| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| NFS exports system-critical data to the world, e.g. / or a password file. |
| A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories. |
| A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories. |
| A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys. |
| There is a one-way or two-way trust relationship between Windows NT domains. |
| A system-critical Windows NT registry key has inappropriate permissions. |
| An event log in Windows NT has inappropriate access permissions. |
| A Windows NT account policy does not forcibly disconnect remote users from the server when their logon hours expire. |
| In Windows NT, an inappropriate user is a member of a group, e.g. Administrator, Backup Operators, Domain Admins, Domain Guests, Power Users, Print Operators, Replicators, System Operators, etc. |
| An incorrect configuration of the SoftCart CGI program "SoftCart.exe" could disclose private information. |
| An incorrect configuration of the Webcart CGI program could disclose private information. |
| A system-critical Windows NT registry key has an inappropriate value. |
| The rpc.sprayd service is running. |
| The RPC portmapper service is running. |
| HP Secure Web Console uses weak encryption. |
| The scriptlet.typelib ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy. |
| Buffer overflow in Fujitsu Chocoa IRC client via IRC channel topics. |
| Buffer overflow in ALMail32 POP3 client via From: or To: headers. |
| Buffer overflow in the Eyedog ActiveX control allows a remote attacker to execute arbitrary commands. |
| Buffer overflow in ToxSoft NextFTP client through CWD command. |
