Total
250744 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-1200 | 1 Vintra Systems | 1 Smtp Mailserver | 2023-12-10 | 5.0 MEDIUM | N/A |
Vintra SMTP MailServer allows remote attackers to cause a denial of service via a malformed "EXPN *@" command. | |||||
CVE-2002-1851 | 1 Ipswitch | 1 Ws Ftp Pro | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors. | |||||
CVE-2004-0180 | 1 Cvs | 1 Cvs | 2023-12-10 | 2.6 LOW | N/A |
The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405. | |||||
CVE-2001-0449 | 1 Winzip | 1 Winzip | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in WinZip 8.0 allows attackers to execute arbitrary commands via a long file name that is processed by the /zipandemail command line option. | |||||
CVE-2001-0185 | 1 Netopia | 1 R9100 Router | 2023-12-10 | 5.0 MEDIUM | N/A |
Netopia R9100 router version 4.6 allows authenticated users to cause a denial of service by using the router's telnet program to connect to the router's IP address, which causes a crash. | |||||
CVE-1999-1362 | 1 Microsoft | 1 Windows Nt | 2023-12-10 | 2.1 LOW | N/A |
Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters. | |||||
CVE-2001-0060 | 1 Stunnel | 1 Stunnel | 2023-12-10 | 10.0 HIGH | N/A |
Format string vulnerability in stunnel 3.8 and earlier allows attackers to execute arbitrary commands via a malformed ident username. | |||||
CVE-2002-0142 | 1 Pi3 | 1 Pi3web | 2023-12-10 | 7.5 HIGH | N/A |
CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters. | |||||
CVE-2004-2209 | 1 Ideal Science | 1 Idealbb | 2023-12-10 | 7.5 HIGH | N/A |
SQL injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors. | |||||
CVE-1999-0402 | 1 Gnu | 1 Wget | 2023-12-10 | 5.0 MEDIUM | N/A |
wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself. | |||||
CVE-2002-1685 | 1 Working Resources Inc. | 1 Badblue | 2023-12-10 | 4.3 MEDIUM | N/A |
Cross-site scripting vulnerability (XSS) in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI. | |||||
CVE-1999-0276 | 1 Hughes | 1 Msql | 2023-12-10 | 7.5 HIGH | N/A |
mSQL v2.0.1 and below allows remote execution through a buffer overflow. | |||||
CVE-2001-0423 | 1 Sun | 1 Solaris | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in ipcs in Solaris 7 x86 allows local users to execute arbitrary code via a long TZ (timezone) environmental variable, a different vulnerability than CAN-2002-0093. | |||||
CVE-2002-1595 | 1 Cisco | 1 Sn 5420 Storage Router Firmware | 2023-12-10 | 5.0 MEDIUM | N/A |
Cisco SN 5420 Storage Router 1.1(5) and earlier allows attackers to read configuration files without authorization. | |||||
CVE-2001-0720 | 1 Apple | 1 Mac Os X | 2023-12-10 | 7.5 HIGH | N/A |
Internet Explorer 5.1 for Macintosh on Mac OS X allows remote attackers to execute arbitrary commands by causing a BinHex or MacBinary file type to be downloaded, which causes the files to be executed if automatic decoding is enabled. | |||||
CVE-2000-0962 | 1 Openbsd | 1 Openbsd | 2023-12-10 | 5.0 MEDIUM | N/A |
The IPSEC implementation in OpenBSD 2.7 does not properly handle empty AH/ESP packets, which allows remote attackers to cause a denial of service. | |||||
CVE-2001-0115 | 1 Sun | 2 Solaris, Sunos | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter. | |||||
CVE-2001-0895 | 1 Cisco | 11 Catalyst 2900xl, Catalyst 2948g-l3, Catalyst 2950 and 8 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Multiple Cisco networking products allow remote attackers to cause a denial of service on the local network via a series of ARP packets sent to the router's interface that contains a different MAC address for the router, which eventually causes the router to overwrite the MAC address in its ARP table. | |||||
CVE-2001-1261 | 1 Avaya | 1 Argent Office | 2023-12-10 | 5.0 MEDIUM | N/A |
Avaya Argent Office 2.1 may allow remote attackers to change hold music by spoofing a legitimate server's response to a TFTP broadcast and providing an alternate HoldMusic file. | |||||
CVE-1999-1422 | 1 Slackware | 1 Slackware Linux | 2023-12-10 | 7.2 HIGH | N/A |
The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, which could allow local users to create Trojan horse programs that are inadvertently executed by other users. |