Unknown · CVSS Not scored
CardBoard 2.4 greeting card CGI by Michael Barretto allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient field.
Published Oct 6, 2007 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SSH protocol 2 (aka SSH-2) public key authentication in the development snapshot of OpenSSH 2.3.1, available from 2001-01-18 through 2001-02-08, does not perform a challenge-response step to ensure that the client has the proper private key, which allows remote attackers to bypass authentication as other users by supplying a public key from that user's authorized_keys file.
Published Oct 6, 2007 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Stack-based buffer overflow in the comprexx function for ncompress 4.2.4 and earlier, when used in situations that cross security boundaries (such as FTP server), may allow remote attackers to execute arbitrary code via a long filename argument.
Published Oct 20, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
nidump on MacOS X before 10.3 allows local users to read the encrypted passwords from the password file by specifying passwd as a command line argument.
Published Oct 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in gm4 (aka m4) on Mac OS X may allow local users to gain privileges if gm4 is called by setuid programs.
Published Oct 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Specter IDS version 4.5 and 5.0 allows a remote attacker to cause a denial of service (CPU exhaustion) via a port scan, which causes the server to consume CPU while preparing alerts.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in DynFX MailServer version 2.10 allows remote attackers to conduct a denial of service via a long username to the POP3 service.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in Shambala 4.5 allows remote attackers to escape the FTP root directory via "CWD ..." command.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal in Webpaging interface in Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
KDE ktvision 0.1.1-271 and earlier allows local attackers to gain root privileges via a symlink attack on a user configuration file.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in A-FTP Anonymous FTP Server allows remote attackers to cause a denial of service via a long USER command.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in su-wrapper 1.1.1 allows local users to execute arbitrary code via a long first argument.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in cosmicpro.cgi in Cosmicperl Directory Pro 2.0 allows remote attackers to gain sensitive information via a .. (dot dot) in the SHOW parameter.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflows and other vulnerabilities in multiple Common Desktop Environment (CDE) modules in HP-UX 10.10 through 11.11 allow attackers to cause a denial of service and possibly gain additional privileges.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Omnicron OmniHTTPd 2.0.8 allows remote attackers to cause a denial of service (memory exhaustion) via a series of requests for PHP scripts.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Trend Micro InterScan VirusWall for Windows NT allows remote attackers to make configuration changes by directly calling certain CGI programs, which do not restrict access.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cisco TFTP server 1.1 allows remote attackers to read arbitrary files via a ..(dot dot) attack in the GET command.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 stores user passwords in plaintext in the pUser.Dat file.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in SpoonFTP 1.0.0.12 allows remote attackers to execute arbitrary code via a long argument to the commands (1) CWD or (2) LIST.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator access via a single character in the "loginpass" field.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in bctool in Jetico BestCrypt 0.8.1 and earlier allows local users to execute arbitrary code via a file or directory with a long pathname, which is processed during an unmount.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apache 1.3.20 on Windows servers allows remote attackers to bypass the default index page and list directory contents via a URL with a large number of / (slash) characters.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in ftp daemon (ftpd) 6.2 in Debian GNU/Linux allows attackers to cause a denial of service and possibly execute arbitrary code via a long SITE command.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in Computalynx CMail POP3 mail server 2.4.9 allows remote attackers to run arbitrary code via a long HELO command.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in Linux allows remote attackers to execute arbitrary code via a FACES format image containing a long (1) Firstname or (2) Lastname field.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
OmniHTTPd 2.0.8 and earlier allow remote attackers to obtain source code via a GET request with the URL-encoded symbol for a space (%20).
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cisco CBOS 2.3.8 and earlier stores the passwords for (1) exec and (2) enable in cleartext in the NVRAM and a configuration file, which could allow unauthorized users to obtain the passwords and gain privileges.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in iPlanet Web Server (iWS) Enterprise Edition 4.1, service packs 3 through 7, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long method name in an HTTP request.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
A long 'synch' delay in Logitech wireless mice and keyboard receivers allows a remote attacker to hijack connections via a man-in-the-middle attack.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
CatalogMgr.pl in VirtualCatalog (incorrectly claimed to be in VirtualCart) allows remote attackers to execute arbitrary code via the template parameter.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Perception LiteServe 1.25 allows remote attackers to obtain source code of CGI scripts via URLs that contain MS-DOS conventions such as (1) upper case letters or (2) 8.3 file names.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows remote attackers to obtain an absolute path for the server directory by viewing the Location header.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in avpkeeper in Kaspersky KAV 3.5.135.2 for Sendmail allows remote attackers to cause a denial of service or possibly execute arbitrary code via a malformed mail message.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in HttpSave.dll in Trend Micro InterScan WebManager 1.2 allows remote attackers to execute arbitrary code via a long value to a certain parameter.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in GuildFTPd 0.9.7 allows attackers to list or read arbitrary files and directories via a .. in (1) LS or (2) GET.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service via a message with an escaped ' character followed by JavaScript commands.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
GuildFTPd 0.9.7 stores user names and passwords in plaintext in the default.usr file, which allows local users to gain privileges as other FTP users by reading the file.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to cause a denial of service (data loss) by (1) setting a high initial message hop count option (-h), which causes Sendmail to drop queue entries, (2) via the -qR option, or (3) via the -qS option.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Hitachi Super-H architecture in NetBSD 1.5 and 1.4.1 allows a local user to gain privileges via modified Status Register contents, which are not properly handled by (1) the sigreturn system call or (2) the process_write_regs kernel routine.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Horde IMP 2.2.4 and earlier allows local users to overwrite files via a symlink attack on a temporary file.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request for a long URI with (1) GETPROPERTIES, (2) GETATTRIBUTENAMES, or other methods.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Sendmail before 8.12.1 does not properly drop privileges when the -C option is used to load custom configuration files, which allows local users to gain privileges via malformed arguments in the configuration file whose names contain characters with the high bit set, such as (1) macro names that are one character long, (2) a variable setting which is processed by the setoption function, or (3) a Modifiers setting which is processed by the getmodifiers function.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The rendering engine in Internet Explorer determines the MIME type independently of the type that is specified by the server, which allows remote servers to automatically execute script which is placed in a file whose MIME type does not normally support scripting, such as text (.txt), JPEG (.jpg), etc.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain potentially sensitive information about the mail queue by setting debugging flags to enable debug mode.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Example applications (Exampleapps) in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote attackers to conduct upload, read, or execute files by spoofing the "HTTP Host" (CGI.Host) variable in (1) the "Web Publish" example script, and (2) the "Email" example script.
Published Oct 12, 2001 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple memory leaks in Microsoft Services for Unix 2.0 allow remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed requests to (1) the Telnet service, or (2) the NFS service.
Published Oct 12, 2001 · Updated Aug 8, 2024