Vulnerabilities (CVE)

Filtered by CWE-119
Total 11604 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-1395 1 Kazaa 1 Kazaa Media Desktop 2024-02-28 9.0 HIGH N/A
Buffer overflow in KaZaA Media Desktop 2.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a response to the ad server.
CVE-1999-0349 1 Microsoft 1 Internet Information Server 2024-02-28 7.5 HIGH N/A
A buffer overflow in the FTP list (ls) command in IIS allows remote attackers to conduct a denial of service and, in some cases, execute arbitrary commands.
CVE-2001-0576 1 Sco 1 Openserver 2024-02-28 4.6 MEDIUM N/A
lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additional privileges via a buffer overflow attack in the '-u' command line parameter.
CVE-2002-2400 1 Hughes Technologies 1 Libhttpd 2024-02-28 10.0 HIGH N/A
Buffer overflow in the httpdProcessRequest function in LibHTTPD 1.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP POST request.
CVE-2002-1357 7 Cisco, Fissh, Intersoft and 4 more 7 Ios, Ssh Client, Securenetterm and 4 more 2024-02-28 10.0 HIGH N/A
Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
CVE-2002-2248 1 Netscape 1 Communicator 2024-02-28 10.0 HIGH N/A
Buffer overflow in the sun.awt.windows.WDefaultFontCharset Java class implementation in Netscape 4.0 allows remote attackers to execute arbitrary code via an applet that calls the WDefaultFontCharset constructor with a long string and invokes the canConvert method.
CVE-2003-1514 1 Emule 1 Emule 2024-02-28 7.8 HIGH N/A
eMule 0.29c allows remote attackers to cause a denial of service (crash) via a long password, possibly due to a buffer overflow.
CVE-2004-1371 1 Oracle 10 Application Server, Collaboration Suite, Database Server and 7 more 2024-02-28 9.0 HIGH N/A
Stack-based buffer overflow in Oracle 9i and 10g allows remote attackers to execute arbitrary code via a long token in the text of a wrapped procedure.
CVE-2003-1339 1 Ezmeeting 1 Ezmeeting 2024-02-28 10.0 HIGH N/A
Stack-based buffer overflow in eZnet.exe, as used in eZ (a) eZphotoshare, (b) eZmeeting, (c) eZnetwork, and (d) eZshare allows remote attackers to cause a denial of service (crash) or execute arbitrary code, as demonstrated via (1) a long GET request and (2) a long operation or autologin parameter to SwEzModule.dll.
CVE-2002-2258 1 Mobydisk 1 Netsuite 2024-02-28 5.0 MEDIUM N/A
Moby NetSuite allows remote attackers to cause a denial of service (crash) via an HTTP POST request with a (1) large integer or (2) non-numeric value in the Content-Length header, which causes an access violation after a failed atoi function call.
CVE-2002-0053 1 Microsoft 6 Windows 2000, Windows 95, Windows 98 and 3 more 2024-02-28 7.5 HIGH N/A
Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be split or merged with other candidates. This and other PROTOS-related candidates, especially CVE-2002-0012 and CVE-2002-0013, will be updated when more accurate information is available.
CVE-2001-0803 1 Open Group 1 Cde Common Desktop Environment 2024-02-28 10.0 HIGH N/A
Buffer overflow in the client connection routine of libDtSvc.so.1 in CDE Subprocess Control Service (dtspcd) allows remote attackers to execute arbitrary commands.
CVE-2002-2372 1 Ibm 2 Infoprint, Infoprint 21 2024-02-28 5.0 MEDIUM N/A
The telnet server in Infoprint 21 running controller software before 1.056007 allows remote attackers to cause a denial of service (crash) via a long username, possibly due to a buffer overflow.
CVE-2003-1336 1 Mirc 1 Mirc 2024-02-28 9.3 HIGH N/A
Buffer overflow in mIRC before 6.11 allows remote attackers to execute arbitrary code via a long irc:// URL.
CVE-2003-1464 1 Siemens 2 M45, S45 2024-02-28 7.8 HIGH N/A
Buffer overflow in Siemens 45 series mobile phones allows remote attackers to cause a denial of service (disconnect and unavailable inbox) via a Short Message Service (SMS) message with a long image name.
CVE-2003-1374 1 Hp 1 Hp-ux 2024-02-28 4.6 MEDIUM N/A
Buffer overflow in disable of HP-UX 11.0 may allow local users to execute arbitrary code via a long argument to the (1) -r or (2)-c options.
CVE-2004-0638 1 Oracle 2 Oracle8i, Oracle9i 2024-02-28 8.5 HIGH N/A
Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long second argument.
CVE-2002-1365 1 Fetchmail 1 Fetchmail 2024-02-28 7.5 HIGH N/A
Heap-based buffer overflow in Fetchmail 6.1.3 and earlier does not account for the "@" character when determining buffer lengths for local addresses, which allows remote attackers to execute arbitrary code via a header with a large number of local addresses.
CVE-1999-0802 1 Microsoft 1 Internet Explorer 2024-02-28 7.6 HIGH N/A
Buffer overflow in Internet Explorer 5 allows remote attackers to execute commands via a malformed Favorites icon.
CVE-2002-2271 1 Bigfun 1 Bigfun 2024-02-28 5.0 MEDIUM N/A
Buffer overflow in BigFun 1.51b IRC client, when the Direct Client Connection (DCC) option is used, allows remote attackers to cause a denial of service (crash) via a long string.