Search Results (29815 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2000-0609 1 Netwin 2 Cwmail, Dmailweb 2025-04-03 N/A
NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to cause a denial of service via a long username parameter.
CVE-1999-1055 1 Microsoft 1 Excel 2025-04-03 N/A
Microsoft Excel 97 does not warn the user before executing worksheet functions, which could allow attackers to execute arbitrary commands by using the CALL function to execute a malicious DLL, aka the Excel "CALL Vulnerability."
CVE-2002-2062 1 Microsoft 1 Internet Explorer 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP URL.
CVE-2000-0614 1 Suse 1 Suse Linux 2025-04-03 N/A
Tnef program in Linux systems allows remote attackers to overwrite arbitrary files via TNEF encoded compressed attachments which specify absolute path names for the decompressed output.
CVE-2000-0625 1 Netzero 1 Zeroport 2025-04-03 N/A
NetZero 3.0 and earlier uses weak encryption for storing a user's login information, which allows a local user to decrypt the password.
CVE-2000-0626 1 Computer Software Manufaktur 1 Alibaba 2025-04-03 N/A
Buffer overflow in Alibaba web server allows remote attackers to cause a denial of service via a long GET request.
CVE-2000-0632 1 Lsoft 1 Listserv 2025-04-03 N/A
Buffer overflow in the web archive component of L-Soft Listserv 1.8d and earlier allows remote attackers to execute arbitrary commands via a long query string.
CVE-2002-2076 1 Summit Computer Networks 1 Lil Http 2025-04-03 N/A
Directory traversal vulnerability in Lil' HTTP server 2.1 and 2.2 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request.
CVE-2000-0634 1 Stalker 1 Communigate Pro 2025-04-03 N/A
The web administration interface for CommuniGate Pro 3.2.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVE-2002-2083 1 Novell 1 Netware 2025-04-03 N/A
The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware login screen.
CVE-2000-0635 1 Akopia 1 Minivend 2025-04-03 N/A
The view_page.html sample page in the MiniVend shopping cart program allows remote attackers to execute arbitrary commands via shell metacharacters.
CVE-2000-0637 1 Microsoft 1 Excel 2025-04-03 N/A
Microsoft Excel 97 and 2000 allows an attacker to execute arbitrary commands by specifying a malicious .dll using the Register.ID function, aka the "Excel REGISTER.ID Function" vulnerability.
CVE-2004-1394 1 Sun 2 Solaris, Sunos 2025-04-03 N/A
The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the exec_attr database, which may allow local users with custom rights profiles to execute profile commands with additional privileges.
CVE-2005-2771 2 F-secure, Wrq 2 F-secure Ssh Server, Wrq Reflection For Secure It Windows Server 2025-04-03 N/A
WRQ Reflection for Secure IT Windows Server 6.0 (formerly known as F-Secure SSH server) processes access and deny lists in a case-sensitive manner, when previous versions were case-insensitive, which might allow remote attackers to bypass intended restrictions and login to accounts that should be denied.
CVE-1999-0878 2 Beroftpd, Washington University 2 Beroftpd, Wu-ftpd 2025-04-03 N/A
Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR.
CVE-2000-0642 1 Itafrica 1 Webactive 2025-04-03 N/A
The default configuration of WebActive HTTP Server 1.00 stores the web access log active.log in the document root, which allows remote attackers to view the logs by directly requesting the page.
CVE-2002-0851 1 Isdn4linux 1 Isdn4linux 2025-04-03 N/A
Format string vulnerability in ISDN Point to Point Protocol (PPP) daemon (ipppd) in the ISDN4Linux (i4l) package allows local users to gain root privileges via format strings in the device name command line argument, which is not properly handled in a call to syslog.
CVE-2000-0647 1 Texas Imperial Software 1 Wftpd 2025-04-03 N/A
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server.
CVE-2004-2636 1 Rit Research Labs 1 Tinyweb 2025-04-03 N/A
TinyWeb 1.9 allows remote attackers to read source code of scripts via "/./" in the URL.
CVE-2006-2306 1 Keyvan Janghorbani 1 Epublisherpro 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in moreinfo.asp in EPublisherPro allows remote attackers to inject arbitrary web script or HTML via the title parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.