Total
249940 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0168 | 1 Apple | 1 Quicktime | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in Apple QuickTime Player 5.x and 6.0 for Windows allows remote attackers to execute arbitrary code via a long QuickTime URL. | |||||
CVE-2002-0669 | 1 Pingtel | 1 Xpressa | 2023-12-10 | 5.0 MEDIUM | N/A |
The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows administrators to cause a denial of service by modifying the SIP_AUTHENTICATE_SCHEME value to force authentication of incoming calls, which does not notify the user when an authentication failure occurs. | |||||
CVE-2001-1234 | 1 Gallery Project | 1 Gallery | 2023-12-10 | 7.5 HIGH | N/A |
Bharat Mediratta Gallery PHP script before 1.2.1 allows remote attackers to execute arbitrary code by including files from remote web sites via an HTTP request that modifies the includedir variable. | |||||
CVE-2002-0739 | 1 Postnuke Software Foundation | 1 Postcalendar | 2023-12-10 | 7.5 HIGH | N/A |
Cross-site scripting in PostCalendar 3.02 allows remote attackers to insert arbitrary HTML and script, and steal cookies, by modifying a calendar entry in its preview page. | |||||
CVE-2000-1089 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands, aka the "Phone Book Service Buffer Overflow" vulnerability. | |||||
CVE-1999-1498 | 1 Slackware | 1 Slackware Linux | 2023-12-10 | 3.6 LOW | N/A |
Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file. | |||||
CVE-1999-0596 | 2023-12-10 | 10.0 HIGH | N/A | ||
A Windows NT log file has an inappropriate maximum size or retention period. | |||||
CVE-2002-0447 | 1 Xerver | 1 Xerver | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Xerver Free Web Server 2.10 and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in an HTTP GET request. | |||||
CVE-2001-0062 | 1 Freebsd | 1 Freebsd | 2023-12-10 | 2.1 LOW | N/A |
procfs in FreeBSD and possibly other operating systems allows local users to cause a denial of service by calling mmap on the process' own mem file, which causes the kernel to hang. | |||||
CVE-1999-0514 | 2023-12-10 | 5.0 MEDIUM | N/A | ||
UDP messages to broadcast addresses are allowed, allowing for a Fraggle attack that can cause a denial of service by flooding the target. | |||||
CVE-2001-1011 | 1 Mambo | 1 Mambo Site Server | 2023-12-10 | 10.0 HIGH | N/A |
index2.php in Mambo Site Server 3.0.0 through 3.0.5 allows remote attackers to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator information in other parameters. | |||||
CVE-2001-0978 | 1 Hp | 1 Hp-ux | 2023-12-10 | 7.5 HIGH | N/A |
login in HP-UX 10.26 does not record failed login attempts in /var/adm/btmp, which could allow attackers to conduct brute force password guessing attacks without being detected or observed using the lastb program. | |||||
CVE-1999-1110 | 1 Microsoft | 1 Internet Explorer | 2023-12-10 | 5.0 MEDIUM | N/A |
Windows Media Player ActiveX object as used in Internet Explorer 5.0 returns a specific error code when a file does not exist, which allows remote malicious web sites to determine the existence of files on the client. | |||||
CVE-1999-1512 | 1 Amavis | 1 Virus Scanner | 2023-12-10 | 10.0 HIGH | N/A |
The AMaViS virus scanner 0.2.0-pre4 and earlier allows remote attackers to execute arbitrary commands as root via an infected mail message with shell metacharacters in the reply-to field. | |||||
CVE-2002-1518 | 1 Sgi | 1 Irix | 2023-12-10 | 3.6 LOW | N/A |
mv in IRIX 6.5 creates a directory with world-writable permissions while moving a directory, which could allow local users to modify files and directories. | |||||
CVE-2000-0547 | 3 Cygnus Network Security Project, Kerbnet Project, Mit | 4 Cygnus Network Security, Kerbnet, Kerberos and 1 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the localrealm variable in the process_v4 function. | |||||
CVE-2003-1168 | 1 Http Commander | 1 Http Commander | 2023-12-10 | 5.0 MEDIUM | N/A |
HTTP Commander 4.0 allows remote attackers to obtain sensitive information via an HTTP request that contains a . (dot) in the file parameter, which reveals the installation path in an error message. | |||||
CVE-2002-0914 | 1 Double Precision Incorporated | 1 Courier Mta | 2023-12-10 | 5.0 MEDIUM | N/A |
Double Precision Courier e-mail MTA allows remote attackers to cause a denial of service (CPU consumption) via a message with an extremely large or negative value for the year, which causes a tight loop. | |||||
CVE-2002-1977 | 1 Pgp | 1 Pgp | 2023-12-10 | 2.1 LOW | N/A |
Network Associates PGP 7.0.4 and 7.1 does not time out according to the value set in the "Passphrase Cache" option, which could allow attackers to open encrypted files without providing a passphrase. | |||||
CVE-2002-1158 | 1 Canna | 1 Canna | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in the irw_through function for Canna 3.5b2 and earlier allows local users to execute arbitrary code as the bin user. |