Vulnerabilities (CVE)

Total 268926 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-0996 1 Infoseek 1 Ultraseek Server 2024-02-28 7.5 HIGH N/A
Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request.
CVE-2000-1187 1 Netscape 2 Communicator, Navigator 2024-02-28 7.5 HIGH N/A
Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field.
CVE-2003-1480 2 Mysql, Oracle 2 Mysql, Mysql 2024-02-28 4.3 MEDIUM N/A
MySQL 3.20 through 4.1.0 uses a weak algorithm for hashed passwords, which makes it easier for attackers to decrypt the password via brute force methods.
CVE-2004-1146 1 Cvstrac 1 Cvstrac 2024-02-28 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in (1) main.c and (2) login.c for CVSTrac before 1.1.5 allow remote attackers to inject arbitrary HTML and web script.
CVE-2003-0755 1 Gtkftpd 1 Gtkftp 2024-02-28 10.0 HIGH N/A
Buffer overflow in sys_cmd.c for gtkftpd 1.0.4 and earlier allows remote attackers to execute arbitrary code by creating long directory names and listing them with a LIST command.
CVE-2000-0243 1 Analogx 1 Simpleserver Www 2024-02-28 5.0 MEDIUM N/A
AnalogX SimpleServer:WWW HTTP server 1.03 allows remote attackers to cause a denial of service via a short GET request to cgi-bin.
CVE-2003-1345 1 Follett Software 1 Webcollection Plus 2024-02-28 5.0 MEDIUM N/A
Directory traversal vulnerability in s.dll in WebCollection Plus 5.00 allows remote attackers to view arbitrary files in c:\ via a full pathname in the d parameter.
CVE-2001-1153 1 Caldera 1 Openunix 2024-02-28 7.2 HIGH N/A
lpsystem in OpenUnix 8.0.0 allows local users to cause a denial of service and possibly execute arbitrary code via a long command line argument.
CVE-2002-1322 1 Rational Software 1 Clearcase 2024-02-28 5.0 MEDIUM N/A
Rational ClearCase 4.1, 2002.05, and possibly other versions allows remote attackers to cause a denial of service (crash) via certain packets to port 371, e.g. via nmap.
CVE-1999-0194 2024-02-28 5.0 MEDIUM N/A
Denial of service in in.comsat allows attackers to generate messages.
CVE-2002-1548 1 Ibm 1 Aix 2024-02-28 7.2 HIGH N/A
Unknown vulnerability in autofs on AIX 4.3.0, when using executable maps, allows attackers to execute arbitrary commands as root, possibly related to "string handling around how the executable map is called."
CVE-2004-1339 1 Oracle 2 Database Server, Oracle9i 2024-02-28 6.5 MEDIUM N/A
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS default triggers in Oracle 9i and 10g allows remote attackers to execute arbitrary SQL commands via the new.table_name or new.column_name parameters.
CVE-2004-0219 1 Openbsd 1 Openbsd 2024-02-28 5.0 MEDIUM N/A
isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with a malformed IPSEC SA payload, as demonstrated by the Striker ISAKMP Protocol Test Suite.
CVE-1999-0532 2024-02-28 N/A N/A
A DNS server allows zone transfers.
CVE-2002-0889 1 Qualcomm 1 Qpopper 2024-02-28 4.6 MEDIUM N/A
Buffer overflow in Qpopper (popper) 4.0.4 and earlier allows local users to cause a denial of service and possibly execute arbitrary code via a long bulldir argument in the user's .qpopper-options configuration file.
CVE-2000-0032 1 Sun 2 Solaris, Sunos 2024-02-28 10.0 HIGH N/A
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.
CVE-2000-1058 1 Hp 1 Openview Network Node Manager 2024-02-28 5.0 MEDIUM N/A
Buffer overflow in OverView5 CGI program in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, in the SNMP service (snmp.exe), aka the "Java SNMP MIB Browser Object ID parsing problem."
CVE-2003-1040 1 Linux 1 Linux Kernel 2024-02-28 2.1 LOW N/A
kmod in the Linux kernel does not set its uid, suid, gid, or sgid to 0, which allows local users to cause a denial of service (crash) by sending certain signals to kmod.
CVE-2004-2080 1 Red-m 1 Red-alert 2024-02-28 5.0 MEDIUM N/A
Red-M Red-Alert 2.7.5 with software 3.1 build 24 converts multiple spaces in a Service Set Identifier (SSID) to a single space, which prevents Red-Alert from correctly identifying the SSID.
CVE-2001-0973 1 Fraunhofer Fit 1 Bscw 2024-02-28 6.4 MEDIUM N/A
BSCW groupware system 3.3 through 4.0.2 beta allows remote attackers to read or modify arbitrary files by uploading and extracting a tar file with a symlink into the data-bag space.