Unknown · CVSS Not scored
The default installation of Apache before 1.3.19 allows remote attackers to list directories instead of the multiview index.html file via an HTTP request for a path that contains many / (slash) characters, which causes the path to be mishandled by (1) mod_negotiation, (2) mod_dir, or (3) mod_autoindex.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cooolsoft PowerFTP Server 2.03 allows remote attackers to list the contents of arbitrary drives via a ls (LIST) command that includes the drive letter as an argument, e.g. "ls C:".
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3.51 and 3.51J allow remote attackers to execute arbitrary code via long arguments to the CGI programs (1) register.dll, (2) ContentFilter.dll, (3) SFNofitication.dll, (4) register.dll, (5) TOP10.dll, (6) SpamExcp.dll, and (7) spamrule.dll.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
speechd 0.54 and earlier, with the Festival or rsynth speech synthesis package, allows attackers to execute arbitrary commands via shell metacharacters.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Respondus 1.1.2 for WebCT uses weak encryption to remember usernames and passwords, which allows local users who can read the WEBCT.SVR file to decrypt the passwords and gain additional privileges.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Fetchmail (aka fetchmail-ssl) before 5.8.17 allows a remote malicious (1) IMAP server or (2) POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Arkeia backup server 4.2.8-2 and earlier creates its database files with world-writable permissions, which could allow local users to overwrite the files or obtain sensitive information.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
rlmadmin RADIUS management utility in Merit AAA Server 3.8M, 5.01, and possibly other versions, allows local users to read arbitrary files via a symlink attack on the rlmadmin.help file.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cooolsoft PowerFTP Server 2.03 allows remote attackers to obtain the physical path of the server root via the pwd command, which lists the full pathname.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly gain privileges via a large number of characters, possibly through the web page search form of KDE Konqueror or from an xterm command with a long title.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Textor Webmasters Ltd listrec.pl CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the TEMPLATE parameter.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting vulnerability in Proxomitron Naoko-4 BetaFour and earlier allows remote attackers to execute arbitrary script on other clients via an incorrect URL containing the malicious script, which is printed back in an error message.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metacharacters in the "page" parameter.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
DDE in mIRC allows local users to launch applications under another user's account via a DDE message that executes a command, which may be executed by the other user's process.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Knox Arkeia server 4.2, and possibly other versions, installs its root user with a null password by default, which allows local and remote users to gain privileges.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting (CSS) vulnerability in gnut Gnutella client before 0.4.27 allows remote attackers to execute arbitrary script on other clients by sharing a file whose name contains the script tags.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
POP3Lite before 0.2.4 does not properly quote a . (dot) in an email message, which could allow a remote attacker to append arbitrary text to the end of an email message, which could then be interpreted by various mail clients as valid POP server responses or other input that could cause clients to crash or otherwise behave unexpectedly.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
shopplus.cgi in ShopPlus shopping cart allows remote attackers to execute arbitrary commands via shell metacharacters in the "file" parameter.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Inter7 vpopmail 4.10.35 and earlier, when using the MySQL module, compiles authentication information in cleartext into the libvpopmail.a library, which allows local users to obtain the MySQL username and password by inspecting the vpopmail programs that use the library.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in dbsnmp in Oracle 8.0.6 through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
ndcgi.exe in Netdynamics 4.x through 5.x, and possibly earlier versions, allows remote attackers to steal session IDs and hijack user sessions by reading the SPIDERSESSION and uniqueValue variables from the login field, then using those variables after the next user logs in.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Sendpage.pl allows remote attackers to execute arbitrary commands via a message containing shell metacharacters.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
PGPMail.pl 1.31 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) recipient or (2) pgpuserid parameters.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Starfish Truesync Desktop 2.0b as used on the REX 5000 PDA uses weak encryption to store the user password in a registry key, which allows attackers who have access to the registry key to decrypt the password and gain privileges.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in ACI 4d webserver allows remote attackers to read arbitrary files via a .. (dot dot) or drive letter (e.g., C:) in an HTTP request.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the permitted function of GNOME gtop daemon (libgtop_daemon) in libgtop 1.0.13 and earlier may allow remote attackers to execute arbitrary code via long authentication data.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
PHP-Nuke 5.1 stores user and administrator passwords in a base-64 encoded cookie, which could allow remote attackers to gain privileges by stealing or sniffing the cookie and decoding it.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in client for Half-Life 1.1.0.8 and earlier allows malicious remote servers to execute arbitrary code via a long console command.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Marconi ForeThought 7.1 allows remote attackers to cause a denial of service by causing both telnet sessions to be locked via unusual input (e.g., from a port scanner), which prevents others from logging into the device.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 uses insufficiently random data to (1) generate session tokens for HSMs using the C rand function, or (2) generate certificates or keys using /dev/urandom instead of another source which blocks when the entropy pool is low, which could make it easier for local or remote attackers to steal tokens or certificates via brute force guessing.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Outlook Express 6.00 allows remote attackers to execute arbitrary script by embedding SCRIPT tags in a message whose MIME content type is text/plain, contrary to the expected behavior that text/plain messages will not run script.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Linear key exchange process in High-bandwidth Digital Content Protection (HDCP) System allows remote attackers to access data as plaintext, avoid device blacklists, clone devices, and create new device keyvectors by computing and using alternate key combinations for authentication.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. (dot dot) in the LO parameter.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
UltraEdit uses weak encryption to record FTP passwords in the uedit32.ini file, which allows local users who can read the file to decrypt the passwords and gain privileges.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in Cooolsoft PowerFTP Server 2.03 allows attackers to list or read arbitrary files and directories via a .. (dot dot) in (1) LS or (2) GET.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
THQ Volition Red Faction Game allows remote attackers to cause a denial of service (hang) of a client or server via packets to UDP port 7755.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Internet Explorer 5.50.4134.0100 on Windows ME with "Prompt to allow cookies to be stored on your machine" enabled does not warn a user when a cookie is set using Javascript.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remote attackers to gain administrative privileges by calculating the value of the admin cookie (UserID 1), i.e. "0888888."
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Password Safe 1.7(1) leaves cleartext passwords in memory when a user copies the password to the clipboard and minimizes Password Safe with the "Clear the password when minimized" and "Lock password database on minimize and prompt on restore" options enabled, which could allow an attacker with access to the memory (e.g. an administrator) to read the passwords.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Kebi WebMail allows remote attackers to access the administrator menu and gain privileges via the /a/ hidden directory, which is installed under the web document root.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in Berkeley parallel make (pmake) 2.1.33 and earlier allows a local user to gain root privileges via a long check argument of a shell definition.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
dbsnmp in Oracle 8.1.6 and 8.1.7 uses the ORACLE_HOME environment variable to find and execute the dbsnmp program, which allows local users to execute arbitrary programs by pointing the ORACLE_HOME to an alternate directory that contains a malicious version of dbsnmp.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SSIFilter in Allaire JRun 3.1, 3.0 and 2.3.3 allows remote attackers to obtain source code for Java server pages (.jsp) and other files in the web root via an HTTP request for a non-existent SSI page, in which the request's body has an #include statement.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in Berkeley parallel make (pmake) 2.1.33 and earlier allows a local user to gain root privileges via format specifiers in the check argument of a shell definition.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Opera 6.0 and earlier allows remote attackers to access sensitive information such as cookies and links for other domains via Javascript that uses setTimeout to (1) access data after a new window to the domain has been opened or (2) access data via about:cache.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing.
Published Feb 2, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflows in forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 allows remote attackers to execute arbitrary code via long arguments to the parameters (1) Mode, (2) Certificate_File, (3) useExpiredCRLs, (4) listenLength, (5) maxThread, (6) maxConnPerSite, (7) maxMsgLen, (8) exitTime, (9) blockTime, (10) nextUpdatePeriod, (11) buildLocal, (12) maxOCSPValidityPeriod, (13) extension, and (14) a particular combination of parameters associated with private key generation that form a string of a certain length.
Published Feb 2, 2002 · Updated Aug 8, 2024