Vulnerabilities (CVE)

Total 172354 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-0088 1 Ibm 1 Aix 2008-09-05 10.0 HIGH N/A
IRIX and AIX automountd services (autofsd) allow remote users to execute root commands.
CVE-1999-0089 1 Ibm 1 Aix 2008-09-05 7.2 HIGH N/A
Buffer overflow in AIX libDtSvc library can allow local users to gain root access.
CVE-1999-0119 1 Microsoft 1 Windows Nt 2008-09-05 10.0 HIGH N/A
Windows NT 4.0 beta allows users to read and delete shares.
CVE-1999-0123 1 Slackware 1 Slackware Linux 2008-09-05 3.7 LOW N/A
Race condition in Linux mailx command allows local users to read user files.
CVE-1999-0140 1 Microsoft 1 Windows Nt 2008-09-05 5.0 MEDIUM N/A
Denial of service in RAS/PPTP on NT systems.
CVE-1999-0231 1 Seattle Lab Software 1 Slmail 2008-09-05 5.0 MEDIUM N/A
Buffer overflow in IP-Switch IMail and Seattle Labs Slmail 2.6 packages using a long VRFY command, causing a denial of service and possibly remote access.
CVE-1999-0248 1 Ssh 1 Ssh 2008-09-05 10.0 HIGH N/A
A race condition in the authentication agent mechanism of sshd 1.2.17 allows an attacker to steal another user's credentials.
CVE-1999-0285 1 Microsoft 1 Windows Nt 2008-09-05 10.0 HIGH N/A
Denial of service in telnet from the Windows NT Resource Kit, by opening then immediately closing a connection.
CVE-1999-0299 1 Freebsd 1 Freebsd 2008-09-05 9.3 HIGH N/A
Buffer overflow in FreeBSD lpd through long DNS hostnames.
CVE-2008-3935 1 D-ic 2 Shop V50, Shop V52 2008-09-05 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in DIC shop_v50 3.0 and earlier and shop_v52 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2008-3937 1 Opendb 1 Opendb 2008-09-05 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in Open Media Collectors Database (OpenDb) 1.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) user_id parameter in an edit action to user_admin.php, the (2) title parameter to listings.php, and the (3) redirect_url parameter to user_profile.php.
CVE-2008-3938 1 Opendb 1 Opendb 2008-09-05 5.8 MEDIUM N/A
Cross-site request forgery (CSRF) vulnerability in user_admin.php in Open Media Collectors Database (OpenDb) 1.0.6 allows remote attackers to change arbitrary passwords via an update_password action.
CVE-2008-3939 1 Avtech 1 Pager Enterprise 2008-09-05 5.0 MEDIUM N/A
Directory traversal vulnerability in the web interface in AVTECH PageR Enterprise before 5.0.7 allows remote attackers to read arbitrary files via directory traversal sequences in the URI.
CVE-1999-0549 1 Microsoft 1 Windows Nt 2008-09-05 7.2 HIGH N/A
Windows NT automatically logs in an administrator upon rebooting.
CVE-1999-1589 1 Ibm 1 Aix 2008-09-05 7.2 HIGH N/A
Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via unknown attack vectors.
CVE-2002-1432 1 Coxco Support 7 A-cart, Metacart, Midicart Asp and 4 more 2008-09-05 5.0 MEDIUM N/A
MidiCart stores the midicart.mdb database file under the Web document root, which allows remote attackers to steal sensitive information by directly requesting the database.
CVE-2002-1991 1 Oscommerce 1 Oscommerce 2008-09-05 7.5 HIGH N/A
PHP file inclusion vulnerability in osCommerce 2.1 execute arbitrary commands via the include_file parameter to include_once.php.
CVE-2002-2230 1 Ikonboard 1 Ikonboard 2008-09-05 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Ikonboard 3.1.1 allows remote attackers to inject arbitrary web script or HTML via a private message with a javascript: URL in the IMG tag, in which the URL ends in a ".gif" or ".jpg" string, a variant of CVE-2002-0328.
CVE-2003-1562 1 Openbsd 1 Openssh 2008-09-05 7.6 HIGH N/A
sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is disabled and using PAM keyboard-interactive authentication, does not insert a delay after a root login attempt with the correct password, which makes it easier for remote attackers to use timing differences to determine if the password step of a multi-step authentication is successful, a different vulnerability than CVE-2003-0190.
CVE-2004-2182 1 Macromedia 1 Jrun 2008-09-05 7.5 HIGH N/A
Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user sessions by pre-setting the user session ID information used by the session server.