Vulnerabilities (CVE)

Total 245391 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-2031 1 E107 1 E107 2023-12-10 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in user.php in e107 allows remote attackers to inject arbitrary web script or HTML via the (1) URL, (2) MSN, or (3) AIM fields.
CVE-2003-1119 1 Ssh 1 Secure Shell 2023-12-10 5.0 MEDIUM N/A
SSH Secure Shell before 3.2.9 allows remote attackers to cause a denial of service via malformed BER/DER packets.
CVE-1999-1553 1 Xcmail 1 Xcmail 2023-12-10 10.0 HIGH N/A
Buffer overflow in XCmail 0.99.6 with autoquote enabled allows remote attackers to execute arbitrary commands via a long subject line.
CVE-2000-0487 1 Microsoft 1 Windows 2000 2023-12-10 3.6 LOW N/A
The Protected Store in Windows 2000 does not properly select the strongest encryption when available, which causes it to use a default of 40-bit encryption instead of 56-bit DES encryption, aka the "Protected Store Key Length" vulnerability.
CVE-2004-0736 1 Francisco Burzi 1 Php-nuke 2023-12-10 5.0 MEDIUM N/A
The search module in Php-Nuke allows remote attackers to gain sensitive information via the (1) "**" or (2) "+" search patterns, which reveals the path in an error message.
CVE-2001-0822 1 Packet Knights 1 Fpf Linux Kernel Module 2023-12-10 5.0 MEDIUM N/A
FPF kernel module 1.0 allows a remote attacker to cause a denial of service via fragmented packets.
CVE-2001-1571 1 Microsoft 1 Windows Xp 2023-12-10 5.0 MEDIUM N/A
The Remote Desktop client in Windows XP sends the most recent user account name in cleartext, which could allow remote attackers to obtain terminal server user account names via sniffing.
CVE-2000-0159 1 Hp 1 Hp-ux 2023-12-10 7.5 HIGH N/A
HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges.
CVE-2000-0292 1 Adtran 1 Mx2800 2023-12-10 5.0 MEDIUM N/A
The Adtran MX2800 M13 Multiplexer allows remote attackers to cause a denial of service via a ping flood to the Ethernet interface, which causes the device to crash.
CVE-2000-0495 1 Microsoft 1 Windows Media Services 2023-12-10 5.0 MEDIUM N/A
Microsoft Windows Media Encoder allows remote attackers to cause a denial of service via a malformed request, aka the "Malformed Windows Media Encoder Request" vulnerability.
CVE-2003-0665 1 Microsoft 1 Access 2023-12-10 7.5 HIGH N/A
Buffer overflow in the ActiveX control for Microsoft Access Snapshot Viewer for Access 97, 2000, and 2002 allows remote attackers to execute arbitrary code via long parameters to the control.
CVE-2000-0988 1 Bardon Data Systems 1 Winu 2023-12-10 7.2 HIGH N/A
WinU 1.0 through 5.1 has a backdoor password that allows remote attackers to gain access to its administrative interface and modify configuration.
CVE-2004-0693 1 Trolltech 1 Qt 2023-12-10 5.0 MEDIUM N/A
The GIF parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different vulnerability than CVE-2004-0692.
CVE-2003-0420 1 Apple 1 Mac Os X Server 2023-12-10 4.6 MEDIUM N/A
Information leak in dsimportexport for Apple Macintosh OS X Server 10.2.6 allows local users to obtain the username and password of the account running the tool.
CVE-2000-0514 1 Mit 1 Kerberos 5 2023-12-10 10.0 HIGH N/A
GSSFTP FTP daemon in Kerberos 5 1.1.x does not properly restrict access to some FTP commands, which allows remote attackers to cause a denial of service, and local users to gain root privileges.
CVE-1999-0206 1 Eric Allman 1 Sendmail 2023-12-10 10.0 HIGH N/A
MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access.
CVE-2003-0692 1 Kde 1 Kde 2023-12-10 7.5 HIGH N/A
KDM in KDE 3.1.3 and earlier uses a weak session cookie generation algorithm that does not provide 128 bits of entropy, which allows attackers to guess session cookies via brute force methods and gain access to the user session.
CVE-2002-0247 1 Wliang 1 Wmtv 2023-12-10 7.2 HIGH N/A
Buffer overflows in wmtv 0.6.5 and earlier may allow local users to gain privileges.
CVE-2003-1117 1 Realnetworks 2 Realsystem Proxy, Realsystem Server 2023-12-10 7.5 HIGH N/A
Buffer overflow in RealSystem Server 6.x, 7.x and 8.x, and RealSystem Proxy 8.x, related to URL error handling, allows remote attackers to cause a denial of service and possibly execute arbitrary code.
CVE-2002-1051 1 Ehud Gavron 1 Tracesroute 2023-12-10 4.6 MEDIUM N/A
Format string vulnerability in TrACESroute 6.0 GOLD (aka NANOG traceroute) allows local users to execute arbitrary code via the -T (terminator) command line argument.