Search Results (29815 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0375 1 Network Flight Recorder 1 Network Flight Recorder 2025-04-03 N/A
Buffer overflow in webd in Network Flight Recorder (NFR) 2.0.2-Research allows remote attackers to execute commands.
CVE-2004-1270 2 Easy Software Products, Redhat 3 Cups, Enterprise Linux, Fedora Core 2025-04-03 N/A
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers an error message.
CVE-1999-0784 1 Oracle 1 Database Server 2025-04-03 N/A
Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP.
CVE-2001-0012 2 Isc, Redhat 2 Bind, Linux 2025-04-03 N/A
BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variables.
CVE-1999-0650 2025-04-03 N/A
The netstat service is running, which provides sensitive information to remote attackers.
CVE-1999-0785 1 Isc 1 Inn 2025-04-03 N/A
The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file.
CVE-1999-0654 2025-04-03 N/A
The OS/2 or POSIX subsystem in NT is enabled.
CVE-1999-0664 2025-04-03 N/A
An application-critical Windows NT registry key has inappropriate permissions.
CVE-1999-0786 1 Sun 2 Solaris, Sunos 2025-04-03 N/A
The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.
CVE-2000-0513 1 Debian 1 Debian Linux 2025-04-03 N/A
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service by authenticating with a user name that does not exist or does not have a shadow password.
CVE-1999-0787 1 Ssh 1 Ssh 2025-04-03 N/A
The SSH authentication agent follows symlinks via a UNIX domain socket.
CVE-1999-0689 2 Cde, Sun 3 Cde, Solaris, Sunos 2025-04-03 N/A
The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.
CVE-1999-0788 1 Knox Software 1 Arkeia 2025-04-03 N/A
Arkiea nlservd allows remote attackers to conduct a denial of service.
CVE-2001-0350 1 Microsoft 1 Windows 2000 2025-04-03 N/A
Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the second of two variants of this vulnerability.
CVE-2002-2056 1 Teekai 1 Teekai Forum 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in TeeKai Forum 1.2 allows remote attackers to inject arbitrary web script or HTML via the valid_username_online cookie.
CVE-2000-0520 1 Stelian 1 Pop Dump 2025-04-03 N/A
Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.
CVE-2005-3163 1 Polipo 1 Polipo 2025-04-03 N/A
Unspecified vulnerability in Polipo 0.9.8 and earlier allows attackers to read files outside of the web root.
CVE-2000-0523 1 Etype 1 Eserv 2025-04-03 N/A
Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command.
CVE-2000-0527 1 3r Soft 1 Mailstudio 2000 2025-04-03 N/A
userreg.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
CVE-1999-0170 1 Digital 1 Ultrix 2025-04-03 N/A
Remote attackers can mount an NFS file system in Ultrix or OSF, even if it is denied on the access list.