Search Results (364864 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0951 1 Omnicron 1 Omnihttpd 2026-04-16 N/A
Buffer overflow in OmniHTTPd CGI program imagemap.exe allows remote attackers to execute commands.
CVE-2001-1311 1 Ibm 1 Lotus Domino R5 2026-04-16 N/A
Buffer overflows in Lotus Domino R5 before R5.0.7a allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
CVE-2002-0592 1 Aol 1 Instant Messenger 2026-04-16 N/A
AOL Instant Messenger (AIM) allows remote attackers to steal files that are being transferred to other clients by connecting to port 4443 (Direct Connection) or port 5190 (file transfer) before the intended user.
CVE-1999-0952 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.
CVE-1999-0953 1 Matt Wright 1 Wwwboard 2026-04-16 N/A
WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers.
CVE-1999-0954 1 Matt Wright 1 Wwwboard 2026-04-16 N/A
WWWBoard has a default username and default password.
CVE-2001-1312 1 Ibm 1 Lotus Domino R5 2026-04-16 N/A
Format string vulnerabilities in Lotus Domino R5 before R5.0.7a allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
CVE-2002-1058 1 Cobalt 1 Qube 2026-04-16 N/A
Directory traversal vulnerability in splashAdmin.php for Cobalt Qube 3.0 allows local users and remote attackers, to gain privileges as the Qube Admin via .. (dot dot) sequences in the sessionId cookie that point to an alternate session file.
CVE-2002-1154 2 Redhat, Stephen Turner 2 Powertools, Analog 2026-04-16 N/A
anlgform.pl in Analog before 5.23 does not restrict access to the PROGRESSFREQ progress update command, which allows remote attackers to cause a denial of service (disk consumption) by using the command to report updates more frequently and fill the web server error log.
CVE-1999-0955 1 Washington University 1 Wu-ftpd 2026-04-16 N/A
Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command.
CVE-1999-0956 1 Next 1 Nextstep 2026-04-16 N/A
The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service.
CVE-1999-0957 1 Great Circle Associates 1 Majorcool 2026-04-16 N/A
MajorCool mj_key_cache program allows local users to modify files via a symlink attack.
CVE-2001-1313 1 Ibm 1 Lotus Domino R5 2026-04-16 N/A
Lotus Domino R5 before R5.0.7a allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via miscellaneous packets with semi-valid BER encodings, as demonstrated by the PROTOS LDAPv3 test suite.
CVE-2002-0593 3 Mozilla, Netscape, Redhat 5 Mozilla, Communicator, Navigator and 2 more 2026-04-16 N/A
Buffer overflow in Netscape 6 and Mozilla 1.0 RC1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long channel name in an IRC URI.
CVE-2002-1060 1 Bluecoat 1 Cacheos 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in Blue Coat Systems (formerly CacheFlow) CacheOS on Client Accelerator 4.1.06, Security Gateway 2.1.02, and Server Accelerator 4.1.06 allows remote attackers to inject arbitrary web script or HTML via a URL to a nonexistent hostname that includes the HTML, which is inserted into the resulting error page.
CVE-2002-1157 2 Mod Ssl, Redhat 5 Mod Ssl, Enterprise Linux, Linux and 2 more 2026-04-16 N/A
Cross-site scripting vulnerability in the mod_ssl Apache module 2.8.9 and earlier, when UseCanonicalName is off and wildcard DNS is enabled, allows remote attackers to execute script as other web site visitors, via the server name in an HTTPS response on the SSL port, which is used in a self-referencing URL, a different vulnerability than CAN-2002-0840.
CVE-2002-1367 3 Apple, Easy Software Products, Redhat 3 Mac Os X, Cups, Linux 2026-04-16 N/A
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a "need authorization" page, as demonstrated by new-coke.
CVE-1999-0958 1 Todd Miller 1 Sudo 2026-04-16 N/A
sudo 1.5.x allows local users to execute arbitrary commands via a .. (dot dot) attack.
CVE-1999-0959 1 Sgi 1 Irix 2026-04-16 N/A
IRIX startmidi program allows local users to modify arbitrary files via a symlink attack.
CVE-2001-1314 1 Critical Path 2 Injoin Directory Server, Livecontent Directory 2026-04-16 N/A
Buffer overflows in Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.