Total
28982 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-0370 | 1 Freebsd | 1 Freebsd | 2024-02-28 | 2.1 LOW | N/A |
The setsockopt call in the KAME Project IPv6 implementation, as used in FreeBSD 5.2, does not properly handle certain IPv6 socket options, which could allow attackers to read kernel memory and cause a system panic. | |||||
CVE-2001-1234 | 1 Gallery Project | 1 Gallery | 2024-02-28 | 7.5 HIGH | N/A |
Bharat Mediratta Gallery PHP script before 1.2.1 allows remote attackers to execute arbitrary code by including files from remote web sites via an HTTP request that modifies the includedir variable. | |||||
CVE-2003-0209 | 2 Smoothwall, Sourcefire | 2 Smoothwall, Snort | 2024-02-28 | 10.0 HIGH | N/A |
Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and earlier allows remote attackers to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow. | |||||
CVE-2002-1254 | 1 Microsoft | 2 Ie, Internet Explorer | 2024-02-28 | 7.5 HIGH | N/A |
Internet Explorer 5.5 and 6.0 allows remote attackers to bypass the cross-domain security model and access information on the local system or in other domains, and possibly execute code, via cached methods and objects, aka "Cross Domain Verification via Cached Methods." | |||||
CVE-1999-1254 | 1 Microsoft | 3 Windows 95, Windows 98, Windows Nt | 2024-02-28 | 5.0 MEDIUM | N/A |
Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows to change its routing tables. | |||||
CVE-2002-1292 | 1 Microsoft | 1 Java Virtual Machine | 2024-02-28 | 7.5 HIGH | N/A |
The Microsoft Java virtual machine (VM) build 5.0.3805 and earlier, as used in Internet Explorer, allows remote attackers to extend the Standard Security Manager (SSM) class (com.ms.security.StandardSecurityManager) and bypass intended StandardSecurityManager restrictions by modifying the (1) deniedDefinitionPackages or (2) deniedAccessPackages settings, causing a denial of service by adding Java applets to the list of applets that are prevented from running. | |||||
CVE-2000-0472 | 1 Isc | 1 Inn | 2024-02-28 | 3.6 LOW | N/A |
Buffer overflow in innd 2.2.2 allows remote attackers to execute arbitrary commands via a cancel request containing a long message ID. | |||||
CVE-2002-0800 | 1 Working Resources Inc. | 1 Badblue | 2024-02-28 | 5.0 MEDIUM | N/A |
BadBlue 1.7.0 allows remote attackers to list the contents of directories via a URL with an encoded '%' character at the end. | |||||
CVE-1999-0719 | 1 Gnu | 1 Gnumeric | 2024-02-28 | 4.6 MEDIUM | N/A |
The Guile plugin for the Gnumeric spreadsheet package allows attackers to execute arbitrary code. | |||||
CVE-1999-0230 | 1 Cisco | 1 Ios | 2024-02-28 | 5.0 MEDIUM | N/A |
Buffer overflow in Cisco 7xx routers through the telnet service. | |||||
CVE-2004-1794 | 1 Vcard4j | 1 Vcard4j | 2024-02-28 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in the VCard4J Toolkit allows remote attackers to inject arbitrary web script or HTML via the NICKNAME tag in a vCard. | |||||
CVE-2002-0429 | 1 Linux | 1 Linux Kernel | 2024-02-28 | 3.6 LOW | N/A |
The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility interface (lcall). | |||||
CVE-2002-2042 | 1 Qnx | 1 Rtos | 2024-02-28 | 7.2 HIGH | N/A |
ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes. | |||||
CVE-2002-1368 | 2 Apple, Easy Software Products | 2 Mac Os X, Cups | 2024-02-28 | 7.5 HIGH | N/A |
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding. | |||||
CVE-1999-0112 | 2 Cde, Ibm | 2 Cde, Aix | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in AIX dtterm program for the CDE. | |||||
CVE-2002-0373 | 1 Microsoft | 1 Windows Media Player | 2024-02-28 | 7.2 HIGH | N/A |
The Windows Media Device Manager (WMDM) Service in Microsoft Windows Media Player 7.1 on Windows 2000 systems allows local users to obtain LocalSystem rights via a program that calls the WMDM service to connect to an invalid local storage device, aka "Privilege Elevation through Windows Media Device Manager Service". | |||||
CVE-1999-1458 | 1 Digital | 1 Unix | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in at program in Digital UNIX 4.0 allows local users to gain root privileges via a long command line argument. | |||||
CVE-2002-1248 | 1 Northern Solutions | 1 Xeneo Web Server | 2024-02-28 | 5.0 MEDIUM | N/A |
Northern Solutions Xeneo Web Server 2.1.0.0, 2.0.759.6, and other versions before 2.1.5 allows remote attackers to cause a denial of service (crash) via a GET request for a "%" URI. | |||||
CVE-1999-0517 | 2 Hp, Sun | 2 Hp-ux, Sunos | 2024-02-28 | 7.5 HIGH | N/A |
An SNMP community name is the default (e.g. public), null, or missing. | |||||
CVE-2002-1512 | 1 Tolis Group | 1 Bru | 2024-02-28 | 6.2 MEDIUM | N/A |
xbru in BRU Workstation 17.0 allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the xbru_dscheck.dd temporary file. |