Total
250891 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-2305 | 1 Phpsecure.org | 1 Immobilier | 2023-12-10 | 7.5 HIGH | N/A |
SQL injection vulnerability in agentadmin.php in Immobilier allows remote attackers to execute arbitrary SQL commands via the (1) agentname or (2) agentpassword parameter. | |||||
CVE-1999-0335 | 2023-12-10 | N/A | N/A | ||
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0032. Reason: This candidate is a duplicate of CVE-1999-0032. Notes: All CVE users should reference CVE-1999-0032 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage | |||||
CVE-1999-0636 | 2023-12-10 | 10.0 HIGH | N/A | ||
The discard service is running. | |||||
CVE-1999-0072 | 1 Ibm | 1 Aix | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in AIX xdat gives root access to local users. | |||||
CVE-2000-0186 | 4 Freebsd, Mandrakesoft, Redhat and 1 more | 4 Freebsd, Mandrake Linux, Linux and 1 more | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument. | |||||
CVE-2003-1130 | 2023-12-10 | N/A | N/A | ||
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2003-1071. Reason: This candidate is a duplicate of CVE-2003-1071. Notes: All CVE users should reference CVE-2003-1071 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage | |||||
CVE-2004-1756 | 1 Bea | 1 Weblogic Server | 2023-12-10 | 5.0 MEDIUM | N/A |
BEA WebLogic Server and WebLogic Express 8.1 SP2 and earlier, and 7.0 SP4 and earlier, when using 2-way SSL with a custom trust manager, may accept a certificate chain even if the trust manager rejects it, which allows remote attackers to spoof other users or servers. | |||||
CVE-2000-0290 | 1 4d | 1 Webstar Http Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in Webstar HTTP server allows remote attackers to cause a denial of service via a long GET request. | |||||
CVE-2004-2235 | 1 Moodle | 1 Moodle | 2023-12-10 | 10.0 HIGH | N/A |
Unknown vulnerability in Moodle before 1.2 has unknown impact and attack vectors, related to improper filtering of text. | |||||
CVE-1999-1288 | 4 Caldera, Redhat, Samba and 1 more | 4 Openlinux, Linux, Samba and 1 more | 2023-12-10 | 4.6 MEDIUM | N/A |
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program. | |||||
CVE-2002-0894 | 1 New Atlanta Communications | 1 Servletexec Isapi | 2023-12-10 | 5.0 MEDIUM | N/A |
NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to cause a denial of service (crash) via (1) a request for a long .jsp file, or (2) a long URL sent directly to com.newatlanta.servletexec.JSP10Servlet. | |||||
CVE-2004-1771 | 1 Open Group | 1 Scalable Ogo | 2023-12-10 | 5.0 MEDIUM | N/A |
Scalable OGo (SOGo) 1.0 allows remote authenticated users to bypass intended permissions and view private appointments of other users. | |||||
CVE-2000-0927 | 1 Wquinn | 1 Quotaadvisor | 2023-12-10 | 4.6 MEDIUM | N/A |
WQuinn QuotaAdvisor 4.1 does not properly record file sizes if they are stored in alternative data streams, which allows users to bypass quota restrictions. | |||||
CVE-2004-0229 | 2 Gentoo, Linux | 2 Linux, Linux Kernel | 2023-12-10 | 4.6 MEDIUM | N/A |
The framebuffer driver in Linux kernel 2.6.x does not properly use the fb_copy_cmap function, with unknown impact. | |||||
CVE-2002-2150 | 1 Juniper | 1 Netscreen Screenos | 2023-12-10 | 5.0 MEDIUM | N/A |
Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UDP flood, or (3) Crikey CRC Flood, which causes the firewall to refuse any new connections. | |||||
CVE-2003-1154 | 1 Clearswift | 1 Mailsweeper | 2023-12-10 | 7.5 HIGH | N/A |
MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip attachment, as exploited by certain MIMAIL virus variants. | |||||
CVE-2000-0920 | 1 Boa | 1 Boa Webserver | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in BOA web server 0.94.8.2 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack in the GET HTTP request that uses a "%2E" instead of a "." | |||||
CVE-2000-0056 | 1 Ipswitch | 1 Imail | 2023-12-10 | 5.0 MEDIUM | N/A |
IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi. | |||||
CVE-1999-1217 | 1 Microsoft | 1 Windows Nt | 2023-12-10 | 4.6 MEDIUM | N/A |
The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories. | |||||
CVE-2002-0120 | 1 Palm | 1 Palm Desktop | 2023-12-10 | 2.1 LOW | N/A |
Apple Palm Desktop 4.0b76 and 4.0b77 creates world-readable backup files and folders when a hotsync is performed, which could allow a local user to obtain sensitive information. |