Search
Total
86024 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2002-1401 | 1 Postgresql | 1 Postgresql | 2008-09-10 | 6.5 MEDIUM | N/A |
| Buffer overflows in (1) circle_poly, (2) path_encode and (3) path_add (also incorrectly identified as path_addr) for PostgreSQL 7.2.3 and earlier allow attackers to cause a denial of service and possibly execute arbitrary code, possibly as a result of an integer overflow. | |||||
| CVE-2000-0155 | 1 Microsoft | 3 Windows 95, Windows 98, Windows Nt | 2008-09-10 | 7.2 HIGH | N/A |
| Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive. | |||||
| CVE-1999-0953 | 1 Matt Wright | 1 Wwwboard | 2008-09-09 | 10.0 HIGH | N/A |
| WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers. | |||||
| CVE-1999-1056 | 2008-09-09 | N/A | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1395. Reason: This candidate is a duplicate of CVE-1999-1395. Notes: All CVE users should reference CVE-1999-1395 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
| CVE-1999-0972 | 1 Wolfpack Development | 1 Xshipwars | 2008-09-09 | 7.5 HIGH | N/A |
| Buffer overflow in Xshipwars xsw program. | |||||
| CVE-1999-0996 | 1 Infoseek | 1 Ultraseek Server | 2008-09-09 | 7.5 HIGH | N/A |
| Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request. | |||||
| CVE-1999-0975 | 1 Microsoft | 3 Windows 95, Windows 98, Windows Nt | 2008-09-09 | 4.6 MEDIUM | N/A |
| The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed. | |||||
| CVE-1999-0954 | 1 Matt Wright | 1 Wwwboard | 2008-09-09 | 7.5 HIGH | N/A |
| WWWBoard has a default username and default password. | |||||
| CVE-1999-0821 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 4.6 MEDIUM | N/A |
| FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument. | |||||
| CVE-1999-0976 | 1 Eric Allman | 1 Sendmail | 2008-09-09 | 2.1 LOW | N/A |
| Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail. | |||||
| CVE-1999-1009 | 1 Disney | 1 Go Express Search | 2008-09-09 | 2.6 LOW | N/A |
| The Disney Go Express Search allows remote attackers to access and modify search information for users by connecting to an HTTP server on the user's system. | |||||
| CVE-1999-1108 | 2008-09-09 | N/A | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1107. Reason: This candidate is a duplicate of CVE-1999-1107. Notes: All CVE users should reference CVE-1999-1107 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
| CVE-1999-0852 | 1 Ibm | 1 Websphere Application Server | 2008-09-09 | 7.2 HIGH | N/A |
| IBM WebSphere sets permissions that allow a local user to modify a deinstallation script or its data files stored in /usr/bin. | |||||
| CVE-1999-0951 | 1 Omnicron | 1 Omnihttpd | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in OmniHTTPd CGI program imagemap.exe allows remote attackers to execute commands. | |||||
| CVE-1999-0933 | 1 Teamshare | 1 Teamtrack | 2008-09-09 | 5.0 MEDIUM | N/A |
| TeamTrack web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-1999-0932 | 1 Mediahouse Software | 1 Statistics Server | 2008-09-09 | 7.2 HIGH | N/A |
| Mediahouse Statistics Server allows remote attackers to read the administrator password, which is stored in cleartext in the ss.cfg file. | |||||
| CVE-1999-1101 | 1 Kab Software | 1 Lydia | 2008-09-09 | 4.6 MEDIUM | N/A |
| Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords and gain privileges. | |||||
| CVE-1999-0911 | 1 Proftpd Project | 1 Proftpd | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories. | |||||
| CVE-1999-0885 | 1 Computer Software Manufaktur | 1 Alibaba | 2008-09-09 | 3.6 LOW | N/A |
| Alibaba web server allows remote attackers to execute commands via a pipe character in a malformed URL. | |||||
| CVE-1999-0853 | 1 Netscape | 2 Enterprise Server, Fasttrack Server | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure. | |||||
| CVE-1999-0882 | 1 Falcon | 1 Falcon Web Server | 2008-09-09 | 5.0 MEDIUM | N/A |
| Falcon web server allows remote attackers to determine the absolute path of the web root via long file names. | |||||
| CVE-1999-0855 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in FreeBSD gdc program. | |||||
| CVE-1999-0868 | 5 Isc, Nec, Netscape and 2 more | 6 Inn, Goah Intrasv, Goah Networksv and 3 more | 2008-09-09 | 7.2 HIGH | N/A |
| ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN. | |||||
| CVE-1999-0854 | 1 Infopop | 1 Ultimate Bulletin Board | 2008-09-09 | 5.0 MEDIUM | N/A |
| Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file. | |||||
| CVE-1999-0845 | 1 Sco | 1 Unixware | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in SCO su program allows local users to gain root access via a long username. | |||||
| CVE-1999-0846 | 1 Deerfield | 1 Mdaemon | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in MDaemon 2.7 via a large number of connection attempts. | |||||
| CVE-1999-0844 | 1 Deerfield | 1 Mdaemon | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in MDaemon WorldClient and WebConfig services via a long URL. | |||||
| CVE-1999-0843 | 1 Cisco | 1 Router | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in Cisco routers running NAT via a PORT command from an FTP client to a Telnet port. | |||||
| CVE-1999-0971 | 1 University Of Cambridge | 1 Exim | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in Exim allows local users to gain root privileges via a long :include: option in a .forward file. | |||||
| CVE-1999-0822 | 1 Qualcomm | 1 Qpopper | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command. | |||||
| CVE-1999-0982 | 1 Sun | 2 Solaris, Web-based Enterprise Management | 2008-09-09 | 7.2 HIGH | N/A |
| The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file. | |||||
| CVE-1999-1001 | 1 Cisco | 1 Cache Engine | 2008-09-09 | 2.6 LOW | N/A |
| Cisco Cache Engine allows a remote attacker to gain access via a null username and password. | |||||
| CVE-1999-0984 | 1 Matts Whois | 1 Matts Whois | 2008-09-09 | 7.5 HIGH | N/A |
| Matt's Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry. | |||||
| CVE-1999-0834 | 1 Rsa | 1 Rsaref | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in RSAREF2 via the encryption and decryption functions in the RSAREF library. | |||||
| CVE-1999-0836 | 1 Sco | 1 Unixware | 2008-09-09 | 10.0 HIGH | N/A |
| UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack. | |||||
| CVE-1999-0838 | 1 Deerfield | 1 Serv-u Ftp-server | 2008-09-09 | 5.0 MEDIUM | N/A |
| Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command. | |||||
| CVE-1999-0856 | 1 Slackware | 1 Slackware Linux | 2008-09-09 | 5.0 MEDIUM | N/A |
| login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist. | |||||
| CVE-1999-0857 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 2.1 LOW | N/A |
| FreeBSD gdc program allows local users to modify files via a symlink attack. | |||||
| CVE-1999-0872 | 4 Caldera, Debian, Paul Vixie and 1 more | 4 Openlinux, Debian Linux, Vixie Cron and 1 more | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file. | |||||
| CVE-1999-0873 | 1 Sky Communications | 1 Skyfull | 2008-09-09 | 7.5 HIGH | N/A |
| Buffer overflow in Skyfull mail server via MAIL FROM command. | |||||
| CVE-1999-0892 | 1 Netscape | 1 Communicator | 2008-09-09 | 4.6 MEDIUM | N/A |
| Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font. | |||||
| CVE-1999-0893 | 1 Sco | 1 Openserver | 2008-09-09 | 2.1 LOW | N/A |
| userOsa in SCO OpenServer allows local users to corrupt files via a symlink attack. | |||||
| CVE-1999-1074 | 1 Webmin | 1 Webmin | 2008-09-09 | 7.5 HIGH | N/A |
| Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking. | |||||
| CVE-1999-0904 | 1 Byte Fusion | 1 Bftelnet | 2008-09-09 | 5.0 MEDIUM | N/A |
| Buffer overflow in BFTelnet allows remote attackers to cause a denial of service via a long username. | |||||
| CVE-1999-0905 | 1 Axent | 1 Raptor Firewall | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in Axent Raptor firewall via malformed zero-length IP options. | |||||
| CVE-1999-0906 | 1 Suse | 1 Suse Linux | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable. | |||||
| CVE-1999-0907 | 1 Steven J. Merrifield | 1 Soundcard Cw | 2008-09-09 | 2.1 LOW | N/A |
| sccw allows local users to read arbitrary files. | |||||
| CVE-1999-0927 | 1 Gordano | 1 Ntmail | 2008-09-09 | 5.0 MEDIUM | N/A |
| NTMail allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-1999-0939 | 1 Debian | 1 Debian Linux | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in Debian IRC Epic/epic4 client via a long string. | |||||
| CVE-1999-1004 | 1 Symantec | 1 Norton Antivirus | 2008-09-09 | 5.0 MEDIUM | N/A |
| Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command. | |||||