Unknown · CVSS Not scored
quikstore.cgi in Quikstore Shopping Cart allows remote attackers to execute arbitrary commands via shell metacharacters in the URL portion of an HTTP GET request.
Published Apr 21, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Multiple unspecified vulnerabilities in NWFTPD.nlm before 5.01o in the FTP server in Novell NetWare 5.1 SP3 allow remote attackers to bypass intended restrictions on anonymous access via unknown vectors.
Published Apr 5, 2010 · Updated Sep 17, 2024
Unknown · CVSS Not scored
The -ftrapv compiler option in gcc and g++ 3.3.3 and earlier does not handle all types of integer overflows, which may leave applications vulnerable to vulnerabilities related to overflows.
Published Apr 21, 2005 · Updated Sep 16, 2024
Unknown · CVSS Not scored
NWFTPD.nlm before 5.01o in the FTP server in Novell NetWare 5.1 SP3 allows remote authenticated users to cause a denial of service (abend) by sending an RNTO command after a failed RNFR command.
Published Apr 5, 2010 · Updated Sep 16, 2024
Unknown · CVSS Not scored
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft Windows 2000 before Service Pack 2 (SP2), when running in a non-Windows 2000 domain and using NTLM authentication, and when credentials of an account are locally cached, allows local users to bypass account lockout policies and make an unlimited number of login attempts, aka the "Domain Account Lockout" vulnerability.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The default configuration of Lotus Domino server 5.0.8 includes system information (version, operating system, and build date) in the HTTP headers of replies, which allows remote attackers to obtain sensitive information.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities.
Published Apr 2, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the argument to source.jsp.
Published Apr 2, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_error routine.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote attackers to poison the DNS cache.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects.
Published Apr 2, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Poll It 2.0 CGI script allows remote attackers to read arbitrary files by specifying the file name in the data_dir parameter.
Published Apr 2, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion.
Published Apr 2, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote attackers to cause a denial of service via an HTTP request with long headers such as Accept.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the RealNetworks RealPlayer client versions 6 and 7 allows remote attackers to cause a denial of service via a long Location URL.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The default encryption method of PcAnywhere 9.x uses weak encryption, which allows remote attackers to sniff and decrypt PcAnywhere or NT domain accounts.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in Star Office 5.1 allows attackers to cause a denial of service by embedding a long URL within a document.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Infonautics getdoc.cgi allows remote attackers to bypass the payment phase for accessing documents via a modified form variable.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
vqSoft vqServer stores sensitive information such as passwords in cleartext in the server.cfg file, which allows attackers to gain privileges.
Published Apr 12, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
X fontserver xfs allows local users to cause a denial of service via malformed input to the server.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Internet Explorer 5.01 allows remote attackers to bypass the cross frame security policy via a malicious applet that interacts with the Java JSObject to modify the DOM properties to set the IFRAME to an arbitrary Javascript URL.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The web GUI for the Linux Virtual Server (LVS) software in the Red Hat Linux Piranha package has a backdoor password that allows remote attackers to execute arbitrary commands.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Emacs 20 does not properly set permissions for a slave PTY device when starting a new subprocess, which allows local users to read or modify communications between Emacs and the subprocess.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
read-passwd and other Lisp functions in Emacs 20 do not properly clear the history of recently typed keys, which allows an attacker to read unencrypted passwords.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise available through the web site, aka the "Server-Side Image Map Components" vulnerability.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in LCDproc allows remote attackers to gain root privileges via the screen_add command.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Citrix ICA (Independent Computing Architecture) protocol uses weak encryption (XOR) for user authentication.
Published Apr 12, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the Napster client beta 5 allows remote attackers to cause a denial of service via a long message.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The default permissions for the Cryptography\Offload registry key used by the OffloadModExpo in Windows NT 4.0 allows local users to obtain compromise the cryptographic keys of other users.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
WindMail allows remote attackers to read arbitrary files or execute commands via shell metacharacters.
Published Apr 12, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the MERCUR WebView WebMail server allows remote attackers to cause a denial of service via a long mail_user parameter in the GET request.
Published Apr 12, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The make-temp-name Lisp function in Emacs 20 creates temporary files with predictable names, which allows attackers to conduct a symlink attack.
Published Apr 26, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SGI InfoSearch CGI program infosrch.cgi allows remote attackers to execute commands via shell metacharacters.
Published Apr 10, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack.
Published Apr 10, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The lit program in Sun Flex License Manager (FlexLM) follows symlinks, which allows local users to modify arbitrary files.
Published Apr 10, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote attackers to connect to the ADMIN$ share without a password until the reboot occurs.
Published Apr 10, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
Published Apr 10, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.
Published Apr 25, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
buildxconf in Corel Linux allows local users to modify or create arbitrary files via the -x or -f parameters.
Published Apr 10, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
iPlanet Web Server 4.1 allows remote attackers to cause a denial of service via a large number of GET commands, which consumes memory and causes a kernel panic.
Published Apr 10, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges.
Published Apr 10, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a denial of service by requesting a large number of sockets.
Published Apr 12, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information.
Published Apr 10, 2000 · Updated Aug 8, 2024