Vulnerabilities (CVE)

Total 250651 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-0151 1 Microsoft 1 Internet Information Services 2023-12-10 5.0 MEDIUM N/A
IIS 5.0 allows remote attackers to cause a denial of service via a series of malformed WebDAV requests.
CVE-2001-1176 1 Checkpoint 3 Firewall-1, Provider-1, Vpn-1 2023-12-10 7.5 HIGH N/A
Format string vulnerability in Check Point VPN-1/FireWall-1 4.1 allows a remote authenticated firewall administrator to execute arbitrary code via format strings in the control connection.
CVE-2003-1300 1 Pablo Software Solutions 1 Baby Ftp Server 2023-12-10 5.0 MEDIUM N/A
Baby FTP Server (BabyFTP) 1.2, and possibly other versions before May 31, 2003, allows remote attackers to cause a denial of service via a large number of connections from the same IP address, which triggers an access violation.
CVE-2000-0150 2 Checkpoint, Cisco 2 Firewall-1, Pix Firewall Software 2023-12-10 7.5 HIGH N/A
Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt.
CVE-2004-2114 1 Internetnow 1 Proxynow 2023-12-10 10.0 HIGH N/A
Stack-based and heap-based buffer overflows in ProxyNow! 2.75 and earlier allow remote attackers to execute arbitrary code via a GET request with a long ftp:// URL.
CVE-1999-0763 1 Netbsd 1 Netbsd 2023-12-10 6.4 MEDIUM N/A
NetBSD on a multi-homed host allows ARP packets on one network to modify ARP entries on another connected network.
CVE-2001-0776 1 Dynfx 1 Dynfx Mailserver 2023-12-10 5.0 MEDIUM N/A
Buffer overflow in DynFX MailServer version 2.10 allows remote attackers to conduct a denial of service via a long username to the POP3 service.
CVE-2003-0724 1 Compaq 1 Tru64 2023-12-10 7.5 HIGH N/A
ssh on HP Tru64 UNIX 5.1B and 5.1A does not properly handle RSA signatures when digital certificates and RSA keys are used, which could allow local and remote attackers to gain privileges.
CVE-2002-2190 1 Artscore Studios 1 Cutecast Forum 2023-12-10 7.5 HIGH N/A
ArtsCore Studios CuteCast Forum 1.2 stores passwords in plaintext under the web document root, which allows remote attackers to obtain the passwords via an HTTP request to a .user file.
CVE-2001-1271 1 Rarsoft 1 Rar 2023-12-10 2.1 LOW N/A
Directory traversal vulnerability in rar 2.02 and earlier allows attackers to overwrite arbitrary files during archive extraction via a .. (dot dot) attack on archived filenames.
CVE-2003-1231 1 Ecw-shop 1 Ecw-shop 2023-12-10 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in index.php in ECW-Shop 5.5 allows remote attackers to inject arbitrary web script or HTML via the cat parameter.
CVE-2003-0450 1 Cistron 1 Radius Daemon 2023-12-10 7.5 HIGH N/A
Cistron RADIUS daemon (radiusd-cistron) 1.6.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large value in an NAS-Port attribute, which is interpreted as a negative number and causes a buffer overflow.
CVE-2004-1796 1 Hotnews 1 Hotnews 2023-12-10 7.5 HIGH N/A
PHP remote file inclusion vulnerability in HotNews 0.7.2 and earlier allows remote attackers to execute arbitrary PHP code via the (1) config[header] parameter to hotnews-engine.inc.php3 or (2) config[incdir] parameter to hnmain.inc.php3.
CVE-2002-1737 1 Astaro 1 Security Linux 2023-12-10 2.1 LOW N/A
Astaro Security Linux 2.016 creates world-writable files and directories, which allows local users to overwrite arbitrary files.
CVE-1999-0270 1 Sgi 1 Irix 2023-12-10 5.0 MEDIUM N/A
Directory traversal vulnerability in pfdispaly.cgi program (sometimes referred to as "pfdisplay") for SGI's Performer API Search Tool (performer_tools) allows remote attackers to read arbitrary files.
CVE-2002-1090 1 Libesmtp 1 Libesmtp 2023-12-10 7.5 HIGH N/A
Buffer overflow in read_smtp_response of protocol.c in libesmtp before 0.8.11 allows a remote SMTP server to (1) execute arbitrary code via a certain response or (2) cause a denial of service via long server responses.
CVE-2000-0836 1 Broadgun Software 1 Camshot Webcam 2023-12-10 7.5 HIGH N/A
Buffer overflow in CamShot WebCam Trial2.6 allows remote attackers to execute arbitrary commands via a long Authorization header.
CVE-2003-0195 1 Slackware 1 Slackware Linux 2023-12-10 5.0 MEDIUM N/A
CUPS before 1.1.19 allows remote attackers to cause a denial of service via a partial printing request to the IPP port (631), which does not time out.
CVE-2000-1072 1 Netscape 1 Iplanet Ical 2023-12-10 7.2 HIGH N/A
iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse.
CVE-2001-0396 1 Lightwave 1 Consoleserver 2023-12-10 5.0 MEDIUM N/A
The pre-login mode in the System Administrator interface of Lightwave ConsoleServer 3200 allows remote attackers to obtain sensitive information such as system status, configuration, and users.