Total
29737 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0916 | 1 Webtrends | 5 Webtrends Enterprise Suite, Webtrends For Firewalls, Webtrends Log Analyzer and 2 more | 2025-04-03 | N/A |
| WebTrends software stores account names and passwords in a file which does not have restricted access permissions. | ||||
| CVE-2002-0498 | 1 Etnus | 1 Totalview | 2025-04-03 | N/A |
| Etnus TotalView 5.0.0-4 installs certain files with UID 5039 and GID 59, which could allow local users with that UID or GID to modify the files and gain privileges as other TotalView users. | ||||
| CVE-1999-0920 | 1 University Of Washington | 2 Imap, Pop2d | 2025-04-03 | N/A |
| Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command. | ||||
| CVE-1999-0921 | 1 Bmc | 1 Patrol Agent | 2025-04-03 | N/A |
| BMC Patrol allows any remote attacker to flood its UDP port, causing a denial of service. | ||||
| CVE-2001-0270 | 1 Marconi | 2 Asx-1000, Forethought | 2025-04-03 | N/A |
| Marconi ASX-1000 ASX switches allow remote attackers to cause a denial of service in the telnet and web management interfaces via a malformed packet with the SYN-FIN and More Fragments attributes set. | ||||
| CVE-2005-4335 | 1 Courseforum | 1 Projectforum | 2025-04-03 | N/A |
| ProjectForum 4.7.0 and earlier allows remote attackers to cause a denial of service (crash) via a crafted pageid parameter to admin/versions.html. | ||||
| CVE-1999-0940 | 1 Mutt | 1 Mutt Mail Client | 2025-04-03 | N/A |
| Buffer overflow in mutt mail client allows remote attackers to execute commands via malformed MIME messages. | ||||
| CVE-1999-0949 | 3 Sgi, Sun, Turbolinux | 4 Irix, Solaris, Sunos and 1 more | 2025-04-03 | N/A |
| Buffer overflow in canuum program for Canna input system allows local users to gain root privileges. | ||||
| CVE-2005-1008 | 1 Asp-dev | 1 Xm Forum | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in posts.asp for ASP-DEv XM Forum RC3 allows remote attackers to inject arbitrary web script or HTML via a "javascript:" URL in an IMG tag. | ||||
| CVE-2005-0878 | 1 Mercuryboard | 1 Mercuryboard Message Board | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in MercuryBoard before 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the title field of a PM (private message). | ||||
| CVE-2002-0676 | 1 Apple | 1 Mac Os X | 2025-04-03 | N/A |
| SoftwareUpdate for MacOS 10.1.x does not use authentication when downloading a software update, which could allow remote attackers to execute arbitrary code by posing as the Apple update server via techniques such as DNS spoofing or cache poisoning, and supplying Trojan Horse updates. | ||||
| CVE-2002-1834 | 1 Xerox | 2 Docutech 6110, Docutech 6115 | 2025-04-03 | N/A |
| The default configuration of Xerox DocuTech 6110 and DocuTech 6115 allows remote attackers to connect to the web server and (1) submit print jobs directly into the "print now" queue or (2) read the scanner job history. | ||||
| CVE-2002-1837 | 1 Ids | 1 Ids | 2025-04-03 | N/A |
| The getAlbumToDisplay function in idsShared.pm for Image Display System (IDS) 0.81 allows remote attackers to determine the existence of arbitrary directories via ".." sequences in the album parameter, which generates different error messages depending on whether the directory exists or not. | ||||
| CVE-2005-2858 | 1 Rediff | 1 Bol | 2025-04-03 | N/A |
| The Fetch.FetchContact.1 ActiveX control (Fetch.dll) for Rediff Bol 7.0 allows remote attackers to read the Windows Address Book via the FullAddressBook method. | ||||
| CVE-2006-0539 | 1 Thibault Godouet | 1 Fcron | 2025-04-03 | N/A |
| The convert-fcrontab program in fcron 3.0.0 might allow local users to gain privileges via a long command-line argument, which causes Linux glibc to report heap memory corruption, possibly because a strcpy in the strdup2 function can "overwrite some data." | ||||
| CVE-1999-0979 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed. | ||||
| CVE-1999-0983 | 1 Internic | 1 Whois Lookup | 2025-04-03 | N/A |
| Whois Internic Lookup program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry. | ||||
| CVE-1999-0997 | 3 Millenux Gmbh, Redhat, University Of Washington | 3 Anonftp, Linux, Wu-ftpd | 2025-04-03 | N/A |
| wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress. | ||||
| CVE-1999-1002 | 1 Netscape | 1 Communicator | 2025-04-03 | N/A |
| Netscape Navigator uses weak encryption for storing a user's Netscape mail password. | ||||
| CVE-1999-1004 | 1 Symantec | 1 Norton Antivirus | 2025-04-03 | N/A |
| Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command. | ||||