Total
266903 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0750 | 1 Py-membres | 1 Py-membres | 2024-02-28 | 7.5 HIGH | N/A |
secure.php in PY-Membres 4.2 and earlier allows remote attackers to bypass authentication by setting the adminpy parameter. | |||||
CVE-1999-0135 | 1 Sun | 2 Solaris, Sunos | 2024-02-28 | 7.2 HIGH | N/A |
admintool in Solaris allows a local user to write to arbitrary files and gain root access. | |||||
CVE-1999-1207 | 1 Network General | 1 Netxray | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in web-admin tool in NetXRay 2.6 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request. | |||||
CVE-1999-1141 | 1 Ascom | 1 Timeplex Routers | 2024-02-28 | 7.5 HIGH | N/A |
Ascom Timeplex router allows remote attackers to obtain sensitive information or conduct unauthorized activities by entering debug mode through a sequence of CTRL-D characters. | |||||
CVE-2003-0782 | 1 Ecartis | 1 Ecartis | 2024-02-28 | 10.0 HIGH | N/A |
Multiple buffer overflows in ecartis before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code. | |||||
CVE-2000-1192 | 1 Btt Software | 1 Snmp Trap Watcher | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in BTT Software SNMP Trap Watcher 1.16 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string trap. | |||||
CVE-2001-1107 | 1 Snapstream | 1 Pvs | 2024-02-28 | 5.0 MEDIUM | N/A |
SnapStream PVS 1.2a stores its passwords in plaintext in the file SSD.ini, which could allow a remote attacker to gain privileges on the server. | |||||
CVE-2002-1278 | 1 Jacques Gelinas | 1 Linuxconf | 2024-02-28 | 7.5 HIGH | N/A |
The mailconf module in Linuxconf 1.24, and other versions before 1.28, on Conectiva Linux 6.0 through 8, and possibly other distributions, generates the Sendmail configuration file (sendmail.cf) in a way that configures Sendmail to run as an open mail relay, which allows remote attackers to send Spam email. | |||||
CVE-2002-1731 | 1 Ibm | 1 Os 400 | 2024-02-28 | 2.1 LOW | N/A |
The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF. | |||||
CVE-2000-1025 | 1 Unify | 1 Ewave Servletexec | 2024-02-28 | 5.0 MEDIUM | N/A |
eWave ServletExec JSP/Java servlet engine, versions 3.0C and earlier, allows remote attackers to cause a denial of service via a URL that contains the "/servlet/" string, which invokes the ServletExec servlet and causes an exception if the servlet is already running. | |||||
CVE-2002-2090 | 1 Caucho Technology | 1 Resin | 2024-02-28 | 5.0 MEDIUM | N/A |
Caucho Technology Resin server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp. | |||||
CVE-2002-0786 | 1 Critical Path | 1 Injoin Directory Server | 2024-02-28 | 5.0 MEDIUM | N/A |
iCon administrative web server for Critical Path inJoin Directory Server 4.0 allows authenticated inJoin administrators to read arbitrary files by specifying the target file in the LOG parameter. | |||||
CVE-1999-0097 | 3 Hp, Ibm, Sun | 4 Hp-ux, Aix, Solaris and 1 more | 2024-02-28 | 10.0 HIGH | N/A |
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). | |||||
CVE-2001-1413 | 1 Ncompress | 1 Ncompress | 2024-02-28 | 7.5 HIGH | N/A |
Stack-based buffer overflow in the comprexx function for ncompress 4.2.4 and earlier, when used in situations that cross security boundaries (such as FTP server), may allow remote attackers to execute arbitrary code via a long filename argument. | |||||
CVE-2003-1406 | 1 Adalis Infomatique | 1 D Forum | 2024-02-28 | 7.5 HIGH | N/A |
PHP remote file inclusion vulnerability in D-Forum 1.00 through 1.11 allows remote attackers to execute arbitrary PHP code via a URL in the (1) my_header parameter to header.php3 or (2) my_footer parameter to footer.php3. | |||||
CVE-2002-0905 | 1 Ibm | 1 Informix | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in sqlexec for Informix SE-7.25 allows local users to gain root privileges via a long INFORMIXDIR environment variable. | |||||
CVE-2000-1227 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2024-02-28 | 5.0 MEDIUM | N/A |
Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause a denial of service (unavailable connections) by sending multiple SMB SMBnegprots requests but not reading the response that is sent back. | |||||
CVE-1999-0798 | 5 Bsdi, Freebsd, Openbsd and 2 more | 7 Bsd Os, Freebsd, Openbsd and 4 more | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type. | |||||
CVE-2002-1379 | 1 Openldap | 1 Openldap | 2024-02-28 | 7.5 HIGH | N/A |
OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows remote or local attackers to execute arbitrary code when libldap reads the .ldaprc file within applications that are running with extra privileges. | |||||
CVE-2003-0845 | 1 Jboss | 1 Jboss | 2024-02-28 | 7.5 HIGH | N/A |
Unknown vulnerability in the HSQLDB component in JBoss 3.2.1 and 3.0.8 on Java 1.4.x platforms, when running in the default configuration, allows remote attackers to conduct unauthorized activities and possibly execute arbitrary code via certain SQL statements to (1) TCP port 1701 in JBoss 3.2.1, and (2) port 1476 in JBoss 3.0.8. |