Medium · CVSS 5.3
The default configuration of BEA WebLogic Server and Express 8.1 SP2 and earlier, 7.0 SP4 and earlier, 6.1 through SP6, and 5.1 through SP13 responds to the HTTP TRACE request, which can allow remote attackers to steal information using cross-site tracing (XST) attacks in applications that are vulnerable to cross-site scripting.
Published Aug 16, 2005 · Updated May 28, 2026
High · CVSS 7.8 · CISA KEV
The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overflow.
Published Jul 14, 2004 · Updated Oct 22, 2025
Medium · CVSS 5.9 · CISA KEV
Cisco IOS 12.2(15) and earlier allows remote attackers to cause a denial of service (refused VTY (virtual terminal) connections), via a crafted TCP connection to the Telnet or reverse Telnet port.
Published Feb 13, 2005 · Updated Oct 22, 2025
High · CVSS 8.4
Microsoft Windows 2000, XP, and possibly 2003 allows local users with the SeDebugPrivilege privilege to execute arbitrary code as kernel and read or write kernel memory via the NtSystemDebugControl function, which does not verify its pointer arguments. Note: this issue has been disputed, since Administrator privileges are typically required to exploit this issue, thus privilege boundaries are not crossed
Published Aug 16, 2005 · Updated Jan 16, 2025
Medium · CVSS 5.3
phpMyFAQ 1.4.0 allows remote attackers to access the Image Manager to upload or delete images without authorization via a direct request.
Published Jul 17, 2005 · Updated Jan 16, 2025
Medium · CVSS 5.5
Portage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles.
Published May 10, 2005 · Updated Jan 16, 2025
High · CVSS 7.8
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.
Published Sep 17, 2004 · Updated Jan 16, 2025
High · CVSS 7.5
mah-jong before 1.6.2 allows remote attackers to cause a denial of service (server crash) via a missing argument, which triggers a null pointer dereference.
Published Aug 19, 2004 · Updated Jan 16, 2025
High · CVSS 7.5
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
Published Mar 18, 2004 · Updated Jan 16, 2025
Unknown · CVSS Not scored
Cerberus FTP Server before 4.0.3.0 allows remote authenticated users to list hidden files, even when the "Display hidden files" option is enabled, via the (1) MLSD or (2) MLST commands.
Published Jul 2, 2010 · Updated Sep 17, 2024
Unknown · CVSS Not scored
ASP-Nuke 1.3 and earlier places user credentials under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to main.mdb.
Published May 10, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Unknown vulnerability in Moodle before 1.2 allows teachers to log in as administrators.
Published Jul 17, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (CPU consumption) via delayed responses to DNS queries.
Published Aug 17, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
CRLF injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to conduct HTTP response splitting attacks via unknown vectors.
Published Jul 10, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
The logging feature in kcms_configure in the KCMS package on Solaris 8 and 9, and possibly other versions, allows local users to corrupt arbitrary files via a symlink attack on the KCS_ClogFile file.
Published Feb 24, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Info Touch Surfnet kiosk allows local users to crash Surfnet and access the underlying operating system via the CMD_CREDITCARD_CHARGE command.
Published May 10, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Unspecified vulnerability in PD9 Software MegaBBS 2.0 and 2.1 allows attackers to gain privileges via unknown vectors involving (1) admin/userlevelmembers-edit.asp and (2) admin/edit-groups.asp.
Published Jan 9, 2006 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Apple Remote Desktop Client 1.2.4 executes a GUI application as root when it is started by an Apple Remote Desktop Administrator application, which allows remote authenticated users to execute arbitrary code when loginwindow is active via Fast User Switching.
Published Oct 28, 2004 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Published Jul 10, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions.
Published Oct 28, 2004 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Info Touch Surfnet kiosk allows local users to access the underlying filesystem via a 'file://' URI.
Published May 10, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Buffer overflow in Gyach Enhanced (Gyach-E) before 1.0.0-SneakPeek-3 allows remote attackers to cause a denial of service (crash) via unspecified vectors related to "URL data."
Published Oct 6, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock from being released and causes a memory leak.
Published Dec 9, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in index.php in phpGroupWare 0.9.14.005 and earlier allows remote attackers to inject arbitrary web script or HTML via the date parameter in a calendar.uicalendar.planner menuaction.
Published Nov 28, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has unknown impact and attack vectors.
Published Apr 15, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
PHPMyChat 0.14.5 does not remove or protect setup.php3 after installation, which allows attackers to obtain sensitive information including database passwords via a direct request.
Published Oct 6, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in Unzoo 4.4-2 has unknown impact and attack vectors.
Published Jul 10, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in the Downloads module in PostNuke up to 0.726, and possibly later versions, allows remote attackers to inject arbitrary HTML and web script via the ttitle parameter in a viewdownloaddetails action.
Published Nov 14, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
The web management interface in Edimax AR-6004 ADSL Routers uses a default administrator name and password, which also appear as the default login text for the management interface, which allows remote attackers to gain access.
Published May 10, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (SMTP proxy failure) via unknown attack vendors involving an "extremely busy network." NOTE: this might not be a vulnerability because the embedded monitoring sub-system automatically restarts after the failure.
Published Nov 20, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
SQL injection vulnerability in MediaWiki 1.3.5 allows remote attackers to execute arbitrary SQL commands via SpecialMaintenance.
Published Jul 10, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
CVS 1.12 and earlier on Debian GNU/Linux does not properly handle when a mapping for the current repository does not exist in the cvs-repouids file, which allows remote attackers to cause a denial of service (server crash).
Published Apr 27, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Unknown "overflow" in the phpgw_config table for phpGroupWare before 0.9.14.002 has unknown attack vectors and impact.
Published Aug 18, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in browser.php in JBrowser 1.0 through 2.1 allows remote attackers to read arbitrary files via the directory parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Published Nov 14, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
phpGroupWare 0.9.14.005 and earlier allow remote attackers to obtain sensitive information via a direct request to (1) hook_admin.inc.php, (2) hook_home.inc.php, (3) class.holidaycalc.inc.php, and (4) setup.inc.php.sample, which reveals the path in an error message.
Published Nov 28, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
DansGuardian before 2.7.7-2 allows remote attackers to bypass URL filters via a ".." in the request.
Published Jul 19, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Information leak in Mbedthis AppWeb HTTP server 1.0 through 1.1.2 allows remote attackers to obtain sensitive information via a user message that is generated when Mbedthis denies access.
Published Aug 16, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
AFP Server on Mac OS X 10.3.x to 10.3.5, under certain conditions, does not properly set the guest group ID, which causes AFP to change a write-only AFP Drop Box to be read-write when the Drop Box is on a share that is mounted by a guest, which allows attackers to read the Drop Box.
Published Oct 28, 2004 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Multiple buffer overflows in Gyach Enhanced (Gyach-E) before 1.0.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to "avatar retrieval."
Published Oct 6, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
id3_utf16_deserialize() in utf16.c in libid3tag through 0.15.1b misparses ID3v2 tags encoded in UTF-16 with an odd number of bytes, triggering an endless loop allocating memory until an OOM condition is reached, leading to denial-of-service (DoS).
Published Feb 20, 2018 · Updated Sep 17, 2024
Unknown · CVSS Not scored
The ftp_syslog function in ftpd in SGI IRIX 6.5.20 "doesn't work with anonymous FTP," which has an unknown impact, possibly preventing the actions of anonymous users from being logged.
Published May 10, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Unspecified vulnerability in Gyach Enhanced (Gyach-E) before 1.0.4 allows remote attackers to cause a denial of service (crash) via conference packets with error messages.
Published Oct 6, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
The MIMEH_read_headers function in ripMIME 1.3.1.0 does not properly handle trailing "\r" and "\n" characters in headers, which leads to a buffer underflow.
Published Dec 4, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Canonicalize-before-filter error in the send_review function in the Reviews module for PHP-Nuke 6.0 to 7.3 allows remote attackers to inject arbitrary web script or HTML via hex-encoded XSS sequences in the text parameter, which is checked for dangerous sequences before it is canonicalized, leading to a cross-site scripting (XSS) vulnerability.
Published Aug 4, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Unknown versions of Symantec Norton AntiVirus and Microsoft Outlook allow attackers to cause a denial of service (crash) via malformed e-mail messages (1) without a body or (2) without a carriage return ("\n") separating the headers from the body.
Published Jul 1, 2005 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Multiple buffer overflows in Gyach Enhanced (Gyach-E) before 1.0.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to (1) sending certain typing statuses or (2) setting the chat room status bar to the current chat room name.
Published Oct 6, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
AFP Server on Mac OS X 10.3.x to 10.3.5, when a guest has mounted an AFP volume, allows the guest to "terminate authenticated user mounts" via modified SessionDestroy packets.
Published Oct 28, 2004 · Updated Sep 17, 2024
Unknown · CVSS Not scored
The default configuration of Sun ONE/iPlanet Web Server 4.1 SP1 through SP12 and 6.0 SP1 through SP5 responds to the HTTP TRACE request, which can allow remote attackers to steal information using cross-site tracing (XST) attacks in applications that are vulnerable to cross-site scripting.
Published Jun 1, 2009 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in Goollery before 0.04b allows remote attackers to inject arbitrary HTML or web script via the conversation_id parameter to viewpic.php.
Published Jul 17, 2005 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Unknown vulnerability in Moodle before 1.3.3 has unknown impact and attack vectors, related to language setting.
Published Jul 17, 2005 · Updated Sep 16, 2024