Total
247505 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1375 | 2 Oracle, Symantec Veritas | 3 Mysql, Netbackup Advanced Reporter, Netbackup Global Data Manager | 2023-12-10 | 7.5 HIGH | N/A |
The COM_CHANGE_USER command in MySQL 3.x before 3.23.54, and 4.x to 4.0.6, allows remote attackers to execute arbitrary code via a long response. | |||||
CVE-2003-0501 | 1 Linux | 1 Linux Kernel | 2023-12-10 | 2.1 LOW | N/A |
The /proc filesystem in Linux allows local users to obtain sensitive information by opening various entries in /proc/self before executing a setuid program, which causes the program to fail to change the ownership and permissions of those entries. | |||||
CVE-2004-1561 | 1 Icecast | 1 Icecast | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers. | |||||
CVE-2000-0297 | 1 Allaire | 1 Forums | 2023-12-10 | 6.4 MEDIUM | N/A |
Allaire Forums 2.0.5 allows remote attackers to bypass access restrictions to secure conferences via the rightAccessAllForums or rightModerateAllForums variables. | |||||
CVE-1999-0289 | 2 Apache, Microsoft | 2 Http Server, Windows | 2023-12-10 | 5.0 MEDIUM | N/A |
The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL. | |||||
CVE-2004-1296 | 1 Gnu | 1 Groff | 2023-12-10 | 2.1 LOW | N/A |
The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink attack on temporary files. | |||||
CVE-2000-0315 | 5 Debian, Digital, Netbsd and 2 more | 5 Debian Linux, Unix, Netbsd and 2 more | 2023-12-10 | 5.0 MEDIUM | N/A |
traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks. | |||||
CVE-2004-1407 | 1 Singapore | 1 Image Gallery Web Application | 2023-12-10 | 5.0 MEDIUM | N/A |
Multiple directory traversal vulnerabilities in singapore Image Gallery Web Application 0.9.10 allow remote attackers to (1) read arbitrary files via the showThumb method for thumb.php, or (2) delete arbitrary files via admin.class.php. | |||||
CVE-2001-1464 | 1 Businessobjects | 1 Crystal Reports | 2023-12-10 | 7.5 HIGH | N/A |
Crystal Reports, when displaying data for a password protected database using HTML pages, embeds the username and password in cleartext in the HTML page and the URL, which allows remote attackers to obtain passwords. | |||||
CVE-2001-0107 | 1 Symantec Veritas | 1 Backup | 2023-12-10 | 5.0 MEDIUM | N/A |
Veritas Backup agent on Linux allows remote attackers to cause a denial of service by establishing a connection without sending any data, which causes the process to hang. | |||||
CVE-2004-1350 | 1 Sun | 1 Java System Web Proxy Server | 2023-12-10 | 7.5 HIGH | N/A |
Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 through 3.6 SP4 allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNECT requests. | |||||
CVE-2001-0428 | 1 Cisco | 1 Vpn 3000 Concentrator Series Software | 2023-12-10 | 5.0 MEDIUM | N/A |
Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via an IP packet with an invalid IP option. | |||||
CVE-2001-0623 | 1 Sendfile | 1 Sendfile | 2023-12-10 | 4.6 MEDIUM | N/A |
sendfiled, as included with Simple Asynchronous File Transfer (SAFT), on various Linux systems does not properly drop privileges when sending notification emails, which allows local attackers to gain privileges. | |||||
CVE-2003-0172 | 1 Php | 1 Php | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in openlog function for PHP 4.3.1 on Windows operating system, and possibly other OSes, allows remote attackers to cause a crash and possibly execute arbitrary code via a long filename argument. | |||||
CVE-2004-0638 | 1 Oracle | 2 Oracle8i, Oracle9i | 2023-12-10 | 8.5 HIGH | N/A |
Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long second argument. | |||||
CVE-1999-0447 | 1 Hp | 1 Mpe Ix | 2023-12-10 | 4.6 MEDIUM | N/A |
Local users can gain privileges using the debug utility in the MPE/iX operating system. | |||||
CVE-1999-0912 | 1 Freebsd | 1 Freebsd | 2023-12-10 | 2.1 LOW | N/A |
FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files. | |||||
CVE-2002-0392 | 2 Apache, Debian | 2 Http Server, Debian Linux | 2023-12-10 | 7.5 HIGH | N/A |
Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes Apache to use an incorrect size. | |||||
CVE-2000-0173 | 1 Sco | 1 Unixware | 2023-12-10 | 5.0 MEDIUM | N/A |
Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service. | |||||
CVE-1999-0306 | 1 Hp | 1 Vvos | 2023-12-10 | 7.2 HIGH | N/A |
buffer overflow in HP xlock program. |