Total
248593 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-1038 | 1 Ibm | 1 As400 Firewall | 2023-12-10 | 5.0 MEDIUM | N/A |
The web administration interface for IBM AS/400 Firewall allows remote attackers to cause a denial of service via an empty GET request. | |||||
CVE-2000-0248 | 1 Redhat | 1 Linux | 2023-12-10 | 10.0 HIGH | N/A |
The web GUI for the Linux Virtual Server (LVS) software in the Red Hat Linux Piranha package has a backdoor password that allows remote attackers to execute arbitrary commands. | |||||
CVE-1999-0245 | 1 Linux | 1 Linux Kernel | 2023-12-10 | 4.6 MEDIUM | N/A |
Some configurations of NIS+ in Linux allowed attackers to log in as the user "+". | |||||
CVE-2004-0579 | 2 Debian, William Deich | 2 Debian Linux, Super | 2023-12-10 | 7.2 HIGH | N/A |
Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root. | |||||
CVE-2002-0371 | 2 Microsoft, University Of Minnesota | 4 Internet Explorer, Isa Server, Proxy Server and 1 more | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that sends a long response. | |||||
CVE-2003-0986 | 2 Linux, Redhat | 2 Linux Kernel, Enterprise Linux | 2023-12-10 | 1.7 LOW | N/A |
Various routines for the ppc64 architecture on Linux kernel 2.6 prior to 2.6.2 and 2.4 prior to 2.4.24 do not use the copy_from_user function when copying data from userspace to kernelspace, which crosses security boundaries and allows local users to cause a denial of service. | |||||
CVE-2000-0399 | 1 Alt-n | 1 Mdaemon | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in MDaemon POP server allows remote attackers to cause a denial of service via a long user name. | |||||
CVE-1999-0647 | 2023-12-10 | N/A | N/A | ||
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The bootparam (bootparamd) service is running. | |||||
CVE-2000-1138 | 1 Ibm | 1 Lotus Notes | 2023-12-10 | 7.5 HIGH | N/A |
Lotus Notes R5 client R5.0.5 and earlier does not properly warn users when an S/MIME email message has been modified, which could allow an attacker to modify the email in transit without being detected. | |||||
CVE-1999-1200 | 1 Vintra Systems | 1 Smtp Mailserver | 2023-12-10 | 5.0 MEDIUM | N/A |
Vintra SMTP MailServer allows remote attackers to cause a denial of service via a malformed "EXPN *@" command. | |||||
CVE-2002-1851 | 1 Ipswitch | 1 Ws Ftp Pro | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors. | |||||
CVE-2004-0180 | 1 Cvs | 1 Cvs | 2023-12-10 | 2.6 LOW | N/A |
The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405. | |||||
CVE-2001-0449 | 1 Winzip | 1 Winzip | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in WinZip 8.0 allows attackers to execute arbitrary commands via a long file name that is processed by the /zipandemail command line option. | |||||
CVE-2001-0185 | 1 Netopia | 1 R9100 Router | 2023-12-10 | 5.0 MEDIUM | N/A |
Netopia R9100 router version 4.6 allows authenticated users to cause a denial of service by using the router's telnet program to connect to the router's IP address, which causes a crash. | |||||
CVE-1999-1362 | 1 Microsoft | 1 Windows Nt | 2023-12-10 | 2.1 LOW | N/A |
Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters. | |||||
CVE-2001-0060 | 1 Stunnel | 1 Stunnel | 2023-12-10 | 10.0 HIGH | N/A |
Format string vulnerability in stunnel 3.8 and earlier allows attackers to execute arbitrary commands via a malformed ident username. | |||||
CVE-2002-0142 | 1 Pi3 | 1 Pi3web | 2023-12-10 | 7.5 HIGH | N/A |
CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters. | |||||
CVE-2004-2209 | 1 Ideal Science | 1 Idealbb | 2023-12-10 | 7.5 HIGH | N/A |
SQL injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors. | |||||
CVE-1999-0402 | 1 Gnu | 1 Wget | 2023-12-10 | 5.0 MEDIUM | N/A |
wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself. | |||||
CVE-2002-1685 | 1 Working Resources Inc. | 1 Badblue | 2023-12-10 | 4.3 MEDIUM | N/A |
Cross-site scripting vulnerability (XSS) in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI. |