Total
266768 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1296 | 1 Sun | 2 Solaris, Sunos | 2024-02-28 | 7.2 HIGH | N/A |
Directory traversal vulnerability in priocntl system call in Solaris does allows local users to execute arbitrary code via ".." sequences in the pc_clname field of a pcinfo_t structure, which cause priocntl to load a malicious kernel module. | |||||
CVE-2004-1868 | 1 Esignal | 1 Esignal | 2024-02-28 | 7.5 HIGH | N/A |
Stack-based buffer overflow in WinSig.exe in eSignal 7.5 and 7.6 allows remote attackers to execute arbitrary code via a long STREAMQUOTE tag. | |||||
CVE-2001-0707 | 1 Denicomp | 1 Rshd | 2024-02-28 | 5.0 MEDIUM | N/A |
Denicomp RSHD 2.18 and earlier allows a remote attacker to cause a denial of service (crash) via a long string to port 514. | |||||
CVE-2003-1208 | 1 Oracle | 1 Oracle9i | 2024-02-28 | 10.0 HIGH | N/A |
Multiple buffer overflows in Oracle 9i 9 before 9.2.0.3 allow local users to execute arbitrary code by (1) setting the TIME_ZONE session parameter to a long value, or providing long parameters to the (2) NUMTOYMINTERVAL, (3) NUMTODSINTERVAL or (4) FROM_TZ functions. | |||||
CVE-2000-0704 | 3 Freewnn, Omron, Wnn | 3 Freewnn, Worldview, Wnn4 | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands. | |||||
CVE-2002-2243 | 1 Akfingerd | 1 Akfingerd | 2024-02-28 | 5.0 MEDIUM | N/A |
Akfingerd 0.5 and possibly earlier versions only allows one connection at a time and does not time out connections, which allows remote attackers to cause a denial of service (refused connections) by opening a connection and not closing it. | |||||
CVE-1999-0696 | 2 Hp, Sun | 3 Hp-ux, Solaris, Sunos | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd). | |||||
CVE-2002-1005 | 1 Argosoft | 1 Argosoft Mail Server | 2024-02-28 | 5.0 MEDIUM | N/A |
ArGoSoft Mail Server 1.8.1.7 and earlier allows a webmail user to cause a denial of service (CPU consumption) by forwarding the email to the user while autoresponse is enabled, which creates an infinite loop. | |||||
CVE-2000-0968 | 1 Valve Software | 1 Half-life Dedicated Server | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in Half Life dedicated server before build 3104 allows remote attackers to execute arbitrary commands via a long rcon command. | |||||
CVE-1999-1347 | 1 Redhat | 1 Linux | 2024-02-28 | 4.6 MEDIUM | N/A |
Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gnome or anotherlevel from kdm. | |||||
CVE-2002-1884 | 1 Py-membres | 1 Py-membres | 2024-02-28 | 7.5 HIGH | N/A |
index.php in Py-Membres 3.1 allows remote attackers to log in as an administrator by setting the pymembs parameter to "admin". | |||||
CVE-1999-0331 | 1 Microsoft | 1 Internet Explorer | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in Internet Explorer 4.0(1). | |||||
CVE-2000-0514 | 1 Mit | 1 Kerberos 5 | 2024-02-28 | 10.0 HIGH | N/A |
GSSFTP FTP daemon in Kerberos 5 1.1.x does not properly restrict access to some FTP commands, which allows remote attackers to cause a denial of service, and local users to gain root privileges. | |||||
CVE-1999-1438 | 1 Sun | 1 Sunos | 2024-02-28 | 7.2 HIGH | N/A |
Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments. | |||||
CVE-2002-1747 | 1 Maxim Krasnyansky | 1 Vtun | 2024-02-28 | 5.0 MEDIUM | N/A |
Vtun 2.5b1 does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on ECB. | |||||
CVE-2000-0652 | 1 Ibm | 1 Websphere Application Server | 2024-02-28 | 5.0 MEDIUM | N/A |
IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string. | |||||
CVE-2002-0544 | 1 Aprelium Technologies | 1 Abyss Web Server | 2024-02-28 | 7.2 HIGH | N/A |
Aprelium Abyss Web Server (abyssws) before 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges. | |||||
CVE-2002-0044 | 3 Debian, Gnu, Redhat | 3 Debian Linux, Enscript, Linux | 2024-02-28 | 3.6 LOW | N/A |
GNU Enscript 1.6.1 and earlier allows local users to overwrite arbitrary files of the Enscript user via a symlink attack on temporary files. | |||||
CVE-2004-0611 | 1 Netgear | 1 Fvs318 | 2024-02-28 | 5.0 MEDIUM | N/A |
Web-Based Administration in Netgear FVS318 VPN Router allows remote attackers to cause a denial of service (no new connections) via a large number of open HTTP connections. | |||||
CVE-2002-1474 | 1 Hp | 1 Tru64 | 2024-02-28 | 5.0 MEDIUM | N/A |
Unknown vulnerability or vulnerabilities in TCP/IP component for HP Tru64 UNIX 4.0f, 4.0g, and 5.0a allows remote attackers to cause a denial of service. |