Total
29737 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-3936 | 1 Socketkb | 1 Socketkb | 2025-04-03 | N/A |
| PHP file include vulnerability in SocketKB 1.1.0 and earlier allows remote attackers to include arbitrary local files via the __f parameter. | ||||
| CVE-2001-0937 | 1 Matt Wright | 1 Pgpmail.pl | 2025-04-03 | N/A |
| PGPMail.pl 1.31 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) recipient or (2) pgpuserid parameters. | ||||
| CVE-2001-0946 | 1 Redhat | 1 Linux | 2025-04-03 | N/A |
| apmscript in Apmd in Red Hat 7.2 "Enigma" allows local users to create or change the modification dates of arbitrary files via a symlink attack on the LOW_POWER temporary file, which could be used to cause a denial of service, e.g. by creating /etc/nologin and disabling logins. | ||||
| CVE-2004-1228 | 1 Sugarcrm | 1 Sugar Sales | 2025-04-03 | N/A |
| The install scripts in SugarCRM Sugar Sales 2.0.1c and earlier are not removed after installation, which allows attackers to obtain the MySQL administrative password in cleartext from an installation form, or to cause a denial of service by changing database settings to the default. | ||||
| CVE-2001-0953 | 1 Nara Vision | 1 Kebi Community | 2025-04-03 | N/A |
| Kebi WebMail allows remote attackers to access the administrator menu and gain privileges via the /a/ hidden directory, which is installed under the web document root. | ||||
| CVE-2004-1256 | 1 Abcmidi | 1 Abcmidi | 2025-04-03 | N/A |
| Multiple buffer overflows in the (1) event_text and (2) event_specific functions in abc2midi 2004.12.04 allow remote attackers to execute arbitrary code via crafted ABC files. | ||||
| CVE-2005-3950 | 1 Nufw | 1 Nufw | 2025-04-03 | N/A |
| nuauth in NuFW 1.0.x before 1.0.16 and 1.1 allows authenticated users to cause a denial of service via malformed packets. | ||||
| CVE-2006-3491 | 1 Christophe Thibault | 1 Kaillera | 2025-04-03 | N/A |
| Stack-based buffer overflow in Kaillera Server 0.86 and earlier allows remote attackers to execute arbitrary code via a long nickname. | ||||
| CVE-2006-3492 | 1 Mico | 1 Mico | 2025-04-03 | N/A |
| The CORBA::ORBInvokeRec::set_answer_invoke function in orb.cc in MICO (Mico Is CORBA) 2.3.12 and earlier allows remote attackers to cause a denial of service (application crash) via a message with an incorrect "object key", which triggers an assert error. | ||||
| CVE-2006-3508 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2025-04-03 | N/A |
| Heap-based buffer overflow in the AirPort wireless driver on Apple Mac OS X 10.4.7 allows physically proximate attackers to cause a denial of service (crash), gain privileges, and execute arbitrary code via a crafted frame that is not properly handled during scan cache updates. | ||||
| CVE-2001-0966 | 1 Nudester.org | 1 Nudester | 2025-04-03 | N/A |
| Directory traversal vulnerability in Nudester 1.10 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the CD (CWD) command. | ||||
| CVE-2006-3533 | 1 Pivot | 1 Pivot | 2025-04-03 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.30 RC2 and earlier, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) fg, (2) line1, (3) line2, (4) bg, (5) c1, (6) c2, (7) c3, and (8) c4 parameters in (a) includes/blogroll.php; (9) name and (10) js_name parameters in (b) includes/editor/edit_menu.php; and, even if register_globals is not enabled, the (11) h and (12) w parameters in (c) includes/photo.php. | ||||
| CVE-2002-1386 | 1 Ehud Gavron | 1 Tracesroute | 2025-04-03 | N/A |
| Buffer overflow in traceroute-nanog (aka traceroute-ng) may allow local users to execute arbitrary code via a long hostname argument. | ||||
| CVE-2001-0969 | 1 Freebsd | 1 Freebsd | 2025-04-03 | N/A |
| ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw to allow connections from arbitrary remote hosts. | ||||
| CVE-2005-3958 | 1 Entergal Mx | 1 Entergal Mx | 2025-04-03 | N/A |
| SQL injection vulnerability in index.php in Entergal MX 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) idcat parameter in a showcat action and (2) the action parameter. | ||||
| CVE-2004-1273 | 1 Greed | 1 Greed | 2025-04-03 | N/A |
| Buffer overflow in the DownloadLoop function in main.c for greed 0.81p allows remote attackers to execute arbitrary code via a GRX file containing a long filename. | ||||
| CVE-2001-0975 | 1 Oracle | 1 Internet Directory | 2025-04-03 | N/A |
| Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite. | ||||
| CVE-2006-0853 | 1 Truenorth Software | 1 Ia Emailserver | 2025-04-03 | N/A |
| Buffer overflow in the IMAP service of TrueNorth Internet Anywhere (IA) eMailserver 5.3.4 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long SEARCH argument. | ||||
| CVE-2004-1280 | 1 Junkie | 1 Junkie Ftp Client | 2025-04-03 | N/A |
| The gui_popup_view_fly function in gui_tview_popup.c for junkie 0.3.1 allows remote malicious FTP servers to execute arbitrary commands via shell metacharacters in a filename. | ||||
| CVE-2004-1281 | 1 Junkie | 1 Junkie Ftp Client | 2025-04-03 | N/A |
| The ftp_retr function in junkie 0.3.1 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in a filename. | ||||