Total
266158 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0505 | 1 Microsoft | 1 Services | 2024-02-28 | 5.0 MEDIUM | N/A |
Multiple memory leaks in Microsoft Services for Unix 2.0 allow remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed requests to (1) the Telnet service, or (2) the NFS service. | |||||
CVE-2004-0035 | 1 Phorum | 1 Phorum | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in register.php for Phorum 3.4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the hide_email parameter. | |||||
CVE-2001-0382 | 1 Broadcom | 1 Ccc Harvest | 2024-02-28 | 7.5 HIGH | N/A |
Computer Associates CCC\Harvest 5.0 for Windows NT/2000 uses weak encryption for passwords, which allows a remote attacker to gain privileges on the application. | |||||
CVE-1999-0296 | 1 Sun | 2 Solaris, Sunos | 2024-02-28 | 7.2 HIGH | N/A |
Solaris volrmmount program allows attackers to read any file. | |||||
CVE-2004-1944 | 1 Qualcomm | 1 Eudora | 2024-02-28 | 5.0 MEDIUM | N/A |
Eudora 6.1 and 6.0.3 for Windows allows remote attackers to cause a denial of service (crash) via a deeply nested multipart MIME message. | |||||
CVE-1999-0979 | 1 Sco | 1 Unixware | 2024-02-28 | 7.2 HIGH | N/A |
The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed. | |||||
CVE-2004-0151 | 1 Xintercepttalk | 1 Xitalk | 2024-02-28 | 7.2 HIGH | N/A |
Unknown vulnerability in xitalk 1.1.11 and earlier allows local users to execute arbitrary commands. | |||||
CVE-2002-2255 | 1 Phpbb | 1 Phpbb | 2024-02-28 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in search.php in phpBB 2.0.3 and possibly earlier versions allows remote attackers to inject arbitrary web script or HTML via the search_username parameter in searchuser mode. | |||||
CVE-2004-0058 | 1 Linux | 1 Linux Kernel | 2024-02-28 | 2.1 LOW | N/A |
Antivir / Linux 2.0.9-9, and possibly earlier versions, allows local users to overwrite arbitrary files via a symlink attack on the .pid_antivir_$$ temporary file. | |||||
CVE-2000-0891 | 1 Ibm | 1 Lotus Notes | 2024-02-28 | 7.5 HIGH | N/A |
A default ECL in Lotus Notes before 5.02 allows remote attackers to execute arbitrary commands by attaching a malicious program in an email message that is automatically executed when the user opens the email. | |||||
CVE-2002-2246 | 1 Deerfield | 1 Visnetic Website | 2024-02-28 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in VisNetic Website before 3.5.15 allows remote attackers to inject arbitrary web script or HTML via the HTTP referer header (HTTP_REFERER) to a non-existent page, which is injected into the resulting 404 error page. | |||||
CVE-2003-1045 | 1 Mozilla | 1 Bugzilla | 2024-02-28 | 5.0 MEDIUM | N/A |
votes.cgi in Bugzilla 2.16.3 and earlier, and 2.17.1 through 2.17.4, allows remote attackers to read a user's voting page when that user has voted on a restricted bug, which allows remote attackers to read potentially sensitive voting information by modifying the who parameter. | |||||
CVE-1999-0376 | 1 Microsoft | 1 Windows Nt | 2024-02-28 | 4.6 MEDIUM | N/A |
Local users in Windows NT can obtain administrator privileges by changing the KnownDLLs list to reference malicious programs. | |||||
CVE-2002-0418 | 1 Endymion | 1 Sake Mail | 2024-02-28 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in the com.endymion.sake.servlet.mail.MailServlet servlet for Endymion SakeMail 1.0.36 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) and a null character in the param_name parameter. | |||||
CVE-2000-0964 | 1 Siemens | 1 Hinet Lp | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in the web administration service for the HiNet LP5100 IP-phone allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request. | |||||
CVE-2000-0272 | 1 Realnetworks | 1 Realserver | 2024-02-28 | 7.8 HIGH | N/A |
RealNetworks RealServer allows remote attackers to cause a denial of service by sending malformed input to the server at port 7070. | |||||
CVE-2000-0277 | 1 Microsoft | 1 Excel | 2024-02-28 | 7.2 HIGH | N/A |
Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which could allow an attacker to execute a macro virus, aka the "XLM Text Macro" vulnerability. | |||||
CVE-2000-0006 | 2 Linux, Paul Kranenburg | 2 Linux Kernel, Strace | 2024-02-28 | 2.6 LOW | N/A |
strace allows local users to read arbitrary files via memory mapped file names. | |||||
CVE-2001-1169 | 1 Bell Communications Research | 1 S Key | 2024-02-28 | 7.5 HIGH | N/A |
keyinit in S/Key does not require authentication to initialize a one-time password sequence, which allows an attacker who has gained privileges to a user account to create new one-time passwords for use in other activities that may use S/Key authentication, such as sudo. | |||||
CVE-2001-0716 | 1 Citrix | 1 Metaframe | 2024-02-28 | 5.0 MEDIUM | N/A |
Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and earlier, allows remote attackers to cause a denial of service (crash) via a large number of incomplete connections to the server. |