Total
265925 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0743 | 1 Oreilly | 1 Webboard | 2024-02-28 | 5.0 MEDIUM | N/A |
Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service via a message with an escaped ' character followed by JavaScript commands. | |||||
CVE-2002-2420 | 1 Independent Solution | 2 Simple Site Searcher, Super Site Searcher | 2024-02-28 | 7.5 HIGH | N/A |
site_searcher.cgi in Super Site Searcher allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter. | |||||
CVE-2000-0026 | 2 Sco, Windowmaker | 2 Unixware, Wmmon | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string. | |||||
CVE-2002-0790 | 1 Ibm | 1 Aix | 2024-02-28 | 2.1 LOW | N/A |
clchkspuser and clpasswdremote in AIX expose an encrypted password in the cspoc.log file, which could allow local users to gain privileges. | |||||
CVE-2002-2406 | 1 Perception | 1 Liteserve | 2024-02-28 | 5.0 MEDIUM | N/A |
Buffer overflow in HTTP server in LiteServe 2.0, 2.0.1 and 2.0.2 allows remote attackers to cause a denial of service (hang) via a large number of percent characters (%) in an HTTP GET request. | |||||
CVE-2003-0538 | 1 Mozart | 1 Mozart | 2024-02-28 | 7.5 HIGH | N/A |
The mailcap file for mozart 1.2.5 and earlier causes Oz applications to be passed to the Oz interpreter, which allows remote attackers to execute arbitrary Oz programs in a MIME-aware client program. | |||||
CVE-2004-0909 | 1 Mozilla | 2 Mozilla, Thunderbird | 2024-02-28 | 5.1 MEDIUM | N/A |
Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers to trick users into performing unexpected actions, including installing software, via signed scripts that request enhanced abilities using the enablePrivilege parameter, then modify the meaning of certain security-relevant dialog messages. | |||||
CVE-1999-1215 | 1 Novell | 1 Netware | 2024-02-28 | 4.6 MEDIUM | N/A |
LOGIN.EXE program in Novell Netware 4.0 and 4.01 temporarily writes user name and password information to disk, which could allow local users to gain privileges. | |||||
CVE-2003-0263 | 1 Floosietek | 1 Ftgatepro | 2024-02-28 | 7.5 HIGH | N/A |
Multiple buffer overflows in Floosietek FTGate Pro Mail Server (FTGatePro) 1.22 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands. | |||||
CVE-2003-0607 | 1 Stanley T. Shebs | 1 Xconq | 2024-02-28 | 4.6 MEDIUM | N/A |
Buffer overflow in xconq 7.4.1 allows local users to become part of the "games" group via the (1) USER or (2) DISPLAY environment variables. | |||||
CVE-2004-0014 | 1 Nd | 1 Nd | 2024-02-28 | 7.5 HIGH | N/A |
Multiple buffer overflows in the nd WebDAV interface 0.8.2 and earlier allows remote web servers to execute arbitrary code via certain long strings. | |||||
CVE-1999-1057 | 1 Digital | 1 Vms | 2024-02-28 | 4.6 MEDIUM | N/A |
VMS 4.0 through 5.3 allows local users to gain privileges via the ANALYZE/PROCESS_DUMP dcl command. | |||||
CVE-2002-0372 | 1 Microsoft | 1 Windows Media Player | 2024-02-28 | 7.5 HIGH | N/A |
Microsoft Windows Media Player versions 6.4 and 7.1 and Media Player for Windows XP allow remote attackers to bypass Internet Explorer's (IE) security mechanisms and run code via an executable .wma media file with a license installation requirement stored in the IE cache, aka the "Cache Path Disclosure via Windows Media Player". | |||||
CVE-2002-0748 | 1 National Instruments | 1 Labview | 2024-02-28 | 5.0 MEDIUM | N/A |
LabVIEW Web Server 5.1.1 through 6.1 allows remote attackers to cause a denial of service (crash) via an HTTP GET request that ends in two newline characters, instead of the expected carriage return/newline combinations. | |||||
CVE-2001-0764 | 1 Juergen Schoenwaelder | 1 Scotty | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in ntping in scotty 2.1.0 allows local users to execute arbitrary code via a long hostname as a command line argument. | |||||
CVE-2001-0568 | 1 Zope | 1 Zope | 2024-02-28 | 2.1 LOW | N/A |
Digital Creations Zope 2.3.1 b1 and earlier allows a local attacker (Zope user) with through-the-web scripting capabilities to alter ZClasses class attributes. | |||||
CVE-2002-0833 | 1 Qualcomm | 1 Eudora | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in Eudora 5.1.1 and 5.0-J for Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a multi-part message with a long boundary string. | |||||
CVE-2002-1403 | 1 Phystech | 1 Dhcpcd | 2024-02-28 | 7.2 HIGH | N/A |
dhcpcd DHCP client daemon 1.3.22 and earlier allows local users to execute arbitrary code via shell metacharacters that are fed from a dhcpd .info script into a .exe script. | |||||
CVE-2000-1211 | 1 Zope | 1 Zope | 2024-02-28 | 7.5 HIGH | N/A |
Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities. | |||||
CVE-2003-0323 | 1 Michael Sandrof | 1 Ircii | 2024-02-28 | 7.5 HIGH | N/A |
Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via responses that are not properly fed to the my_strcat function by (1) ctcp_buffer, (2) cannot_join_channel, (3) status_make_printable for Statusbar drawing, (4) create_server_list, and possibly other functions. |