Unknown · CVSS Not scored
Buffer overflow in the LDAP naming services library (libsldap) in Sun Solaris 8 allows local users to execute arbitrary code via a long LDAP_OPTIONS environment variable to a privileged program that uses libsldap.
Published Sep 23, 2007 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Buffer overflow in Embedded Support Partner (ESP) daemon (rpc.espd) in IRIX 6.5.8 and earlier allows remote attackers to execute arbitrary commands.
Published Sep 18, 2001 · Updated Aug 29, 2024
Unknown · CVSS Not scored
lpd daemon (in.lpd) in Solaris 8 and earlier allows remote attackers to execute arbitrary commands via a job request with a crafted control file that is not properly handled when lpd invokes a mail program. NOTE: this might be the same vulnerability as CVE-2000-1220.
Published Sep 23, 2007 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The checkAccess function in PHPSlice 0.1.4, and all other versions between 0.1.1 and 0.1.6, does not properly verify the administrative access level, which could allow remote attackers to gain privileges.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Windows 2000 allows local users to cause a denial of service and possibly gain privileges by setting a hardware breakpoint that is handled using global debug registers, which could cause other processes to terminate due to an exception, and allow hijacking of resources such as named pipes.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting vulnerability in Namazu 2.0.9 and earlier allows remote attackers to execute arbitrary Javascript as other web users via an error message that is returned when an invalid index file is specified in the idxname parameter.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
WFTPD 3.00 allows remote attackers to read arbitrary files by uploading a (link) file that ends in a ".lnk." extension, which bypasses WFTPD's check for a ".lnk" extension.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting vulnerability in Namazu 2.0.8 and earlier allows remote attackers to execute arbitrary Javascript as other web users via the index file name that is displayed when displaying hit numbers.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in GNU tar 1.13.19 and earlier allows local users to overwrite arbitrary files during archive extraction via a tar file whose filenames contain a .. (dot dot).
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting vulnerability in namazu.cgi for Namazu 2.0.7 and earlier allows remote attackers to execute arbitrary Javascript as other web users via the lang parameter.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The change password option in the Windows Security interface for Windows 2000 allows attackers to use the option to attempt to change passwords of other users on other systems or identify valid accounts by monitoring error messages, possibly due to a problem in the NetuserChangePassword function.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that trigger an integer signedness error, a different vulnerability than CVE-2000-1026.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft IIS 5.0 allows remote attackers to cause a denial of service via an HTTP request with a content-length value that is larger than the size of the request, which prevents IIS from timing out the connection.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft Windows XP allows local users to bypass a locked screen and run certain programs that are associated with Hot Keys.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerabilities in Livingston/Lucent RADIUS before 2.1.va.1 may allow local or remote attackers to cause a denial of service and possibly execute arbitrary code via format specifiers that are injected into log messages.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
libCoolType library as used in Adobe Acrobat (acroread) on Linux creates the AdobeFnt.lst file with world-writable permissions, which allows local users to modify the file and possibly modify acroread's behavior.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cisco PIX firewall manager (PFM) 4.3(2)g logs the enable password in plaintext in the pfm.log file, which could allow local users to obtain the password by reading the file.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
FTP Voyager ActiveX control before 8.0, when it is marked as safe for scripting (the default) or if allowed by the IObjectSafety interface, allows remote attackers to execute arbitrary commands.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
ns6install installation script for Netscape 6.01 on Solaris, and other versions including 6.2.1 beta, allows local users to overwrite arbitrary files via a symlink attack.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Microsoft Windows network stack allows remote attackers to cause a denial of service (CPU consumption) via a flood of malformed ARP request packets with random source IP and MAC addresses, as demonstrated by ARPNuke.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or welcome files.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft IIS 5.0 allows remote attackers to spoof web log entries via an HTTP request that includes hex-encoded newline or form-feed characters.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in helpctr.exe program in Microsoft Help Center for Windows XP allows remote attackers to execute arbitrary code via a long hcp: URL.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Windows 2000 allows remote attackers to cause a denial of service (CPU consumption) by flooding Internet Key Exchange (IKE) UDP port 500 with packets that contain a large number of dot characters.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Linux kernel before 2.4.11pre3 in multiple Linux distributions allows local users to cause a denial of service (crash) by starting the core vmlinux kernel, possibly related to poor error checking during ELF loading.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in internal string handling routines of xinetd before 2.1.8.8 allows remote attackers to execute arbitrary commands via a length argument of zero or less, which disables the length check.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Linux kernel 2.2.1 through 2.2.19, and 2.4.1 through 2.4.10, allows local users to cause a denial of service via a series of deeply nested symlinks, which causes the kernel to spend extra time when trying to access the link.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
DeltaThree Pc-To-Phone 3.0.3 places sensitive data in world-readable locations in the installation directory, which allows local users to read the information in (1) temp.html, (2) the log folder, and (3) the PhoneBook folder.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary code by sending a long HELO command to the server.
Published Sep 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in XChat 1.2.x allows remote attackers to execute arbitrary code via a malformed nickname.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cisco Hot Standby Routing Protocol (HSRP) allows local attackers to cause a denial of service by spoofing HSRP packets.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Beck IPC GmbH IPC@CHIP Embedded-Webserver allows remote attackers to read arbitrary files via a webserver root directory set to system root.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cisco IOS 11.x and 12.0 with ATM support allows attackers to cause a denial of service via the undocumented Interim Local Management Interface (ILMI) SNMP community string.
Published Sep 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Internet Explorer 5.5 does not display the Class ID (CLSID) when it is at the end of the file name, which could allow attackers to trick the user into executing dangerous programs by making it appear that the document is of a safe file type.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via an HTTP GET request that does not include the HTTP version.
Published Sep 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
McAfee Remote Desktop 3.0 and earlier allows remote attackers to cause a denial of service (crash) via a large number of packets to port 5045.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
index.php in Jelsoft vBulletin does not properly initialize a PHP variable that is used to store template information, which allows remote attackers to execute arbitrary PHP code via special characters in the templatecache parameter.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal in DataWizard WebXQ server 1.204 allows remote attackers to view files outside of the web root via a .. (dot dot) attack.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Vulnerability in rpmdrake in Mandrake Linux 8.0 related to insecure temporary file handling.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
TurboTax saves passwords in a temporary file when a user imports investment tax information from a financial institution, which could allow local users to obtain sensitive information.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in RobTex Viking Web server before 1.07-381 allows remote attackers to read arbitrary files via a \... (modified dot dot) in an HTTP URL request.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Vulnerability in exuberant-ctags before 3.2.4-0.1 insecurely creates temporary files.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in IPSwitch IMail SMTP server 6.06 and possibly prior versions allows remote attackers to execute arbitrary code via a long From: header.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in dtmail in Solaris 2.6 and 7 allows local users to gain privileges via the MAIL environment variable.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
rwho daemon rwhod in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service via malformed packets with a short length.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cisco Aironet 340 Series wireless bridge before 8.55 does not properly disable access to the web interface, which allows remote attackers to modify its configuration.
Published Sep 18, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.
Published Sep 18, 2001 · Updated Aug 8, 2024