Total
266766 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0668 | 3 Conectiva, Michael K. Johnson, Redhat | 3 Linux, Pam Console, Linux | 2024-02-28 | 5.0 MEDIUM | N/A |
pam_console PAM module in Linux systems allows a user to access the system console and reboot the system when a display manager such as gdm or kdm has XDMCP enabled. | |||||
CVE-1999-0624 | 2024-02-28 | N/A | N/A | ||
The rstat/rstatd service is running. | |||||
CVE-2003-0294 | 1 Php-proxima | 1 Php-proxima | 2024-02-28 | 5.0 MEDIUM | N/A |
autohtml.php in php-proxima 6.0 and earlier allows remote attackers to read arbitrary files via the name parameter in a modload operation. | |||||
CVE-1999-1170 | 2 Ipswitch, Progress | 2 Imail, Ws Ftp Server | 2024-02-28 | 4.6 MEDIUM | N/A |
IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920. | |||||
CVE-2001-0559 | 1 Paul Vixie | 1 Vixie Cron | 2024-02-28 | 7.2 HIGH | N/A |
crontab in Vixie cron 3.0.1 and earlier does not properly drop privileges after the failed parsing of a modification operation, which could allow a local attacker to gain additional privileges when an editor is called to correct the error. | |||||
CVE-2002-1271 | 1 Perl-mailtools | 1 Perl-mailtools | 2024-02-28 | 7.5 HIGH | N/A |
The Mail::Mailer Perl module in the perl-MailTools package 1.47 and earlier uses mailx as the default mailer, which allows remote attackers to execute arbitrary commands by inserting them into the mail body, which is then processed by mailx. | |||||
CVE-2000-1001 | 1 Element N.v | 1 Element Instantshop | 2024-02-28 | 7.5 HIGH | N/A |
add_2_basket.asp in Element InstantShop allows remote attackers to modify price information via the "price" hidden form variable. | |||||
CVE-2001-1415 | 1 Openbsd | 1 Openbsd | 2024-02-28 | 4.6 MEDIUM | N/A |
vi.recover in OpenBSD before 3.1 allows local users to remove arbitrary zero-byte files such as device nodes. | |||||
CVE-2003-1080 | 1 Sun | 2 Solaris, Sunos | 2024-02-28 | 1.2 LOW | N/A |
Unknown vulnerability in mail for Solaris 2.6 through 9 allows local users to read the email of other users. | |||||
CVE-2002-0086 | 1 Ibm | 1 Lotus Domino | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in bindsock in Lotus Domino 5.0.4 and 5.0.7 on Linux allows local users to gain root privileges via a long (1) Notes_ExecDirectory or (2) PATH environment variable. | |||||
CVE-2000-1142 | 1 Recourse Technologies | 1 Mantrap | 2024-02-28 | 2.1 LOW | N/A |
Recourse ManTrap 1.6 generates an error when an attacker cd's to /proc/self/cwd and executes the pwd command, which allows attackers to determine that they are in a honeypot system. | |||||
CVE-1999-0206 | 1 Eric Allman | 1 Sendmail | 2024-02-28 | 10.0 HIGH | N/A |
MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access. | |||||
CVE-2002-2140 | 1 Cisco | 1 Pix Firewall Software | 2024-02-28 | 5.0 MEDIUM | N/A |
Buffer overflow in Cisco PIX Firewall 5.2.x to 5.2.8, 6.0.x to 6.0.3, 6.1.x to 6.1.3, and 6.2.x to 6.2.1 allows remote attackers to cause a denial of service via HTTP traffic authentication using (1) TACACS+ or (2) RADIUS. | |||||
CVE-1999-0398 | 1 Ssh | 2 Ssh, Ssh2 | 2024-02-28 | 4.6 MEDIUM | N/A |
In some instances of SSH 1.2.27 and 2.0.11 on Linux systems, SSH will allow users with expired accounts to login. | |||||
CVE-2002-1126 | 2 Galeon, Mozilla | 2 Galeon Browser, Mozilla | 2024-02-28 | 2.6 LOW | N/A |
Mozilla 1.1 and earlier, and Mozilla-based browsers such as Netscape and Galeon, set the document referrer too quickly in certain situations when a new page is being loaded, which allows web pages to determine the next page that is being visited, including manually entered URLs, using the onunload handler. | |||||
CVE-1999-0974 | 1 Sun | 2 Solaris, Sunos | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service. | |||||
CVE-2001-1081 | 2 Lucent, Simon Horms | 2 Radius, Radius | 2024-02-28 | 7.5 HIGH | N/A |
Format string vulnerabilities in Livingston/Lucent RADIUS before 2.1.va.1 may allow local or remote attackers to cause a denial of service and possibly execute arbitrary code via format specifiers that are injected into log messages. | |||||
CVE-2003-1351 | 1 Greg Billock | 1 Edittag | 2024-02-28 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in edittag.cgi in EditTag 1.1 allows remote attackers to read arbitrary files via a "%2F.." (encoded slash dot dot) in the file parameter. | |||||
CVE-2004-1438 | 1 Subversion | 1 Subversion | 2024-02-28 | 2.1 LOW | N/A |
The mod_authz_svn Apache module for Subversion 1.0.4-r1 and earlier allows remote authenticated users, with write access to the repository, to read unauthorized parts of the repository via the svn copy command. | |||||
CVE-2004-0113 | 1 Apache | 1 Http Server | 2024-02-28 | 5.0 MEDIUM | N/A |
Memory leak in ssl_engine_io.c for mod_ssl in Apache 2 before 2.0.49 allows remote attackers to cause a denial of service (memory consumption) via plain HTTP requests to the SSL port of an SSL-enabled server. |