Total
248461 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2001-0065 | 1 Max-wilhelm Bruker | 1 Bftpd | 2024-02-28 | 10.0 HIGH | N/A |
| Buffer overflow in bftpd 1.0.13 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long SITE CHOWN command. | |||||
| CVE-2002-0307 | 1 Avengers News System | 1 Avengers News System | 2024-02-28 | 7.5 HIGH | N/A |
| Directory traversal vulnerability in ans.pl in Avenger's News System (ANS) 2.11 and earlier allows remote attackers to determine the existence of arbitrary files or execute any Perl program on the system via a .. (dot dot) in the p parameter, which reads the target file and attempts to execute the line using Perl's eval function. | |||||
| CVE-2000-0528 | 1 Network Associates | 1 Net Tools Pki Server | 2024-02-28 | 5.0 MEDIUM | N/A |
| Net Tools PKI Server does not properly restrict access to remote attackers when the XUDA template files do not contain absolute pathnames for other files. | |||||
| CVE-2002-1341 | 1 Squirrelmail | 1 Squirrelmail | 2024-02-28 | 6.8 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in read_body.php for SquirrelMail 1.2.10, 1.2.9, and earlier allows remote attackers to insert script and HTML via the (1) mailbox and (2) passed_id parameters. | |||||
| CVE-2003-0267 | 1 Bvrp Software | 1 Slwebmail | 2024-02-28 | 5.0 MEDIUM | N/A |
| ShowGodLog.dll in SLWebMail 3 on Windows systems allows remote attackers to read arbitrary files by directly calling ShowGodLog.dll with an argument specifying the full path of the target file. | |||||
| CVE-2001-0634 | 1 Sun | 1 Chilisoft | 2024-02-28 | 7.2 HIGH | N/A |
| Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local attacker to gain additional privileges and create a denial of service. | |||||
| CVE-2001-0252 | 1 Iplanet | 1 Iplanet Enterprise Server | 2024-02-28 | 5.0 MEDIUM | N/A |
| iPlanet (formerly Netscape) Enterprise Server 4.1 allows remote attackers to cause a denial of service via a long HTTP GET request that contains many "/../" (dot dot) sequences. | |||||
| CVE-2000-0717 | 1 Goodtech | 2 Ftp Server 95 98, Ftp Server Nt 2000 | 2024-02-28 | 5.0 MEDIUM | N/A |
| GoodTech FTP server allows remote attackers to cause a denial of service via a large number of RNTO commands. | |||||
| CVE-2000-0132 | 1 Microsoft | 1 Virtual Machine | 2024-02-28 | 2.6 LOW | N/A |
| Microsoft Java Virtual Machine allows remote attackers to read files via the getSystemResourceAsStream function. | |||||
| CVE-2003-1404 | 1 Dotbr | 1 Botbr | 2024-02-28 | 7.5 HIGH | N/A |
| DotBr 0.1 stores config.inc with insufficient access control under the web document root, which allows remote attackers to obtain sensitive information such as SQL usernames and passwords. | |||||
| CVE-2002-2400 | 1 Hughes Technologies | 1 Libhttpd | 2024-02-28 | 10.0 HIGH | N/A |
| Buffer overflow in the httpdProcessRequest function in LibHTTPD 1.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP POST request. | |||||
| CVE-2002-1535 | 1 Symantec | 2 Enterprise Firewall, Raptor Firewall | 2024-02-28 | 5.0 MEDIUM | N/A |
| Secure Webserver 1.1 in Raptor 6.5 and Symantec Enterprise Firewall 6.5.2 allows remote attackers to identify IP addresses of hosts on the internal network via a CONNECT request, which generates different error messages if the host is present. | |||||
| CVE-2005-0188 | 1 Athoc | 1 Athoc Toolbar | 2024-02-28 | 7.5 HIGH | N/A |
| Format string vulnerability in the SetBaseURL function in AtHoc toolbar allows remote attackers to execute arbitrary code via format string specifiers in an invalid URL that is recorded in the debug log. | |||||
| CVE-2002-2168 | 1 Thorsten Korner | 1 123tkshop | 2024-02-28 | 7.5 HIGH | N/A |
| SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including function_describe_item1.inc.php. | |||||
| CVE-2000-0762 | 2 Broadcom, Ca | 2 Etrust Access Control, Etrust Access Control | 2024-02-28 | 10.0 HIGH | N/A |
| The default installation of eTrust Access Control (formerly SeOS) uses a default encryption key, which allows remote attackers to spoof the eTrust administrator and gain privileges. | |||||
| CVE-2001-1353 | 1 Aladdin Enterprises | 1 Ghostscript | 2024-02-28 | 2.6 LOW | N/A |
| ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled. | |||||
| CVE-2001-0501 | 1 Microsoft | 1 Word | 2024-02-28 | 4.6 MEDIUM | N/A |
| Microsoft Word 2002 and earlier allows attackers to automatically execute macros without warning the user by embedding the macros in a manner that escapes detection by the security scanner. | |||||
| CVE-1999-1158 | 1 Sun | 1 Sunos | 2024-02-28 | 7.2 HIGH | N/A |
| Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd. | |||||
| CVE-1999-0941 | 1 Mutt | 1 Mutt | 2024-02-28 | 7.5 HIGH | N/A |
| Mutt mail client allows a remote attacker to execute commands via shell metacharacters. | |||||
| CVE-2002-1630 | 1 Oracle | 1 Application Server | 2024-02-28 | 7.5 HIGH | N/A |
| The sendmail.jsp sample page in Oracle 9i Application Server (9iAS) allows remote attackers to send arbitrary emails. | |||||