Total
266887 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-1048 | 1 Qbik | 1 Wingate | 2024-02-28 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in the logfile service of Wingate 4.1 Beta A and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack via an HTTP GET request that uses encoded characters in the URL. | |||||
CVE-1999-0441 | 1 Qbik | 1 Wingate | 2024-02-28 | 5.0 MEDIUM | N/A |
Remote attackers can perform a denial of service in WinGate machines using a buffer overflow in the Winsock Redirector Service. | |||||
CVE-2003-1390 | 1 Research Triangle Software | 1 Cryptobuddy | 2024-02-28 | 7.5 HIGH | N/A |
RTS CryptoBuddy 1.2 and earlier stores bytes 53 through 55 of a 55-byte passphrase in plaintext, which makes it easier for local users to guess the passphrase. | |||||
CVE-2004-2078 | 1 Red-m | 1 Red-alert | 2024-02-28 | 5.0 MEDIUM | N/A |
Red-M Red-Alert 2.7.5 with software 3.1 build 24 allows remote attackers to cause a denial of service (reboot and loss of logged events) via a long request to TCP port 80, possibly triggering a buffer overflow. | |||||
CVE-2000-0754 | 1 Hp | 1 Openview Network Node Manager | 2024-02-28 | 2.1 LOW | N/A |
Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords. | |||||
CVE-2001-1367 | 1 Phpslice | 1 Phpslice | 2024-02-28 | 10.0 HIGH | N/A |
The checkAccess function in PHPSlice 0.1.4, and all other versions between 0.1.1 and 0.1.6, does not properly verify the administrative access level, which could allow remote attackers to gain privileges. | |||||
CVE-2001-0708 | 1 Denicomp | 1 Rexecd | 2024-02-28 | 5.0 MEDIUM | N/A |
Denicomp REXECD 1.05 and earlier allows a remote attacker to cause a denial of service (crash) via a long string. | |||||
CVE-2004-2228 | 1 Mozilla | 1 Firefox | 2024-02-28 | 7.2 HIGH | N/A |
Mozilla Firefox before 1.0 is installed with world-writable permissions on Mac OS X, which allows local users to gain privileges. | |||||
CVE-2000-1030 | 1 Csandt | 1 Corporatetime For The Web | 2024-02-28 | 5.0 MEDIUM | N/A |
CS&T CorporateTime for the Web returns different error messages for invalid usernames and invalid passwords, which allows remote attackers to determine valid usernames on the server. | |||||
CVE-2002-1085 | 1 Visualshapers | 1 Ezcontents | 2024-02-28 | 7.5 HIGH | N/A |
Multiple cross-site scripting vulnerabilities in ezContents 1.41 and earlier allow remote attackers to execute script and steal cookies via the diary and other capabilities. | |||||
CVE-2002-2297 | 1 Atthat.com | 1 Thatware | 2024-02-28 | 6.8 MEDIUM | N/A |
PHP remote file inclusion vulnerability in artlist.php in Thatware 0.5.2 and 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter. | |||||
CVE-2001-1479 | 1 Sun | 1 Management\+center | 2024-02-28 | 2.1 LOW | N/A |
smcboot in Sun SMC (Sun Management Center) 2.0 in Solaris 8 allows local users to delete arbitrary files via a symlink attack on /tmp/smc$SMC_PORT. | |||||
CVE-2001-0889 | 2 Redhat, University Of Cambridge | 2 Linux, Exim | 2024-02-28 | 7.5 HIGH | N/A |
Exim 3.22 and earlier, in some configurations, does not properly verify the local part of an address when redirecting the address to a pipe, which could allow remote attackers to execute arbitrary commands via shell metacharacters. | |||||
CVE-2002-1200 | 1 Oneidentity | 1 Syslog-ng | 2024-02-28 | 7.5 HIGH | N/A |
Balabit Syslog-NG 1.4.x before 1.4.15, and 1.5.x before 1.5.20, when using template filenames or output, does not properly track the size of a buffer when constant characters are encountered during macro expansion, which allows remote attackers to cause a denial of service and possibly execute arbitrary code. | |||||
CVE-2002-1401 | 1 Postgresql | 1 Postgresql | 2024-02-28 | 6.5 MEDIUM | N/A |
Buffer overflows in (1) circle_poly, (2) path_encode and (3) path_add (also incorrectly identified as path_addr) for PostgreSQL 7.2.3 and earlier allow attackers to cause a denial of service and possibly execute arbitrary code, possibly as a result of an integer overflow. | |||||
CVE-2000-0691 | 1 Gert Doering | 1 Mgetty | 2024-02-28 | 2.1 LOW | N/A |
The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file. | |||||
CVE-2000-0505 | 2 Apache, Ibm | 2 Http Server, Http Server | 2024-02-28 | 5.0 MEDIUM | N/A |
The Apache 1.3.x HTTP server for Windows platforms allows remote attackers to list directory contents by requesting a URL containing a large number of / characters. | |||||
CVE-1999-0457 | 1 Debian | 1 Debian Linux | 2024-02-28 | 7.2 HIGH | N/A |
Linux ftpwatch program allows local users to gain root privileges. | |||||
CVE-2002-1498 | 1 Trevor Lee | 1 Swserver | 2024-02-28 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in SWServer 2.2 and earlier allows remote attackers to read arbitrary files via a URL containing .. sequences with "/" or "\" characters. | |||||
CVE-2001-1496 | 1 Acme | 1 Thttpd | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code. |