Export limit exceeded: 364592 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Export limit exceeded: 364592 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Export limit exceeded: 364592 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (364592 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2002-1338 1 Microsoft 1 Office Web Components 2026-04-16 N/A
The Load method in the Chart component of Office Web Components (OWC) 9 and 10 generates an exception when a specified file does not exist, which allows remote attackers to determine the existence of local files.
CVE-2001-0599 1 Sybase 1 Adaptive Server Anywhere 2026-04-16 N/A
Sybase Adaptive Server Anywhere Database Engine 6.0.3.2747 and earlier as included with Symantec Ghost 6.5 allows a remote attacker to create a denial of service by sending large (> 45Kb) amounts of data to port 2638.
CVE-2002-0910 1 Debian 1 Netstd 2026-04-16 N/A
Buffer overflows in netstd 3.07-17 package allows remote DNS servers to execute arbitrary code via a long FQDN reply, as observed in the utilities (1) linux-ftpd, (2) pcnfsd, (3) tftp, (4) traceroute, or (5) from/to.
CVE-2002-1348 2 Redhat, W3m 3 Enterprise Linux, Linux, W3m 2026-04-16 N/A
w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies.
CVE-2001-0614 1 Carello 1 E-commerce 2026-04-16 N/A
Carello E-Commerce 1.2.1 and earlier allows a remote attacker to gain additional privileges and execute arbitrary commands via a specially constructed URL.
CVE-2002-0911 1 Caldera 1 Volution Manager 2026-04-16 N/A
Caldera Volution Manager 1.1 stores the Directory Administrator password in cleartext in the slapd.conf file, which could allow local users to gain privileges.
CVE-2002-0912 1 Debian 1 Debian Linux 2026-04-16 N/A
in.uucpd UUCP server in Debian GNU/Linux 2.2, and possibly other operating systems, does not properly terminate long strings, which allows remote attackers to cause a denial of service, possibly due to a buffer overflow.
CVE-2001-0617 1 Alliedtelesyn 1 At-ar220e 2026-04-16 N/A
Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual Server' enabled can allow a remote attacker to gain access to mapped services even though the single portmappings may be disabled.
CVE-2002-0913 1 Stephen Hebditch 1 Slurp 2026-04-16 N/A
Format string vulnerability in log_doit function of Slurp NNTP client 1.1.0 allows a malicious news server to execute arbitrary code on the client via format strings in a server response.
CVE-2001-0626 1 Oreilly 1 Website Professional 2026-04-16 N/A
O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character.
CVE-2001-0632 1 Sun 1 Chilisoft 2026-04-16 N/A
Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the default installation, which can allow a remote attacker to gain additional privileges.
CVE-2001-0633 1 Sun 1 Chilisoft 2026-04-16 N/A
Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '..' (dot dot) attack in the sample script 'codebrws.asp'.
CVE-2002-0914 1 Double Precision Incorporated 1 Courier Mta 2026-04-16 N/A
Double Precision Courier e-mail MTA allows remote attackers to cause a denial of service (CPU consumption) via a message with an extremely large or negative value for the year, which causes a tight loop.
CVE-2001-0634 1 Sun 1 Chilisoft 2026-04-16 N/A
Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local attacker to gain additional privileges and create a denial of service.
CVE-2001-0635 1 Redhat 1 Linux 2026-04-16 N/A
Red Hat Linux 7.1 sets insecure permissions on swap files created during installation, which can allow a local attacker to gain additional privileges by reading sensitive information from the swap file, such as passwords.
CVE-2001-0636 1 Raytheon 1 Silentrunner 2026-04-16 N/A
Buffer overflows in Raytheon SilentRunner allow remote attackers to (1) cause a denial of service in the collector (cle.exe) component of SilentRunner 2.0 via traffic containing long passwords, or (2) execute arbitrary commands via long HTTP queries in the Knowledge Browser component in SilentRunner 2.0 and 2.0.1. NOTE: It is highly likely that this candidate will be split into multiple candidates.
CVE-2002-0915 1 Harald Hoyer 2 Autorun, Xandros Desktop Os 2026-04-16 N/A
autorun in Xandros based Linux distributions allows local users to read the first line of arbitrary files via the -c parameter, which causes autorun to print the first line of the file.
CVE-2001-0641 3 Immunix, Redhat, Suse 3 Immunix, Linux, Suse Linux 2026-04-16 N/A
Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option.
CVE-2001-0642 1 Incredimail 1 Incredimail 2026-04-16 N/A
Directory traversal vulnerability in IncrediMail version 1400185 and earlier allows local users to overwrite files on the local hard drive by appending .. (dot dot) sequences to filenames listed in the content.ini file.
CVE-2002-0916 1 Stellar-x Software 1 Msntauth 2026-04-16 N/A
Format string vulnerability in the allowuser code for the Stellar-X msntauth authentication module, as distributed in Squid 2.4.STABLE6 and earlier, allows remote attackers to execute arbitrary code via format strings in the user name, which are not properly handled in a syslog call.