Total
29869 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0164 | 1 Sun | 1 Solaris Isp Server | 2025-04-03 | 7.2 HIGH | N/A |
|
The installation of Sun Internet Mail Server (SIMS) creates a world-readable file that allows local users to obtain passwords.
|
|||||
| CVE-1999-0408 | 1 Sun | 1 Cobalt Raq | 2025-04-03 | 10.0 HIGH | N/A |
|
Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server.
|
|||||
| CVE-2003-0017 | 1 Apache | 1 Http Server | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Apache 2.0 before 2.0.44 on Windows platforms allows remote attackers to obtain certain files via an HTTP request that ends in certain illegal characters such as ">", which causes a different filename to be processed and served.
|
|||||
| CVE-2000-0430 | 1 Mcmurtrey Whitaker And Associates | 1 Cart32 | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Cart32 allows remote attackers to access sensitive debugging information by appending /expdate to the URL request.
|
|||||
| CVE-2006-1319 | 1 Runit | 1 Runit | 2025-04-03 | 6.2 MEDIUM | N/A |
|
chpst in runit 1.3.3-1 for Debian GNU/Linux, when compiled on little endian i386 machines against dietlibc, does not properly handle when multiple groups are specified in the -u option, which causes chpst to assign permissions for the root group due to inconsistent bit sizes for the gid_t type.
|
|||||
| CVE-2005-2229 | 1 Blog Torrent | 1 Blog Torrent | 2025-04-03 | 7.5 HIGH | N/A |
|
Blog Torrent 0.92 and earlier stores sensitive files under the web document root in the (1) data or (2) torrents directories with insufficient access control, which allows remote attackers to obtain sensitive information such as account names and password hashes, as demonstrated using data/newusers.
|
|||||
| CVE-2000-0153 | 1 Microsoft | 2 Frontpage, Personal Web Server | 2025-04-03 | 5.0 MEDIUM | N/A |
|
FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack.
|
|||||
| CVE-1999-0787 | 1 Ssh | 1 Ssh | 2025-04-03 | 2.1 LOW | N/A |
|
The SSH authentication agent follows symlinks via a UNIX domain socket.
|
|||||
| CVE-2005-0459 | 1 Phpmyadmin | 1 Phpmyadmin | 2025-04-03 | 5.0 MEDIUM | N/A |
|
phpMyAdmin 2.6.2-dev, and possibly earlier versions, allows remote attackers to determine the full path of the web root via a direct request to select_lang.lib.php, which reveals the path in a PHP error message.
|
|||||
| CVE-2005-1435 | 1 Open Webmail | 1 Open Webmail | 2025-04-03 | 7.5 HIGH | N/A |
|
Open WebMail (OWM) before 2.51 20050430 allows remote authenticated users to execute arbitrary commands via shell metacharacters in a filename.
|
|||||
| CVE-2006-0229 | 1 Wehnus | 1 Wehntrust | 2025-04-03 | 2.1 LOW | N/A |
|
Unquoted Windows search path vulnerability in Wehntrust might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run when Wehntrust creates the autostart key.
|
|||||
| CVE-2005-4655 | 1 Php Fusion | 1 Php Fusion | 2025-04-03 | 4.3 MEDIUM | N/A |
|
Cross-site scripting (XSS) vulnerability in submit.php in PHP-Fusion 6.0.204 allows remote attackers to inject arbitrary web script or HTML via nested tags in the news_body parameter, as demonstrated by elements such as "<me<meta>ta" and "<sc<script>ript>".
|
|||||
| CVE-2005-2597 | 1 Aol | 1 Aol Client Software | 2025-04-03 | 7.2 HIGH | N/A |
|
AOL Client Software 9.0 uses insecure permissions for its installation path, which allows local users to execute arbitrary code with SYSTEM privileges by replacing ACSD.exe with a malicious program.
|
|||||
| CVE-2005-1983 | 1 Microsoft | 2 Windows 2000, Windows Xp | 2025-04-03 | 10.0 HIGH | N/A |
|
Stack-based buffer overflow in the Plug and Play (PnP) service for Microsoft Windows 2000 and Windows XP Service Pack 1 allows remote attackers to execute arbitrary code via a crafted packet, and local users to gain privileges via a malicious application, as exploited by the Zotob (aka Mytob) worm.
|
|||||
| CVE-2003-0396 | 1 Linux-atm | 1 Linux-atm | 2025-04-03 | 4.6 MEDIUM | N/A |
|
Buffer overflow in les for ATM on Linux (linux-atm) before 2.4.1, if used setuid, allows local users to gain privileges via a long -f command line argument.
|
|||||
| CVE-2000-0598 | 1 Fortech | 1 Proxy\+ | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Fortech Proxy+ allows remote attackers to bypass access restrictions for to the administration service by redirecting their connections through the telnet proxy.
|
|||||
| CVE-2006-0512 | 1 Padl Software | 1 Migrationtools | 2025-04-03 | 2.1 LOW | N/A |
|
PADL MigrationTools 46 creates temporary files insecurely, which allows local users to overwrite arbitrary files via a symlink attack on the temporary files, which are not properly created by (1) migrate_all_online.sh, (2) migrate_all_offline.sh, (3) migrate_all_netinfo_online.sh, (4) migrate_all_netinfo_offline.sh, (5) migrate_all_nis_online.sh, (6) migrate_all_nis_offline.sh, (7) migrate_all_nisplus_online.sh, and (8) migrate_all_nisplus_offline.sh.
|
|||||
| CVE-2001-0833 | 1 Oracle | 1 Database Server | 2025-04-03 | 7.2 HIGH | N/A |
|
Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable, aka the "Oracle Trace Collection Security Vulnerability."
|
|||||
| CVE-1999-0411 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
|
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack, allowing a local user to gain root access.
|
|||||
| CVE-2006-2590 | 1 E107 | 1 E107 | 2025-04-03 | 6.4 MEDIUM | N/A |
|
SQL injection vulnerability in e107 before 0.7.5 allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.
|
|||||
| CVE-2002-0109 | 1 Linksys | 3 Befn2ps4, Befsr41, Befsr81 | 2025-04-03 | 6.4 MEDIUM | N/A |
|
Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, and possibly other products, allow remote attackers to gain sensitive information and cause a denial of service via an SNMP query for the default community string "public," which causes the router to change its configuration and send SNMP trap information back to the system that initiated the query.
|
|||||
| CVE-2006-1938 | 1 Ethereal Group | 1 Ethereal | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Multiple unspecified vulnerabilities in Ethereal 0.8.x up to 0.10.14 allow remote attackers to cause a denial of service (crash from null dereference) via the (1) Sniffer capture or (2) SMB PIPE dissector.
|
|||||
| CVE-2006-4587 | 1 Vtiger | 1 Vtiger Crm | 2025-04-03 | 6.8 MEDIUM | N/A |
|
Multiple cross-site scripting (XSS) vulnerabilities in vtiger CRM 4.2.4, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) description parameter in unspecified modules or the (2) solution parameter in the HelpDesk module.
|
|||||
| CVE-2002-0591 | 1 Aol | 1 Instant Messenger | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and earlier allows remote attackers to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the target filename.
|
|||||
| CVE-2003-1279 | 1 Insightful | 1 S-plus | 2025-04-03 | 4.6 MEDIUM | N/A |
|
S-PLUS 6.0 allows local users to overwrite arbitrary files and possibly elevate privileges via a symlink attack on (1) /tmp/__F8499 by Sqpe, (2) /tmp/PRINT.$$.out by PRINT, (3) /tmp/SUBST$PID.TXT and /tmp/ed.cmds$PID by mustfix.hlinks, (4) /tmp/file.1 and /tmp/file.2 by sas_get, (5) /tmp/file.1 by sas_vars, and (6) /tmp/sgml2html$$tmp /tmp/sgml2html$$tmp1 /tmp/sgml2html$$tmp2 by sglm2html.
|
|||||
| CVE-1999-0402 | 1 Gnu | 1 Wget | 2025-04-03 | 5.0 MEDIUM | N/A |
|
wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself.
|
|||||
| CVE-2000-0071 | 1 Microsoft | 2 Internet Information Server, Internet Information Services | 2025-04-03 | 5.0 MEDIUM | N/A |
|
IIS 4.0 allows a remote attacker to obtain the real pathname of the document root by requesting non-existent files with .ida or .idq extensions.
|
|||||
| CVE-2005-2372 | 1 Oracle | 1 Forms | 2025-04-03 | 7.2 HIGH | N/A |
|
Oracle Forms 4.5 through 10g starts form executables from arbitrary directories and executes them as the Oracle or System user, which allows attackers to execute arbitrary code by uploading a malicious .fmx file and referencing it using an absolute pathname argument in the (1) form or (2) module parameters to f90servlet.
|
|||||
| CVE-2001-0444 | 1 Cisco | 1 Cbos | 2025-04-03 | 2.1 LOW | N/A |
|
Cisco CBOS 2.3.0.053 sends output of the "sh nat" (aka "show nat") command to the terminal of the next user who attempts to connect to the router via telnet, which could allow that user to obtain sensitive information.
|
|||||
| CVE-2004-0394 | 1 Linux | 1 Linux Kernel | 2025-04-03 | 2.1 LOW | N/A |
|
A "potential" buffer overflow exists in the panic() function in Linux 2.4.x, although it may not be exploitable due to the functionality of panic.
|
|||||
| CVE-2006-1716 | 1 Mybulletinboard | 1 Mybulletinboard | 2025-04-03 | 5.1 MEDIUM | N/A |
|
Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode img tag. NOTE: the email vector is already covered by CVE-2006-1625, although it might stem from the same core issue.
|
|||||
| CVE-2005-3263 | 1 Rarlab | 1 Winrar | 2025-04-03 | 7.5 HIGH | N/A |
|
Stack-based buffer overflow in UNACEV2.DLL for RARLAB WinRAR 2.90 through 3.50 allows remote attackers to execute arbitrary code via an ACE archive containing a file with a long name.
|
|||||
| CVE-2004-0519 | 2 Sgi, Squirrelmail | 2 Propack, Squirrelmail | 2025-04-03 | 6.8 MEDIUM | N/A |
|
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple attack vectors, including the mailbox parameter in compose.php.
|
|||||
| CVE-2004-1059 | 1 Mnogosearch | 1 Mnogosearch | 2025-04-03 | 4.3 MEDIUM | N/A |
|
Multiple cross-site scripting (XSS) vulnerabilities in mnoGoSearch 3.2.26 and earlier allow remote attackers to inject arbitrary HTML and web script via the (1) next and (2) prev result search pages, and the (3) extended and (4) simple search forms.
|
|||||
| CVE-2005-0279 | 1 Jowood Productions | 1 Soldner Secret Wars | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Soldner Secret Wars 30830 and earlier does not properly handle the "message too long" socket error, which allows remote attackers to cause a denial of service (socket termination) via a long UDP packet.
|
|||||
| CVE-2005-1498 | 1 Mywebland | 1 Mybloggie | 2025-04-03 | 4.3 MEDIUM | N/A |
|
Multiple cross-site scripting (XSS) vulnerabilities in myBloggie 2.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) year parameter in viewmode.php, or the (2) cat_id, (3) month_no, or (4) post_id parameter in index.php, which are not properly sanitized before they are displayed in an error message. NOTE: issues 2, 3, and 4 may be due to a problem in associated products rather than myBloggie itself.
|
|||||
| CVE-2004-2485 | 1 Php Live | 1 Php Live | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Unspecified vulnerability in PHP Live! before 2.8.2, due to a "major security problem," allows remote attackers to include arbitrary files and directories via unspecified attack vectors.
|
|||||
| CVE-2002-1277 | 1 Windowmaker | 1 Windowmaker | 2025-04-03 | 7.5 HIGH | N/A |
|
Buffer overflow in Window Maker (wmaker) 0.80.0 and earlier may allow remote attackers to execute arbitrary code via a certain image file that is not properly handled when Window Maker uses width and height information to allocate a buffer.
|
|||||
| CVE-2006-2272 | 1 Lksctp | 1 Stream Control Transmission Protocol | 2025-04-03 | 7.8 HIGH | N/A |
|
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks.
|
|||||
| CVE-2005-2851 | 1 Smb4k | 1 Smb4k | 2025-04-03 | 2.1 LOW | N/A |
|
smb4k 0.4 and other versions before 0.6.3 allows local users to read sensitive files via a symlink attack on the (1) smb4k.tmp or (2) sudoers temporary files.
|
|||||