Search Results (29815 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2000-0784 1 Rapidstream 1 Rapidstream 2025-04-03 N/A
sshd program in the Rapidstream 2.1 Beta VPN appliance has a hard-coded "rsadmin" account with a null password, which allows remote attackers to execute arbitrary commands via ssh.
CVE-2002-0902 1 Phpbb Group 1 Phpbb 2025-04-03 N/A
Cross-site scripting vulnerability in phpBB 2.0.0 (phpBB2) allows remote attackers to execute Javascript as other phpBB users by including a http:// and a double-quote (") in the [IMG] tag, which bypasses phpBB's security check, terminates the src parameter of the resulting HTML IMG tag, and injects the script.
CVE-2000-0785 1 Wircsrv 1 Irc Server 2025-04-03 N/A
WircSrv IRC Server 5.07s allows IRC operators to read arbitrary files via the importmotd command, which sets the Message of the Day (MOTD) to the specified file.
CVE-2000-0832 1 Oscar Nierstrasz 1 Htgrep 2025-04-03 N/A
Htgrep CGI program allows remote attackers to read arbitrary files by specifying the full pathname in the hdr parameter.
CVE-2000-0833 1 Jack De Winter 1 Winsmtp 2025-04-03 N/A
Buffer overflow in WinSMTP 1.06f and 2.X allows remote attackers to cause a denial of service via a long (1) USER or (2) HELO command.
CVE-2000-0838 1 Fastream 1 Fur Http Server 2025-04-03 N/A
Fastream FUR HTTP server 1.0b allows remote attackers to cause a denial of service via a long GET request.
CVE-2000-0840 1 Davide Libenzi 1 Xmail 2025-04-03 N/A
Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long USER command.
CVE-2000-0841 1 Davide Libenzi 1 Xmail 2025-04-03 N/A
Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long APOP command.
CVE-2002-0911 1 Caldera 1 Volution Manager 2025-04-03 N/A
Caldera Volution Manager 1.1 stores the Directory Administrator password in cleartext in the slapd.conf file, which could allow local users to gain privileges.
CVE-2004-1503 1 Sun 1 Jre 2025-04-03 N/A
Integer overflow in the InitialDirContext in Java Runtime Environment (JRE) 1.4.2, 1.5.0 and possibly other versions allows remote attackers to cause a denial of service (Java exception and failed DNS requests) via a large number of DNS requests, which causes the xid variable to wrap around and become negative.
CVE-2001-0129 1 Tinyproxy 1 Tinyproxy 2025-04-03 N/A
Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long connect request.
CVE-2000-0863 1 Listmanager 1 Linux 2025-04-03 N/A
Buffer overflow in listmanager earlier than 2.105.1 allows local users to gain additional privileges.
CVE-2000-0870 1 Khamil Landross And Zack Jones 1 Eftp 2025-04-03 N/A
Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string.
CVE-2002-0916 1 Stellar-x Software 1 Msntauth 2025-04-03 N/A
Format string vulnerability in the allowuser code for the Stellar-X msntauth authentication module, as distributed in Squid 2.4.STABLE6 and earlier, allows remote attackers to execute arbitrary code via format strings in the user name, which are not properly handled in a syslog call.
CVE-2000-0124 1 Surfcontrol 1 Superscout 2025-04-03 N/A
surfCONTROL SuperScout does not properly asign a category to web sites with a . (dot) at the end, which may allow users to bypass web access restrictions.
CVE-1999-1075 1 Ibm 1 Aix 2025-04-03 N/A
inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd.
CVE-2004-1555 1 Broadboard Instant 1 Asp Message Board 2025-04-03 N/A
Multiple SQL injection vulnerabilities in BroadBoard Instant ASP Message Board allow remote attackers to run arbitrary SQL commands via the (1) keywords parameter to search.asp, (2) handle parameter to profile.asp, (3) txtUserHandle parameter to reg2.asp or (4) txtUserEmail parameter to forgot.asp.
CVE-1999-1076 1 Apple 1 Macos 2025-04-03 N/A
Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selecting a "Cancel" option in the dialog box for an application that attempts to verify that the user wants to log out, which returns the attacker into the locked session.
CVE-2000-0871 1 Khamil Landross And Zack Jones 1 Eftp 2025-04-03 N/A
Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server.
CVE-2002-0929 1 Novell 1 Netware 2025-04-03 N/A
Buffer overflows in the DHCP server for NetWare 6.0 SP1 allow remote attackers to cause a denial of service (reboot) via long DHCP requests.