Export limit exceeded: 29948 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (29948 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0450 1 Microsoft 2 Internet Information Server, Internet Information Services 2026-04-16 N/A
In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl (perl.exe).
CVE-2001-1127 1 Progress 1 Progress 2026-04-16 N/A
Buffer overflow in Progress database 8.3D and 9.1C could allow a local user to execute arbitrary code via (1) _proapsv, (2) _mprosrv, (3) _mprshut, (4) orarx, (5) sqlcpp, (6) _probrkr, (7) _sqlschema and (8) _sqldump.
CVE-1999-0454 2026-04-16 N/A
A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packets, using a tool such as nmap or queso.
CVE-1999-0455 1 Allaire 1 Coldfusion Server 2026-04-16 N/A
The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.
CVE-2001-1129 1 Progress 1 Progress 2026-04-16 N/A
Format string vulnerabilities in (1) _probuild, (2) _dbutil, (3) _mprosrv, (4) _mprshut, (5) _proapsv, (6) _progres, (7) _proutil, (8) _rfutil and (9) prolib in Progress database 9.1C allows a local user to execute arbitrary code via format string specifiers in the file used by the PROMSGS environment variable.
CVE-2002-0449 1 Talentsoft 1 Web\+ Server 2026-04-16 N/A
Buffer overflow in webpsvc.exe for Talentsoft Web+ 5.0 and earlier allows remote attackers to execute arbitrary code via a long argument to webplus.exe program, which triggers the overflow in webpsvc.exe.
CVE-1999-0547 2026-04-16 N/A
An SSH server allows authentication through the .rhosts file.
CVE-2001-1196 1 Webmin 1 Webmin 2026-04-16 N/A
Directory traversal vulnerability in edit_action.cgi of Webmin Directory 0.91 allows attackers to gain privileges via a '..' (dot dot) in the argument.
CVE-2002-0464 1 Hosting Controller 1 Hosting Controller 2026-04-16 N/A
Directory traversal vulnerability in Hosting Controller 1.4.1 and earlier allows remote attackers to read and modify arbitrary files and directories via a .. (dot dot) in arguments to (1) file_editor.asp, (2) folderactions.asp, or (3) editoractions.asp.
CVE-2002-1011 1 Ibm 1 Tivoli Management Framework 2026-04-16 N/A
Buffer overflow in web server for Tivoli Management Framework (TMF) Endpoint 3.6.x through 3.7.1, before Fixpack 2, allows remote attackers to cause a denial of service or execute arbitrary code via a long HTTP GET request.
CVE-1999-0548 2026-04-16 N/A
A superfluous NFS server is running, but it is not importing or exporting any file systems.
CVE-2001-1197 1 Kde 1 Kdeutils 2026-04-16 N/A
klprfax_filter in KDE2 KDEUtils allows local users to overwrite arbitrary files via a symlink attack on the klprfax.filter temporary file.
CVE-2002-1012 1 Ibm 1 Tivoli Management Framework 2026-04-16 N/A
Buffer overflow in web server for Tivoli Management Framework (TMF) ManagedNode 3.6.x through 3.7.1 allows remote attackers to cause a denial of service or execute arbitrary code via a long HTTP GET request.
CVE-1999-0549 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Windows NT automatically logs in an administrator upon rebooting.
CVE-1999-0550 2026-04-16 N/A
A router's routing tables can be obtained from arbitrary hosts.
CVE-2001-1198 1 Hp 1 Hp-ux 2026-04-16 N/A
RLPDaemon in HP-UX 10.20 and 11.0 allows local users to overwrite arbitrary files and gain privileges by specifying the target file in the -L option.
CVE-1999-0551 1 Hp 1 Openmail 2026-04-16 N/A
HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests.
CVE-1999-0554 2026-04-16 N/A
NFS exports system-critical data to the world, e.g. / or a password file.
CVE-2001-1199 1 Steve Kneizys 1 Agora.cgi 2026-04-16 N/A
Cross-site scripting vulnerability in agora.cgi for Agora 3.0a through 4.0g, when debug mode is enabled, allows remote attackers to execute Javascript on other clients via the cart_id parameter.
CVE-2002-0466 1 Hosting Controller 1 Hosting Controller 2026-04-16 N/A
Hosting Controller 1.4.1 and earlier allows remote attackers to browse arbitrary directories via a full C: style pathname in the filepath arguments to (1) Statsbrowse.asp, (2) servubrowse.asp, (3) browsedisk.asp, (4) browsewebalizerexe.asp, or (5) sqlbrowse.asp.