Total
266887 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0664 | 2024-02-28 | 10.0 HIGH | N/A | ||
An application-critical Windows NT registry key has inappropriate permissions. | |||||
CVE-1999-1400 | 1 The Economist | 1 The Economist 1999 Screen Saver | 2024-02-28 | 2.1 LOW | N/A |
The Economist screen saver 1999 with the "Password Protected" option enabled allows users with physical access to the machine to bypass the screen saver and read files by running Internet Explorer while the screen is still locked. | |||||
CVE-1999-0211 | 1 Sun | 1 Sunos | 2024-02-28 | 5.0 MEDIUM | N/A |
Extra long export lists over 256 characters in some mount daemons allows NFS directories to be mounted by anyone. | |||||
CVE-2004-0732 | 1 Francisco Burzi | 1 Php-nuke | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in the Search module for Php-Nuke allows remote attackers to execute arbitrary SQL statements via the instory parameter. | |||||
CVE-2001-1401 | 1 Mozilla | 1 Bugzilla | 2024-02-28 | 7.5 HIGH | N/A |
Bugzilla before 2.14 does not properly restrict access to confidential bugs, which could allow Bugzilla users to bypass viewing permissions via modified bug id parameters in (1) process_bug.cgi, (2) show_activity.cgi, (3) showvotes.cgi, (4) showdependencytree.cgi, (5) showdependencygraph.cgi, (6) showattachment.cgi, or (7) describecomponents.cgi. | |||||
CVE-2004-1976 | 1 Smc Networks | 1 Smc7004vbr | 2024-02-28 | 7.5 HIGH | N/A |
SMC Barricade broadband router 7008ABR and 7004VBR enable remote administration by default, which allows remote attackers to gain access by connecting to port 1900. | |||||
CVE-2002-0193 | 1 Microsoft | 1 Internet Explorer | 2024-02-28 | 7.5 HIGH | N/A |
Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malformed Content-Disposition and Content-Type header fields that cause the application for the spoofed file type to pass the file back to the operating system for handling rather than raise an error message, aka the first variant of the "Content Disposition" vulnerability. | |||||
CVE-1999-0278 | 1 Microsoft | 2 Internet Information Server, Windows Nt | 2024-02-28 | 5.0 MEDIUM | N/A |
In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL. | |||||
CVE-2000-0227 | 1 Linux | 1 Linux Kernel | 2024-02-28 | 2.1 LOW | N/A |
The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a denial of service by requesting a large number of sockets. | |||||
CVE-1999-1387 | 1 Microsoft | 1 Windows Nt | 2024-02-28 | 5.0 MEDIUM | N/A |
Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by a Linux smbmount command that was compiled on the Linux 2.0.29 kernel but executed on Linux 2.0.25. | |||||
CVE-2001-0481 | 1 Mandrakesoft | 1 Mandrake Linux | 2024-02-28 | 7.2 HIGH | N/A |
Vulnerability in rpmdrake in Mandrake Linux 8.0 related to insecure temporary file handling. | |||||
CVE-2004-1618 | 1 Vypress | 1 Tonecast | 2024-02-28 | 5.0 MEDIUM | N/A |
Vypress Tonecast 1.3 and earlier allows remote attackers to cause a denial of service (application crash) via a malformed mp2 stream. | |||||
CVE-2002-0834 | 1 Ethereal Group | 1 Ethereal | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets. | |||||
CVE-2001-0015 | 1 Microsoft | 1 Windows 2000 | 2024-02-28 | 7.2 HIGH | N/A |
Network Dynamic Data Exchange (DDE) in Windows 2000 allows local users to gain SYSTEM privileges via a "WM_COPYDATA" message to an invisible window that is running with the privileges of the WINLOGON process. | |||||
CVE-1999-1066 | 1 Sgi | 1 Quake 1 Server | 2024-02-28 | 5.0 MEDIUM | N/A |
Quake 1 server responds to an initial UDP game connection request with a large amount of traffic, which allows remote attackers to use the server as an amplifier in a "Smurf" style attack on another host, by spoofing the connection request. | |||||
CVE-1999-0830 | 1 Sco | 1 Unixware | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in SCO UnixWare Xsco command via a long argument. | |||||
CVE-2003-0176 | 1 Sgi | 1 Irix | 2024-02-28 | 5.0 MEDIUM | N/A |
The Name Service Daemon (nsd), when running on an NIS master on SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, allows remote attackers to cause a denial of service (crash) via a UDP port scan. | |||||
CVE-2001-1491 | 1 Opera Software | 1 Opera Web Browser | 2024-02-28 | 5.0 MEDIUM | N/A |
Opera 5.11 allows remote attackers to cause a denial of service (CPU consumption and memory leak) via a web page with a large number of images. | |||||
CVE-2000-0387 | 1 Alexander Siegel | 1 Golddig | 2024-02-28 | 2.1 LOW | N/A |
The makelev program in the golddig game from the FreeBSD ports collection allows local users to overwrite arbitrary files. | |||||
CVE-2000-0457 | 1 Microsoft | 2 Internet Information Server, Internet Information Services | 2024-02-28 | 7.5 HIGH | N/A |
ISM.DLL in IIS 4.0 and 5.0 allows remote attackers to read file contents by requesting the file and appending a large number of encoded spaces (%20) and terminated with a .htr extension, aka the ".HTR File Fragment Reading" or "File Fragment Reading via .HTR" vulnerability. |