Total
28982 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-1050 | 1 Ibm | 1 Db2 | 2024-02-28 | 7.2 HIGH | N/A |
Multiple buffer overflows in IBM DB2 Universal Database 8.1 may allow local users to execute arbitrary code via long command line arguments to (1) db2start, (2) db2stop, or (3) db2govd. | |||||
CVE-2002-2222 | 2 Freebsd, Openbsd | 2 Ports Collection, Openbsd | 2024-02-28 | 5.1 MEDIUM | N/A |
isakmpd/message.c in isakmpd in FreeBSD before isakmpd-20020403_1, and in OpenBSD 3.1, allows remote attackers to cause a denial of service (crash) by sending Internet Key Exchange (IKE) payloads out of sequence. | |||||
CVE-1999-1076 | 1 Apple | 1 Macos | 2024-02-28 | 4.6 MEDIUM | N/A |
Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selecting a "Cancel" option in the dialog box for an application that attempts to verify that the user wants to log out, which returns the attacker into the locked session. | |||||
CVE-2002-0096 | 1 Geeklog | 1 Geeklog | 2024-02-28 | 7.2 HIGH | N/A |
The installation of Geeklog 1.3 creates an extra group_assignments record which is not properly deleted, which causes the first newly created user to be added to the GroupAdmin and UserAdmin groups, which could provide that user with administrative privileges that were not intended. | |||||
CVE-1999-0920 | 1 University Of Washington | 2 Imap, Pop2d | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command. | |||||
CVE-2002-2028 | 1 Microsoft | 3 Windows 2000, Windows Nt, Windows Xp | 2024-02-28 | 2.1 LOW | N/A |
The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing. | |||||
CVE-2003-0706 | 1 Nicolas Boullis | 1 Mah-jong | 2024-02-28 | 5.0 MEDIUM | N/A |
Unknown vulnerability in mah-jong 1.5.6 and earlier allows remote attackers to cause a denial of service (tight loop). | |||||
CVE-2000-0055 | 1 Sun | 2 Solaris, Sunos | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option. | |||||
CVE-1999-1022 | 1 Sgi | 1 Irix | 2024-02-28 | 6.2 MEDIUM | N/A |
serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls program, which allows local users to gain root privileges via a Trojan horse ls program. | |||||
CVE-2004-0181 | 1 Linux | 1 Linux Kernel | 2024-02-28 | 2.1 LOW | N/A |
The JFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the JFS file system, which allows local users to obtain sensitive information by reading the raw device. | |||||
CVE-2004-2062 | 1 Antiboard | 1 Antiboard | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in antiboard.php in AntiBoard 0.7.2 and earlier allows remote attackers to execute arbitrary SQL via the (1) thread_id, (2) parent_id, or (3) mode parameters. | |||||
CVE-2000-0057 | 1 Allaire | 1 Coldfusion Server | 2024-02-28 | 7.5 HIGH | N/A |
Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information. | |||||
CVE-2000-0296 | 1 Michael A. Gumienny | 1 Fcheck | 2024-02-28 | 7.2 HIGH | N/A |
fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck. | |||||
CVE-2000-1120 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in digest command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands. | |||||
CVE-1999-0735 | 1 Kde | 1 K-mail | 2024-02-28 | 4.6 MEDIUM | N/A |
KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories. | |||||
CVE-2003-0354 | 1 Redhat | 1 Linux | 2024-02-28 | 7.5 HIGH | N/A |
Unknown vulnerability in GNU Ghostscript before 7.07 allows attackers to execute arbitrary commands, even when -dSAFER is enabled, via a PostScript file that causes the commands to be executed from a malicious print job. | |||||
CVE-2002-1728 | 1 Asksam Systems | 1 Asksam Web Publisher | 2024-02-28 | 5.0 MEDIUM | N/A |
askSam Web Publisher 1.0 and 4.0 allows remote attackers to determine the full path to the web root directory via a request for a file that does not exist, which generates an error message that reveals the full path. | |||||
CVE-2002-1462 | 1 Organicphp | 1 Php-affiliate | 2024-02-28 | 5.0 MEDIUM | N/A |
details2.php in OrganicPHP PHP-affiliate 1.0, and possibly later versions, allows remote attackers to modify information of other users by modifying certain hidden form fields. | |||||
CVE-2004-0646 | 1 Macromedia | 2 Coldfusion, Jrun | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in the WriteToLog function for JRun 3.0 through 4.0 web server connectors, such as (1) mod_jrun and (2) mod_jrun20 for Apache, with verbose logging enabled, allows remote attackers to execute arbitrary code via a long HTTP header Content-Type field or other fields. | |||||
CVE-2004-0038 | 1 Mcafee | 1 Epolicy Orchestrator | 2024-02-28 | 7.5 HIGH | N/A |
McAfee ePolicy Orchestrator (ePO) 2.5.1 Patch 13 and 3.0 SP2a Patch 3 allows remote attackers to execute arbitrary commands via certain HTTP POST requests to the spipe/file handler on ePO TCP port 81. |