Total
247171 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-0638 | 1 Oracle | 2 Oracle8i, Oracle9i | 2023-12-10 | 8.5 HIGH | N/A |
Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long second argument. | |||||
CVE-1999-0447 | 1 Hp | 1 Mpe Ix | 2023-12-10 | 4.6 MEDIUM | N/A |
Local users can gain privileges using the debug utility in the MPE/iX operating system. | |||||
CVE-1999-0912 | 1 Freebsd | 1 Freebsd | 2023-12-10 | 2.1 LOW | N/A |
FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files. | |||||
CVE-2002-0392 | 2 Apache, Debian | 2 Http Server, Debian Linux | 2023-12-10 | 7.5 HIGH | N/A |
Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes Apache to use an incorrect size. | |||||
CVE-2000-0173 | 1 Sco | 1 Unixware | 2023-12-10 | 5.0 MEDIUM | N/A |
Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service. | |||||
CVE-1999-0306 | 1 Hp | 1 Vvos | 2023-12-10 | 7.2 HIGH | N/A |
buffer overflow in HP xlock program. | |||||
CVE-2003-0056 | 1 Slocate | 1 Slocate | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in secure locate (slocate) before 2.7 allows local users to execute arbitrary code via a long (1) -c or (2) -r command line argument. | |||||
CVE-2002-1882 | 1 Oracle | 1 E-business Suite | 2023-12-10 | 7.5 HIGH | N/A |
Unknown vulnerability in AolSecurityPrivate.class in Oracle E-Business Suite 11i 11.1 through 11.6 allows remote attackers to bypass user authentication checks via unknown attack vectors. | |||||
CVE-2002-1803 | 1 Francisco Burzi | 1 Php-nuke | 2023-12-10 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in PHP-Nuke 6.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. | |||||
CVE-2001-0015 | 1 Microsoft | 1 Windows 2000 | 2023-12-10 | 7.2 HIGH | N/A |
Network Dynamic Data Exchange (DDE) in Windows 2000 allows local users to gain SYSTEM privileges via a "WM_COPYDATA" message to an invisible window that is running with the privileges of the WINLOGON process. | |||||
CVE-2001-1477 | 1 Bea | 1 Tuxedo | 2023-12-10 | 4.6 MEDIUM | N/A |
The Domain gateway in BEA Tuxedo 7.1 does not perform authorization checks for imported services and qspaces on remote domains, even when an ACL exists, which allows users to access services in a remote domain. | |||||
CVE-2003-1395 | 1 Kazaa | 1 Kazaa Media Desktop | 2023-12-10 | 9.0 HIGH | N/A |
Buffer overflow in KaZaA Media Desktop 2.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a response to the ad server. | |||||
CVE-2001-1444 | 1 Kth | 1 Kth Kerberos | 2023-12-10 | 7.5 HIGH | N/A |
The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V (Heimdal), does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentication and encryption mechanisms via a man-in-the-middle attack. | |||||
CVE-2003-0676 | 1 Sun | 2 Iplanet Directory Server, One Directory Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via "..%2f" (partially encoded dot dot) sequences. | |||||
CVE-2003-1415 | 1 Visual Mining | 1 Netcharts Xbrl Server | 2023-12-10 | 6.8 MEDIUM | N/A |
NetCharts XBRL Server 4.0.0 allows remote attackers to obtain sensitive information via an HTTP request with an invalid chunked transfer encoding specification. | |||||
CVE-2002-1433 | 1 Kerio | 1 Kerio Mailserver | 2023-12-10 | 5.0 MEDIUM | N/A |
Kerio MailServer 5.0 allows remote attackers to cause a denial of service (hang) via SYN packets to the supported network services. | |||||
CVE-2000-0165 | 1 Etl | 1 Delegate | 2023-12-10 | 7.5 HIGH | N/A |
The Delegate application proxy has several buffer overflows which allow a remote attacker to execute commands. | |||||
CVE-1999-1520 | 1 Microsoft | 1 Site Server | 2023-12-10 | 5.0 MEDIUM | N/A |
A configuration problem in the Ad Server Sample directory (AdSamples) in Microsoft Site Server 3.0 allows an attacker to obtain the SITE.CSC file, which exposes sensitive SQL database information. | |||||
CVE-2004-0755 | 1 Yukihiro Matsumoto | 1 Ruby | 2023-12-10 | 2.1 LOW | N/A |
The FileStore capability in CGI::Session for Ruby before 1.8.1, and possibly PStore, creates files with insecure permissions, which can allow local users to steal session information and hijack sessions. | |||||
CVE-2001-1407 | 1 Mozilla | 1 Bugzilla | 2023-12-10 | 7.5 HIGH | N/A |
Bugzilla before 2.14 allows Bugzilla users to bypass group security checks by marking a bug as the duplicate of a restricted bug, which adds the user to the CC list of the restricted bug and allows the user to view the bug. |