| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Buffer overflow in iwconfig allows local users to execute arbitrary code via a long HOME environment variable. |
| rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path. |
| The OLE component in Windows 98, 2000, XP, and Server 2003, and Exchange Server 5.0 through 2003, does not properly validate the lengths of messages for certain OLE data, which allows remote attackers to execute arbitrary code, aka the "Input Validation Vulnerability." |
| Windows 2000, XP, and Server 2003 does not properly "validate the use of memory regions" for COM structured storage files, which allows attackers to execute arbitrary code, aka the "COM Structured Storage Vulnerability." |
| The Hyperlink Object Library for Windows 98, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a crafted link that triggers an "unchecked buffer" in the library, possibly due to a buffer overflow. |
| Multiple cross-site scripting (XSS) vulnerabilities in Simple PHP Blog 0.4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) entry, (2) blog_subject, and (3) blog_text parameters (involving the temp_subject variable) in (a) preview_cgi.php and (b) preview_static_cgi.php, or (4) scheme_name parameter and (5) bg_color parameters (involving the preset_name and result variables) in (c) colors.php. |
| Buffer overflow in NIS+, in Sun's rpc.nisd program. |
| Buffer overflow in statd allows root privileges. |
| root privileges via buffer overflow in df command on SGI IRIX systems. |
| Buffer overflow in suidperl (sperl), Perl 4.x and 5.x. |
| MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4. |
| Denial of service by sending forged ICMP unreachable packets. |
| WebEOC before 6.0.2 stores sensitive information in locations such as URIs, web pages, and configuration files, which allows remote attackers to obtain information such as Usernames, Passwords, Emergency information, medical information, and system configuration. |
| fsdump command in IRIX allows local users to obtain root access by modifying sensitive files. |
| Sun's ftpd daemon can be subjected to a denial of service. |
| Buffer overflows in Sun libnsl allow root access. |
| Buffer overflow in Sun's ping program can give root access to local users. |
| WebEOC before 6.0.2 does not properly check user authorization, which allows remote attackers to gain privileges via a direct request to a resource. |
| The chpass command in OpenBSD allows a local user to gain root access through file descriptor leakage. |
| Solaris ufsrestore buffer overflow. |
