Total
268926 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0996 | 1 Infoseek | 1 Ultraseek Server | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request. | |||||
CVE-2000-1187 | 1 Netscape | 2 Communicator, Navigator | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field. | |||||
CVE-2003-1480 | 2 Mysql, Oracle | 2 Mysql, Mysql | 2024-02-28 | 4.3 MEDIUM | N/A |
MySQL 3.20 through 4.1.0 uses a weak algorithm for hashed passwords, which makes it easier for attackers to decrypt the password via brute force methods. | |||||
CVE-2004-1146 | 1 Cvstrac | 1 Cvstrac | 2024-02-28 | 4.3 MEDIUM | N/A |
Multiple cross-site scripting (XSS) vulnerabilities in (1) main.c and (2) login.c for CVSTrac before 1.1.5 allow remote attackers to inject arbitrary HTML and web script. | |||||
CVE-2003-0755 | 1 Gtkftpd | 1 Gtkftp | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in sys_cmd.c for gtkftpd 1.0.4 and earlier allows remote attackers to execute arbitrary code by creating long directory names and listing them with a LIST command. | |||||
CVE-2000-0243 | 1 Analogx | 1 Simpleserver Www | 2024-02-28 | 5.0 MEDIUM | N/A |
AnalogX SimpleServer:WWW HTTP server 1.03 allows remote attackers to cause a denial of service via a short GET request to cgi-bin. | |||||
CVE-2003-1345 | 1 Follett Software | 1 Webcollection Plus | 2024-02-28 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in s.dll in WebCollection Plus 5.00 allows remote attackers to view arbitrary files in c:\ via a full pathname in the d parameter. | |||||
CVE-2001-1153 | 1 Caldera | 1 Openunix | 2024-02-28 | 7.2 HIGH | N/A |
lpsystem in OpenUnix 8.0.0 allows local users to cause a denial of service and possibly execute arbitrary code via a long command line argument. | |||||
CVE-2002-1322 | 1 Rational Software | 1 Clearcase | 2024-02-28 | 5.0 MEDIUM | N/A |
Rational ClearCase 4.1, 2002.05, and possibly other versions allows remote attackers to cause a denial of service (crash) via certain packets to port 371, e.g. via nmap. | |||||
CVE-1999-0194 | 2024-02-28 | 5.0 MEDIUM | N/A | ||
Denial of service in in.comsat allows attackers to generate messages. | |||||
CVE-2002-1548 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
Unknown vulnerability in autofs on AIX 4.3.0, when using executable maps, allows attackers to execute arbitrary commands as root, possibly related to "string handling around how the executable map is called." | |||||
CVE-2004-1339 | 1 Oracle | 2 Database Server, Oracle9i | 2024-02-28 | 6.5 MEDIUM | N/A |
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS default triggers in Oracle 9i and 10g allows remote attackers to execute arbitrary SQL commands via the new.table_name or new.column_name parameters. | |||||
CVE-2004-0219 | 1 Openbsd | 1 Openbsd | 2024-02-28 | 5.0 MEDIUM | N/A |
isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with a malformed IPSEC SA payload, as demonstrated by the Striker ISAKMP Protocol Test Suite. | |||||
CVE-1999-0532 | 2024-02-28 | N/A | N/A | ||
A DNS server allows zone transfers. | |||||
CVE-2002-0889 | 1 Qualcomm | 1 Qpopper | 2024-02-28 | 4.6 MEDIUM | N/A |
Buffer overflow in Qpopper (popper) 4.0.4 and earlier allows local users to cause a denial of service and possibly execute arbitrary code via a long bulldir argument in the user's .qpopper-options configuration file. | |||||
CVE-2000-0032 | 1 Sun | 2 Solaris, Sunos | 2024-02-28 | 10.0 HIGH | N/A |
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database. | |||||
CVE-2000-1058 | 1 Hp | 1 Openview Network Node Manager | 2024-02-28 | 5.0 MEDIUM | N/A |
Buffer overflow in OverView5 CGI program in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, in the SNMP service (snmp.exe), aka the "Java SNMP MIB Browser Object ID parsing problem." | |||||
CVE-2003-1040 | 1 Linux | 1 Linux Kernel | 2024-02-28 | 2.1 LOW | N/A |
kmod in the Linux kernel does not set its uid, suid, gid, or sgid to 0, which allows local users to cause a denial of service (crash) by sending certain signals to kmod. | |||||
CVE-2004-2080 | 1 Red-m | 1 Red-alert | 2024-02-28 | 5.0 MEDIUM | N/A |
Red-M Red-Alert 2.7.5 with software 3.1 build 24 converts multiple spaces in a Service Set Identifier (SSID) to a single space, which prevents Red-Alert from correctly identifying the SSID. | |||||
CVE-2001-0973 | 1 Fraunhofer Fit | 1 Bscw | 2024-02-28 | 6.4 MEDIUM | N/A |
BSCW groupware system 3.3 through 4.0.2 beta allows remote attackers to read or modify arbitrary files by uploading and extracting a tar file with a symlink into the data-bag space. |