Search Results (29815 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0588 2025-04-03 N/A
A filter in a router or firewall allows unusual fragmented packets.
CVE-2000-1038 1 Ibm 1 As400 Firewall 2025-04-03 N/A
The web administration interface for IBM AS/400 Firewall allows remote attackers to cause a denial of service via an empty GET request.
CVE-2005-3886 1 Cisco 1 Security Agent 2025-04-03 N/A
Unspecified vulnerability in Cisco Security Agent (CSA) 4.5.0 and 4.5.1 agents, when running on Windows systems, allows local users to bypass protections and gain system privileges by executing certain local software.
CVE-2005-1443 1 Invision Power Services 1 Invision Power Board 2025-04-03 N/A
Multiple cross-site scripting (XSS) vulnerabilities in index.php for Invision Power Board (IPB) 2.0.3 and 2.1 Alpha 2 allows remote attackers to inject arbitrary web script or HTML via the (1) act, (2) Members, (3) calendar, or (4) HID parameters.
CVE-2002-0562 1 Oracle 3 Application Server, Application Server Web Cache, Oracle9i 2025-04-03 N/A
The default configuration of Oracle 9i Application Server 1.0.2.x running Oracle JSP or SQLJSP stores globals.jsa under the web root, which allows remote attackers to gain sensitive information including usernames and passwords via a direct HTTP request to globals.jsa.
CVE-1999-0593 1 Microsoft 1 Windows Nt 2025-04-03 N/A
The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in.
CVE-2002-1830 1 Openbb 1 Openbb 2025-04-03 N/A
Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to bypass authentication and access modifier options via a direct request to moderator.php with the action and ismod parameters.
CVE-2001-0242 1 Microsoft 1 Windows Media Player 2025-04-03 N/A
Buffer overflows in Microsoft Windows Media Player 7 and earlier allow remote attackers to execute arbitrary commands via (1) a long version tag in an .ASX file, or (2) a long banner tag, a variant of the ".ASX Buffer Overrun" vulnerability as discussed in MS:MS00-090.
CVE-2005-1452 1 S9y 1 Serendipity 2025-04-03 N/A
Serendipity before 0.8 allows Chief users to "hide plugins installed by other users."
CVE-2003-0194 1 Redhat 3 Enterprise Linux, Linux, Tcpdump 2025-04-03 N/A
tcpdump does not properly drop privileges to the pcap user when starting up.
CVE-1999-0594 2025-04-03 N/A
A Windows NT system does not restrict access to removable media drives such as a floppy disk drive or CDROM drive.
CVE-2000-1040 1 Suse 1 Suse Linux 2025-04-03 N/A
Format string vulnerability in logging function of ypbind 3.3, while running in debug mode, leaks file descriptors and allows an attacker to cause a denial of service.
CVE-2002-0432 1 Citadel 1 Ux 2025-04-03 N/A
Buffer overflow in (1) lprintf and (2) cprintf in sysdep.c of Citadel/UX 5.90 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attacks such as a long HELO command to the SMTP server.
CVE-2005-3891 1 Gadu-gadu 1 Gadu-gadu Instant Messenger 2025-04-03 N/A
Stack-based buffer overflow in Gadu-Gadu 7.20 allows remote attackers to cause a denial of service (crash) via an image filename between exactly 192 to 200 characters, which does not account for the "imgcache\" string that is added to the end of the buffer.
CVE-2006-0360 1 Mpm 1 Hp-180w Voip Wifi Phone 2025-04-03 N/A
MPM SIP HP-180W Wireless IP Phone WE.00.17 allows remote attackers to obtain sensitive information and possibly cause a denial of service via a direct connection to UDP port 9090, which is undocumented and does not require authentication.
CVE-1999-0596 2025-04-03 N/A
A Windows NT log file has an inappropriate maximum size or retention period.
CVE-2002-1832 1 Scaramanga 1 Firestorm Ids 2025-04-03 N/A
Unknown vulnerability in the "ipopts decode" functionality in Firestorm IDS 0.4.0 through 0.4.2 allows remote attackers to cause a denial of service (crash) via certain IP options.
CVE-2005-3892 1 Gadu-gadu 1 Gadu-gadu Instant Messenger 2025-04-03 N/A
Gadu-Gadu 7.20 allows remote attackers to eavesdrop on a user via a web page that accesses the EasycallLite.oce ActiveX control, which can initiate an outgoing phone call and listen to the microphone.
CVE-2005-3903 1 Sco 1 Unixware 2025-04-03 N/A
Buffer overflow in uidadmin in SCO Unixware 7.1.3 and 7.1.4 allows local users to execute arbitrary code via a -S (scheme) argument that specifies a large file, a different vulnerability than CVE-2001-1063.
CVE-1999-0598 2025-04-03 N/A
A network intrusion detection system (IDS) does not properly handle packets that are sent out of order, allowing an attacker to escape detection.