Search Results (29815 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2005-1939 1 Ipswitch 1 Whatsup Small Business 2025-04-03 N/A
Directory traversal vulnerability in Ipswitch WhatsUp Small Business 2004 allows remote attackers to read arbitrary files via ".." (dot dot) sequences in a request to the Report service (TCP 8022).
CVE-2004-0284 1 Microsoft 3 Ie, Internet Explorer, Outlook 2025-04-03 N/A
Microsoft Internet Explorer 6.0, Outlook 2002, and Outlook 2003 allow remote attackers to cause a denial of service (CPU consumption), if "Do not save encrypted pages to disk" is disabled, via a web site or HTML e-mail that contains two null characters (%00) after the host name.
CVE-2001-0259 1 Ssh 1 Ssh 2025-04-03 N/A
ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES-1 magic phrase generated by another user, which the attacker can use to decrypt that user's private key file.
CVE-1999-0810 1 Samba 1 Samba 2025-04-03 N/A
Denial of service in Samba NETBIOS name service daemon (nmbd).
CVE-2005-1968 1 Early Impact 1 Productcart 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in ProductCart Ecommerce before 2.7 allows remote attackers to inject arbitrary web script or HTML via the error parameter to techErr.asp.
CVE-1999-0811 1 Samba 1 Samba 2025-04-03 N/A
Buffer overflow in Samba smbd program via a malformed message command.
CVE-1999-0882 1 Falcon 1 Falcon Web Server 2025-04-03 N/A
Falcon web server allows remote attackers to determine the absolute path of the web root via long file names.
CVE-1999-0885 1 Computer Software Manufaktur 1 Alibaba 2025-04-03 N/A
Alibaba web server allows remote attackers to execute commands via a pipe character in a malformed URL.
CVE-1999-0887 1 Floosietek 1 Ftgate 2025-04-03 N/A
FTGate web interface server allows remote attackers to read files via a .. (dot dot) attack.
CVE-2002-0487 1 Workforceroi 1 Xpede 2025-04-03 N/A
Intellisol Xpede 4.1 stores passwords in plaintext in a Javascript "session timeout" re-authentication capability, which could allow local users with access to gain privileges of other Xpede users by reading the password from the source file, e.g. from the browser's cache.
CVE-1999-0896 1 Realnetworks 1 Realserver G2 2025-04-03 N/A
Buffer overflow in RealNetworks RealServer administration utility allows remote attackers to execute arbitrary commands via a long username and password.
CVE-2002-0488 1 Linux Directory Penguin 1 Linux Directory Penguin Traceroute 2025-04-03 N/A
Linux Directory Penguin traceroute.pl CGI script 1.0 allows remote attackers to execute arbitrary code via shell metacharacters in the host parameter.
CVE-2002-0492 1 Dcscripts 1 Dcshop 2025-04-03 N/A
dcshop.cgi in DCShop 1.002 Beta allows remote attackers to delete arbitrary setup files via a null character in the database parameter.
CVE-2005-0700 1 Aztek Forum 1 Aztek Forum 2025-04-03 N/A
The export_index action in myadmin.php for Aztek Forum 4.0 allows remote attackers to obtain database files, possibly by setting the ATK_ADMIN cookie.
CVE-1999-0902 1 Linux-nis 1 Ypserv 2025-04-03 N/A
ypserv allows local administrators to modify password tables.
CVE-1999-0903 1 Ibm 1 Aix 2025-04-03 N/A
genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767.
CVE-2000-1118 1 24link 1 24link 2025-04-03 N/A
24Link 1.06 web server allows remote attackers to bypass access restrictions by prepending strings such as "/+/" or "/." to the HTTP GET request.
CVE-1999-0904 1 Byte Fusion 1 Bftelnet 2025-04-03 N/A
Buffer overflow in BFTelnet allows remote attackers to cause a denial of service via a long username.
CVE-1999-0905 1 Axent 1 Raptor Firewall 2025-04-03 N/A
Denial of service in Axent Raptor firewall via malformed zero-length IP options.
CVE-2005-0729 1 Techland 1 Xpand Rally 2025-04-03 N/A
Format string vulnerability in Xpand Rally 1.1.0.0 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a message.