Total
266133 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1156 | 1 Apache | 1 Http Server | 2024-02-28 | 5.0 MEDIUM | N/A |
Apache 2.0.42 allows remote attackers to view the source code of a CGI script via a POST request to a directory with both WebDAV and CGI enabled. | |||||
CVE-2000-0547 | 3 Cygnus Network Security Project, Kerbnet Project, Mit | 4 Cygnus Network Security, Kerbnet, Kerberos and 1 more | 2024-02-28 | 5.0 MEDIUM | N/A |
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the localrealm variable in the process_v4 function. | |||||
CVE-2000-0582 | 1 Checkpoint | 1 Firewall-1 | 2024-02-28 | 5.0 MEDIUM | N/A |
Check Point FireWall-1 4.0 and 4.1 allows remote attackers to cause a denial of service by sending a stream of invalid commands (such as binary zeros) to the SMTP Security Server proxy. | |||||
CVE-2001-0309 | 1 Redhat | 1 Linux | 2024-02-28 | 5.0 MEDIUM | N/A |
inetd in Red Hat 6.2 does not properly close sockets for internal services such as chargen, daytime, echo, etc., which allows remote attackers to cause a denial of service via a series of connections to the internal services. | |||||
CVE-2002-2238 | 1 Kunani | 1 Kunani Odbc Ftp Server | 2024-02-28 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in the Kunani ODBC FTP Server 1.0.10 allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) in a GET request. | |||||
CVE-2002-1169 | 1 Ibm | 1 Websphere Caching Proxy Server | 2024-02-28 | 5.0 MEDIUM | N/A |
IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to cause a denial of service (crash) via an HTTP request to helpout.exe with a missing HTTP version number, which causes ibmproxy.exe to crash. | |||||
CVE-2001-0259 | 1 Ssh | 1 Ssh | 2024-02-28 | 3.6 LOW | N/A |
ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES-1 magic phrase generated by another user, which the attacker can use to decrypt that user's private key file. | |||||
CVE-2000-0182 | 1 Iplanet | 1 Iplanet Web Server | 2024-02-28 | 5.0 MEDIUM | N/A |
iPlanet Web Server 4.1 allows remote attackers to cause a denial of service via a large number of GET commands, which consumes memory and causes a kernel panic. | |||||
CVE-1999-0402 | 1 Gnu | 1 Wget | 2024-02-28 | 5.0 MEDIUM | N/A |
wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself. | |||||
CVE-2001-0706 | 1 Maxum Development Corporation | 1 Rumpus Ftp Server | 2024-02-28 | 2.1 LOW | N/A |
Maximum Rumpus FTP Server 2.0.3 dev and before allows an attacker to cause a denial of service (crash) via a mkdir command that specifies a large number of sub-folders. | |||||
CVE-2004-2172 | 1 Netsourcecommerce | 1 Productcart | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
EarlyImpact ProductCart uses a weak encryption scheme to encrypt passwords, which allows remote attackers to obtain the password via a chosen plaintext attack. | |||||
CVE-2004-1089 | 1 Apple | 4 Darwin Streaming Server, Mac Os X, Mac Os X Server and 1 more | 2024-02-28 | 4.6 MEDIUM | N/A |
Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. | |||||
CVE-1999-1168 | 1 Iss | 1 Internet Security Scanner | 2024-02-28 | 7.2 HIGH | N/A |
install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file. | |||||
CVE-2003-0066 | 1 Rxvt | 1 Rxvt | 2024-02-28 | 7.5 HIGH | N/A |
The rxvt terminal emulator 2.7.8 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands. | |||||
CVE-2002-0741 | 1 Psychoid | 1 Psybnc | 2024-02-28 | 5.0 MEDIUM | N/A |
psyBNC 2.3 allows remote attackers to cause a denial of service (CPU consumption and resource exhaustion) by sending a PASS command with a long password argument and quickly killing the connection, which is not properly terminated by psyBNC. | |||||
CVE-2001-0192 | 1 Davide Libenzi | 1 Xmail | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfileget or domaindel functions. | |||||
CVE-1999-0141 | 1 Netscape | 1 Navigator | 2024-02-28 | 3.7 LOW | N/A |
Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet. | |||||
CVE-1999-1539 | 1 Qpc Software | 2 Qvt Net, Qvt Term Plus | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in FTP server in QPC Software's QVT/Term Plus versions 4.2d and 4.3 and QVT/Net 4.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long (1) user name or (2) password. | |||||
CVE-2003-0338 | 1 Wsmp3 | 2 Wsmp3 Daemon, Wsmp3 Web Server | 2024-02-28 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in WsMp3 daemon (WsMp3d) 0.0.10 and earlier allows remote attackers to read and execute arbitrary files via .. (dot dot) sequences in HTTP GET or POST requests. | |||||
CVE-2002-1583 | 1 Ibm | 1 Db2 Universal Database | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in sqllib/security/db2ckpw for IBM DB2 Universal Database 6.0 and 7.0 allows local users to execute arbitrary code via a long username that is read from a file descriptor argument. |