Search
Total
86024 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2007-2975 | 1 Ignite Realtime | 1 Openfire | 2008-09-10 | 7.5 HIGH | N/A |
| The admin console in Ignite Realtime Openfire 3.3.0 and earlier (formerly Wildfire) does not properly specify a filter mapping in web.xml, which allows remote attackers to gain privileges and execute arbitrary code by accessing functionality that is exposed through DWR, as demonstrated using the downloader. | |||||
| CVE-2004-0637 | 1 Oracle | 2 Oracle8i, Oracle9i | 2008-09-10 | 6.5 MEDIUM | N/A |
| Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible. | |||||
| CVE-1999-0887 | 1 Floosietek | 1 Ftgate | 2008-09-09 | 5.0 MEDIUM | N/A |
| FTGate web interface server allows remote attackers to read files via a .. (dot dot) attack. | |||||
| CVE-1999-0885 | 1 Computer Software Manufaktur | 1 Alibaba | 2008-09-09 | 3.6 LOW | N/A |
| Alibaba web server allows remote attackers to execute commands via a pipe character in a malformed URL. | |||||
| CVE-1999-0882 | 1 Falcon | 1 Falcon Web Server | 2008-09-09 | 5.0 MEDIUM | N/A |
| Falcon web server allows remote attackers to determine the absolute path of the web root via long file names. | |||||
| CVE-1999-0985 | 1 Cc | 1 Cc Whois | 2008-09-09 | 7.5 HIGH | N/A |
| CC Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry. | |||||
| CVE-1999-0984 | 1 Matts Whois | 1 Matts Whois | 2008-09-09 | 7.5 HIGH | N/A |
| Matt's Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry. | |||||
| CVE-1999-0881 | 1 Blueface | 1 Falcon Web Server | 2008-09-09 | 5.0 MEDIUM | N/A |
| Falcon web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-1999-0880 | 2 Bsdi, Caldera | 2 Bsd Os, Openlinux | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in WU-FTPD via the SITE NEWER command, which does not free memory properly. | |||||
| CVE-1999-0879 | 2 Bsdi, Caldera | 2 Bsd Os, Openlinux | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file. | |||||
| CVE-1999-0878 | 2 Beroftpd, Washington University | 2 Beroftpd, Wu-ftpd | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR. | |||||
| CVE-1999-0873 | 1 Sky Communications | 1 Skyfull | 2008-09-09 | 7.5 HIGH | N/A |
| Buffer overflow in Skyfull mail server via MAIL FROM command. | |||||
| CVE-1999-0872 | 4 Caldera, Debian, Paul Vixie and 1 more | 4 Openlinux, Debian Linux, Vixie Cron and 1 more | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file. | |||||
| CVE-1999-0868 | 5 Isc, Nec, Netscape and 2 more | 6 Inn, Goah Intrasv, Goah Networksv and 3 more | 2008-09-09 | 7.2 HIGH | N/A |
| ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN. | |||||
| CVE-1999-0863 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 4.6 MEDIUM | N/A |
| Buffer overflow in FreeBSD seyon via HOME environmental variable, -emulator argument, -modems argument, or the GUI. | |||||
| CVE-1999-0862 | 1 Postgresql | 1 Postgresql | 2008-09-09 | 2.1 LOW | N/A |
| Insecure directory permissions in RPM distribution for PostgreSQL allows local users to gain privileges by reading a plaintext password file. | |||||
| CVE-1999-0983 | 1 Internic | 1 Whois Lookup | 2008-09-09 | 7.5 HIGH | N/A |
| Whois Internic Lookup program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry. | |||||
| CVE-1999-0982 | 1 Sun | 2 Solaris, Web-based Enterprise Management | 2008-09-09 | 7.2 HIGH | N/A |
| The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file. | |||||
| CVE-1999-0857 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 2.1 LOW | N/A |
| FreeBSD gdc program allows local users to modify files via a symlink attack. | |||||
| CVE-1999-0828 | 1 Sco | 1 Unixware | 2008-09-09 | 3.6 LOW | N/A |
| UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission. | |||||
| CVE-1999-0956 | 1 Next | 1 Nextstep | 2008-09-09 | 7.2 HIGH | N/A |
| The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service. | |||||
| CVE-1999-0957 | 1 Great Circle Associates | 1 Majorcool | 2008-09-09 | 2.1 LOW | N/A |
| MajorCool mj_key_cache program allows local users to modify files via a symlink attack. | |||||
| CVE-1999-0856 | 1 Slackware | 1 Slackware Linux | 2008-09-09 | 5.0 MEDIUM | N/A |
| login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist. | |||||
| CVE-1999-0960 | 1 Sgi | 1 Irix | 2008-09-09 | 7.2 HIGH | N/A |
| IRIX cdplayer allows local users to create directories in arbitrary locations via a command line option. | |||||
| CVE-1999-0965 | 1 X.org | 1 Xterm | 2008-09-09 | 6.2 MEDIUM | N/A |
| Race condition in xterm allows local users to modify arbitrary files via the logging option. | |||||
| CVE-1999-0964 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATH_LOCALE environment variable. | |||||
| CVE-1999-0975 | 1 Microsoft | 3 Windows 95, Windows 98, Windows Nt | 2008-09-09 | 4.6 MEDIUM | N/A |
| The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed. | |||||
| CVE-1999-0855 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in FreeBSD gdc program. | |||||
| CVE-1999-0854 | 1 Infopop | 1 Ultimate Bulletin Board | 2008-09-09 | 5.0 MEDIUM | N/A |
| Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file. | |||||
| CVE-1999-0826 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 4.6 MEDIUM | N/A |
| Buffer overflow in FreeBSD angband allows local users to gain privileges. | |||||
| CVE-1999-0853 | 1 Netscape | 2 Enterprise Server, Fasttrack Server | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure. | |||||
| CVE-1999-0852 | 1 Ibm | 1 Websphere Application Server | 2008-09-09 | 7.2 HIGH | N/A |
| IBM WebSphere sets permissions that allow a local user to modify a deinstallation script or its data files stored in /usr/bin. | |||||
| CVE-1999-0978 | 1 Debian | 1 Debian Linux | 2008-09-09 | 7.5 HIGH | N/A |
| htdig allows remote attackers to execute commands via filenames with shell metacharacters. | |||||
| CVE-1999-0850 | 1 Endymion | 1 Mailman Webmail | 2008-09-09 | 3.6 LOW | N/A |
| The default permissions for Endymion MailMan allow local users to read email or modify files. | |||||
| CVE-1999-0825 | 1 Sco | 1 Unixware | 2008-09-09 | 3.6 LOW | N/A |
| The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail. | |||||
| CVE-1999-0962 | 1 Hp | 1 Hp-ux | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option. | |||||
| CVE-1999-0943 | 1 Openlink | 1 Openlink | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in OpenLink 3.2 allows remote attackers to gain privileges via a long GET request to the web configurator. | |||||
| CVE-1999-0849 | 1 Isc | 1 Bind | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in BIND named via maxdname. | |||||
| CVE-1999-0976 | 1 Eric Allman | 1 Sendmail | 2008-09-09 | 2.1 LOW | N/A |
| Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail. | |||||
| CVE-1999-0963 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 7.2 HIGH | N/A |
| FreeBSD mount_union command allows local users to gain root privileges via a symlink attack. | |||||
| CVE-1999-0846 | 1 Deerfield | 1 Mdaemon | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in MDaemon 2.7 via a large number of connection attempts. | |||||
| CVE-1999-0950 | 1 Texas Imperial Software | 1 Wftpd | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories. | |||||
| CVE-1999-0845 | 1 Sco | 1 Unixware | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in SCO su program allows local users to gain root access via a long username. | |||||
| CVE-1999-0951 | 1 Omnicron | 1 Omnihttpd | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in OmniHTTPd CGI program imagemap.exe allows remote attackers to execute commands. | |||||
| CVE-1999-0824 | 1 Microsoft | 1 Windows Nt | 2008-09-09 | 4.6 MEDIUM | N/A |
| A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later users. | |||||
| CVE-1999-0823 | 1 Freebsd | 1 Freebsd | 2008-09-09 | 4.6 MEDIUM | N/A |
| Buffer overflow in FreeBSD xmindpath allows local users to gain privileges via -f argument. | |||||
| CVE-1999-0822 | 1 Qualcomm | 1 Qpopper | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command. | |||||
| CVE-1999-0953 | 1 Matt Wright | 1 Wwwboard | 2008-09-09 | 10.0 HIGH | N/A |
| WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers. | |||||
| CVE-1999-0954 | 1 Matt Wright | 1 Wwwboard | 2008-09-09 | 7.5 HIGH | N/A |
| WWWBoard has a default username and default password. | |||||
| CVE-1999-0844 | 1 Deerfield | 1 Mdaemon | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in MDaemon WorldClient and WebConfig services via a long URL. | |||||