Total
247149 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-0405 | 1 Cvs | 1 Cvs | 2023-12-10 | 5.0 MEDIUM | N/A |
CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client requests, a different vulnerability than CVE-2004-0180. | |||||
CVE-1999-0683 | 1 Network Associates | 1 Gauntlet Firewall | 2023-12-10 | 5.0 MEDIUM | N/A |
Denial of service in Gauntlet Firewall via a malformed ICMP packet. | |||||
CVE-1999-0700 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2023-12-10 | 6.2 MEDIUM | N/A |
Buffer overflow in Microsoft Phone Dialer (dialer.exe), via a malformed dialer entry in the dialer.ini file. | |||||
CVE-2004-0527 | 1 Kde | 1 Konqueror | 2023-12-10 | 5.0 MEDIUM | N/A |
KDE Konqueror 2.1.1 and 2.2.2 allows remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack. | |||||
CVE-1999-0345 | 4 Freebsd, Ibm, Sco and 1 more | 7 Freebsd, Aix, Sng and 4 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems. | |||||
CVE-2004-1956 | 1 Postnuke Software Foundation | 1 Postnuke | 2023-12-10 | 5.0 MEDIUM | N/A |
PostNuke 0.7.2.6 allows remote attackers to gain information via a direct HTTP request to files in the (1) includes/blocks directory, (2) pnadodb directory, (3) NS-NewUser module, (4) NS-Your_Account, (5) NS-LostPassword module, or (6) NS-User module which reveals the path to the web server in a PHP error message. | |||||
CVE-2001-0783 | 1 Cisco | 1 Tftp Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Cisco TFTP server 1.1 allows remote attackers to read arbitrary files via a ..(dot dot) attack in the GET command. | |||||
CVE-2000-1174 | 1 Ethereal Group | 1 Ethereal | 2023-12-10 | 7.5 HIGH | N/A |
Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username. | |||||
CVE-2003-1446 | 1 Rogue | 1 Rogue | 2023-12-10 | 4.9 MEDIUM | N/A |
Buffer overflow in the save_into_file function in save.c for Rogue 5.2-2 allows local users to execute arbitrary code with games group privileges by setting a long HOME environment variable and invoking the save game function with a ~ (tilde). | |||||
CVE-2004-1144 | 1 Linux | 1 Linux Kernel | 2023-12-10 | 7.2 HIGH | N/A |
Unknown vulnerability in the 32bit emulation code in Linux 2.4 on AMD64 systems allows local users to gain privileges. | |||||
CVE-2003-0782 | 1 Ecartis | 1 Ecartis | 2023-12-10 | 10.0 HIGH | N/A |
Multiple buffer overflows in ecartis before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code. | |||||
CVE-2004-0010 | 1 Linux | 1 Linux Kernel | 2023-12-10 | 7.2 HIGH | N/A |
Stack-based buffer overflow in the ncp_lookup function for ncpfs in Linux kernel 2.4.x allows local users to gain privileges. | |||||
CVE-2002-1741 | 1 Alt-n | 1 Worldclient | 2023-12-10 | 7.2 HIGH | N/A |
Directory traversal vulnerability in WorldClient.cgi in WorldClient for Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to delete arbitrary files via a ".." (dot dot) in the Attachments parameter. | |||||
CVE-2000-0232 | 1 Microsoft | 3 Terminal Server, Windows 2000, Windows Nt | 2023-12-10 | 2.1 LOW | N/A |
Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request. | |||||
CVE-2001-0331 | 1 Sgi | 1 Irix | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in Embedded Support Partner (ESP) daemon (rpc.espd) in IRIX 6.5.8 and earlier allows remote attackers to execute arbitrary commands. | |||||
CVE-2001-0953 | 1 Nara Vision | 1 Kebi Community | 2023-12-10 | 10.0 HIGH | N/A |
Kebi WebMail allows remote attackers to access the administrator menu and gain privileges via the /a/ hidden directory, which is installed under the web document root. | |||||
CVE-2003-0849 | 1 Gnu | 1 Cfengine | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in net.c for cfengine 2.x before 2.0.8 allows remote attackers to execute arbitrary code via certain packets with modified length values, which is trusted by the ReceiveTransaction function when using a buffer provided by the BusyWithConnection function. | |||||
CVE-1999-0265 | 2 Microware, Novell | 2 Os-9, Netware | 2023-12-10 | 5.0 MEDIUM | N/A |
ICMP redirect messages may crash or lock up a host. | |||||
CVE-1999-1389 | 1 3com | 1 Total Control Netserver Card | 2023-12-10 | 7.5 HIGH | N/A |
US Robotics/3Com Total Control Chassis with Frame Relay between 3.6.22 and 3.7.24 does not properly enforce access filters when the "set host prompt" setting is made for a port, which allows attackers to bypass restrictions by providing the hostname twice at the "host: " prompt. | |||||
CVE-2003-0309 | 1 Microsoft | 1 Internet Explorer | 2023-12-10 | 7.5 HIGH | N/A |
Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to bypass security zone restrictions and execute arbitrary programs via a web document with a large number of duplicate file:// or other requests that point to the program and open multiple file download dialogs, which eventually cause Internet Explorer to execute the program, as demonstrated using a large number of FRAME or IFRAME tags, aka the "File Download Dialog Vulnerability." |