Search Results (29815 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2000-0212 1 Pragma Systems 1 Interaccess Telnetd Server 2025-04-03 N/A
InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information.
CVE-1999-0410 1 Sun 1 Sunos 2025-04-03 N/A
The cancel command in Solaris 2.6 (i386) has a buffer overflow that allows local users to obtain root access.
CVE-1999-0411 1 Sco 1 Openserver 2025-04-03 N/A
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack, allowing a local user to gain root access.
CVE-2001-0332 1 Microsoft 1 Internet Explorer 2025-04-03 N/A
Internet Explorer 5.5 and earlier does not properly verify the domain of a frame within a browser window, which allows remote web site operators to read certain files on the client by sending information from a local frame to a frame in a different domain using MSScriptControl.ScriptControl and GetObject, aka a variant of the "Frame Domain Verification" vulnerability.
CVE-2000-0215 1 Sco 1 Unixware 2025-04-03 N/A
Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges.
CVE-2002-0784 1 Lysias 1 Lidik Webserver 2025-04-03 N/A
Directory traversal vulnerability in Lysias Lidik web server 0.7b allows remote attackers to list directories via an HTTP request with a ... (modified dot dot).
CVE-1999-0420 1 Netbsd 1 Umapfs 2025-04-03 N/A
umapfs allows local users to gain root privileges by changing their uid through a malicious mount_umap program.
CVE-1999-0421 1 Slackware 1 Slackware Linux 2025-04-03 N/A
During a reboot after an installation of Linux Slackware 3.6, a remote attacker can obtain root access by logging in to the root account without a password.
CVE-2002-0795 1 Freebsd 1 Freebsd 2025-04-03 N/A
The rc system startup script for FreeBSD 4 through 4.5 allows local users to delete arbitrary files via a symlink attack on X Windows lock files.
CVE-2002-1989 1 Caucho Technology 1 Resin 2025-04-03 N/A
Resin 2.1.1 allows remote attackers to cause a denial of service (thread and connection consumption) via multiple URL requests containing the DOS 'CON' device name and a registered file extension such as .jsp or .xtp.
CVE-2003-0565 2025-04-03 N/A
Multiple vulnerabilities in multiple vendor implementations of the X.400 protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an X.400 message containing certain unexpected ASN.1 constructs, as demonstrated using the NISSC test suite.
CVE-2002-0796 1 Sun 2 Solaris, Sunos 2025-04-03 N/A
Format string vulnerability in the logging component of snmpdx for Solaris 5.6 through 8 allows remote attackers to gain root privileges.
CVE-2000-0295 1 Lcdproc 1 Lcdproc 2025-04-03 N/A
Buffer overflow in LCDproc allows remote attackers to gain root privileges via the screen_add command.
CVE-2000-0296 1 Michael A. Gumienny 1 Fcheck 2025-04-03 N/A
fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck.
CVE-1999-0526 1 X.org 1 X11 2025-04-03 N/A
An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server.
CVE-2000-0297 1 Allaire 1 Forums 2025-04-03 N/A
Allaire Forums 2.0.5 allows remote attackers to bypass access restrictions to secure conferences via the rightAccessAllForums or rightModerateAllForums variables.
CVE-2006-1753 1 Debian 1 Debian Linux 2025-04-03 N/A
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
CVE-2006-1759 1 Swsoft 1 Confixx 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in allgemein_transfer.php in SWSoft Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the jahr parameter.
CVE-2006-1765 1 Jbook 1 Jbook 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in index.php in JBook 1.3 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
CVE-2006-1769 1 Userland 1 Manila 2025-04-03 N/A
Multiple cross-site scripting (XSS) vulnerabilities in UserLand Manila 9.5 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the mode parameter in msgReader$1 and (2) the end of the URI in viewDepartment$.