Total
27865 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0869 | 2 Apache, Suse | 2 Http Server, Suse Linux | 2017-10-09 | 5.0 MEDIUM | N/A |
| The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary directories via the PROPFIND HTTP request method. | |||||
| CVE-2001-1035 | 1 Slrn Development Team | 1 Slrn | 2017-10-09 | 7.5 HIGH | N/A |
| Binary decoding feature of slrn 0.9 and earlier allows remote attackers to execute commands via shell scripts that are inserted into a news post. | |||||
| CVE-2001-0774 | 1 Tripwire | 1 Tripwire | 2017-10-09 | 4.6 MEDIUM | N/A |
| Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain privileges via a symbolic link attack on temporary files. | |||||
| CVE-2001-0481 | 1 Mandrakesoft | 1 Mandrake Linux | 2017-10-09 | 7.2 HIGH | N/A |
| Vulnerability in rpmdrake in Mandrake Linux 8.0 related to insecure temporary file handling. | |||||
| CVE-2000-0870 | 1 Khamil Landross And Zack Jones | 1 Eftp | 2017-10-09 | 7.5 HIGH | N/A |
| Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string. | |||||
| CVE-2000-0871 | 1 Khamil Landross And Zack Jones | 1 Eftp | 2017-10-09 | 5.0 MEDIUM | N/A |
| Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server. | |||||
| CVE-2001-1084 | 1 Macromedia | 1 Jrun | 2017-10-09 | 7.5 HIGH | N/A |
| Cross-site scripting vulnerability in Allaire JRun 3.0 and 2.3.3 allows a malicious webmaster to embed Javascript in a request for a .JSP, .shtml, .jsp10, .jrun, or .thtml file that does not exist, which causes the Javascript to be inserted into an error message. | |||||
| CVE-2000-0873 | 1 Ibm | 1 Aix | 2017-10-09 | 2.1 LOW | N/A |
| netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface statistics and possibly hide evidence of unusual network activities. | |||||
| CVE-1999-0760 | 1 Allaire | 1 Coldfusion Server | 2017-10-09 | 10.0 HIGH | N/A |
| Undocumented ColdFusion Markup Language (CFML) tags and functions in the ColdFusion Administrator allow users to gain additional privileges. | |||||
| CVE-2001-0371 | 1 Freebsd | 1 Freebsd | 2017-10-09 | 6.2 MEDIUM | N/A |
| Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allows a local user to access otherwise restricted information. | |||||
| CVE-2000-0875 | 1 Texas Imperial Software | 2 Wftpd, Wftpd Pro | 2017-10-09 | 5.0 MEDIUM | N/A |
| WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to cause a denial of service by sending a long string of unprintable characters. | |||||
| CVE-2000-0877 | 1 Ranson Johnson | 1 Mailform | 2017-10-09 | 5.0 MEDIUM | N/A |
| mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attach_file parameter, which MailForm then sends to the attacker. | |||||
| CVE-2001-1032 | 1 Francisco Burzi | 1 Php-nuke | 2017-10-09 | 7.5 HIGH | N/A |
| admin.php in PHP-Nuke 5.2 and earlier, except 5.0RC1, does not check login credentials for upload operations, which allows remote attackers to copy and upload arbitrary files and read the PHP-Nuke configuration file by directly calling admin.php with an upload parameter and specifying the file to copy. | |||||
| CVE-2000-0878 | 1 Ranson Johnson | 1 Mailto Cgi Script | 2017-10-09 | 7.5 HIGH | N/A |
| The mailto CGI script allows remote attacker to execute arbitrary commands via shell metacharacters in the emailadd form field. | |||||
| CVE-2001-0026 | 1 Roaring Penguin | 1 Pppoe | 2017-10-09 | 5.0 MEDIUM | N/A |
| rp-pppoe PPPoE client allows remote attackers to cause a denial of service via the Clamp MSS option and a TCP packet with a zero-length TCP option. | |||||
| CVE-2001-1027 | 1 Windowmaker | 1 Windowmaker | 2017-10-09 | 10.0 HIGH | N/A |
| Buffer overflow in WindowMaker (aka wmaker) 0.64 and earlier allows remote attackers to execute arbitrary code via a long window title. | |||||
| CVE-2000-0883 | 1 Mandrakesoft | 1 Mandrake Linux | 2017-10-09 | 5.0 MEDIUM | N/A |
| The default configuration of mod_perl for Apache as installed on Mandrake Linux 6.1 through 7.1 sets the /perl/ directory to be browseable, which allows remote attackers to list the contents of that directory. | |||||
| CVE-2001-0677 | 1 Qualcomm | 1 Eudora | 2017-10-09 | 5.0 MEDIUM | N/A |
| Eudora 5.0.2 allows a remote attacker to read arbitrary files via an email with the path of the target file in the "Attachment Converted" MIME header, which sends the file when the email is forwarded to the attacker by the user. | |||||
| CVE-2001-0527 | 1 Dcscripts | 2 Dcforum, Dcforum 2000 | 2017-10-09 | 10.0 HIGH | N/A |
| DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will create an extra entry in the registration database. | |||||
| CVE-2001-0386 | 1 Analogx | 1 Simpleserver Www | 2017-10-09 | 5.0 MEDIUM | N/A |
| AnalogX SimpleServer:WWW 1.08 allows remote attackers to cause a denial of service via an HTTP request to the /aux directory. | |||||