ls C:". | |||||
CVE-2004-0382 | 1 Apple | 1 Mac Os X | 2023-12-10 | 7.2 HIGH | N/A |
Unknown vulnerability in the CUPS printing system in Mac OS X 10.3.3 and Mac OS X 10.2.8 with unknown impact, possibly related to a configuration file setting. | |||||
CVE-2002-2392 | 1 Nullsoft | 1 Winamp | 2023-12-10 | 6.4 MEDIUM | N/A |
Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedded code. |