Total
265912 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-0539 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-02-28 | 10.0 HIGH | N/A |
The "Show in Finder" button in the Safari web browser in Mac OS X 10.3.4 and 10.2.8 may execute downloaded applications, which could allow remote attackers to execute arbitrary code. | |||||
CVE-2001-1511 | 1 Macromedia | 1 Jrun | 2024-02-28 | 5.0 MEDIUM | N/A |
JRun 3.0 and 3.1 running on JRun Web Server (JWS) and IIS allows remote attackers to read arbitrary JavaServer Pages (JSP) source code via a request URL containing the source filename ending in (1) "jsp%00" or (2) "js%2570". | |||||
CVE-2001-1264 | 1 Hp | 2 Hp-ux, Vvos | 2024-02-28 | 10.0 HIGH | N/A |
Vulnerability in mkacct in HP-UX 11.04 running Virtualvault Operating System (VVOS) 4.0 and 4.5 allows attackers to elevate privileges. | |||||
CVE-2001-0176 | 1 Voyant Technologies | 1 Sonata | 2024-02-28 | 7.2 HIGH | N/A |
The setuid doroot program in Voyant Sonata 3.x executes arbitrary command line arguments, which allows local users to gain root privileges. | |||||
CVE-2001-0275 | 1 Moby | 1 Netsuite Web Server | 2024-02-28 | 2.1 LOW | N/A |
Moby Netsuite Web Server 1.02 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request. | |||||
CVE-2004-0326 | 1 Proxy-pro | 1 Professional Gatekeeper | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in the web proxy for GateKeeper Pro 4.7 allows remote attackers to execute arbitrary code via a long GET request. | |||||
CVE-1999-0636 | 2024-02-28 | 10.0 HIGH | N/A | ||
The discard service is running. | |||||
CVE-2000-0753 | 1 Microsoft | 1 Outlook | 2024-02-28 | 5.0 MEDIUM | N/A |
The Microsoft Outlook mail client identifies the physical path of the sender's machine within a winmail.dat attachment to Rich Text Format (RTF) files. | |||||
CVE-2002-1479 | 1 The Cacti Group | 1 Cacti | 2024-02-28 | 4.6 MEDIUM | N/A |
Cacti before 0.6.8 stores a MySQL username and password in plaintext in config.php, which has world-readable permissions, which allows local users to modify databases as the Cacti user and possibly gain privileges. | |||||
CVE-2004-0042 | 1 Beasts | 1 Vsftpd | 2024-02-28 | 5.0 MEDIUM | N/A |
vsftpd 1.1.3 generates different error messages depending on whether or not a valid username exists, which allows remote attackers to identify valid usernames. | |||||
CVE-2001-0041 | 1 Cisco | 1 Catos | 2024-02-28 | 7.8 HIGH | N/A |
Memory leak in Cisco Catalyst 4000, 5000, and 6000 series switches allows remote attackers to cause a denial of service via a series of failed telnet authentication attempts. | |||||
CVE-2004-0363 | 1 Symantec | 1 Norton Antispam | 2024-02-28 | 7.5 HIGH | N/A |
Stack-based buffer overflow in the SymSpamHelper ActiveX component (symspam.dll) in Norton AntiSpam 2004, as used in Norton Internet Security 2004, allows remote attackers to execute arbitrary code via a long parameter to the LaunchCustomRuleWizard method. | |||||
CVE-1999-0414 | 1 Linux | 1 Linux Kernel | 2024-02-28 | 5.0 MEDIUM | N/A |
In Linux before version 2.0.36, remote attackers can spoof a TCP connection and pass data to the application layer before fully establishing the connection. | |||||
CVE-1999-0057 | 5 Eric Allman, Freebsd, Hp and 2 more | 7 Vacation, Freebsd, Hp-ux and 4 more | 2024-02-28 | 7.5 HIGH | N/A |
Vacation program allows command execution by remote users through a sendmail command. | |||||
CVE-2001-0678 | 1 Trend Micro | 2 Interscan Viruswall, Interscan Webmanager | 2024-02-28 | 4.6 MEDIUM | N/A |
A buffer overflow in reggo.dll file used by Trend Micro InterScan VirusWall prior to 3.51 build 1349 for Windows NT 3.5 and InterScan WebManager 1.2 allows a local attacker to execute arbitrary code. | |||||
CVE-2004-0122 | 1 Microsoft | 1 Msn Messenger | 2024-02-28 | 5.0 MEDIUM | N/A |
Microsoft MSN Messenger 6.0 and 6.1 does not properly handle certain requests, which allows remote attackers to read arbitrary files. | |||||
CVE-2002-1376 | 2 Oracle, Symantec Veritas | 3 Mysql, Netbackup Advanced Reporter, Netbackup Global Data Manager | 2024-02-28 | 7.5 HIGH | N/A |
libmysqlclient client library in MySQL 3.x to 3.23.54, and 4.x to 4.0.6, does not properly verify length fields for certain responses in the (1) read_rows or (2) read_one_row routines, which allows remote attackers to cause a denial of service and possibly execute arbitrary code. | |||||
CVE-2002-1400 | 1 Postgresql | 1 Postgresql | 2024-02-28 | 7.5 HIGH | N/A |
Heap-based buffer overflow in the repeat() function for PostgreSQL before 7.2.2 allows attackers to execute arbitrary code by causing repeat() to generate a large string. | |||||
CVE-2000-0742 | 1 Microsoft | 2 Windows 95, Windows 98 | 2024-02-28 | 5.0 MEDIUM | N/A |
The IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability. | |||||
CVE-2004-0268 | 1 Evolutionx | 1 Evolutionx | 2024-02-28 | 5.0 MEDIUM | N/A |
Multiple buffer overflows in EvolutionX 3921 and 3935 allow remote attackers to cause a denial of service (hang) via (1) a long cd command to the FTP server, or (2) a long dir command to the telnet server. |