Total
210374 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2002-0538 | 1 Symantec | 4 Enterprise Firewall, Gateway Security, Raptor Firewall and 1 more | 2011-03-07 | 7.5 HIGH | N/A |
| FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote attackers to redirect FTP data connections to arbitrary ports, a variant of the "FTP bounce" vulnerability. | |||||
| CVE-2001-1257 | 1 Horde | 1 Imp | 2011-03-07 | 7.5 HIGH | N/A |
| Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) before 2.2.6 and 1.2.6 allows remote attackers to execute arbitrary Javascript embedded in an email. | |||||
| CVE-2001-1258 | 1 Horde | 1 Imp | 2011-03-07 | 3.6 LOW | N/A |
| Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the server. | |||||
| CVE-2001-1542 | 1 Network Associates | 1 Webshield Smtp | 2011-03-07 | 7.5 HIGH | N/A |
| NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in email clients that process the invalid attachments. | |||||
| CVE-2002-0093 | 1 Compaq | 1 Tru64 | 2011-03-07 | 7.2 HIGH | N/A |
| Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423. | |||||
| CVE-2001-0431 | 1 Iplanet | 1 Iplanet Web Server | 2011-03-07 | 10.0 HIGH | N/A |
| Vulnerability in iPlanet Web Server Enterprise Edition 4.x. | |||||
| CVE-2001-0715 | 1 Sendmail | 1 Sendmail | 2011-03-07 | 2.1 LOW | N/A |
| Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain potentially sensitive information about the mail queue by setting debugging flags to enable debug mode. | |||||
| CVE-2000-0351 | 1 Sco | 1 Unixware | 2011-03-07 | 4.6 MEDIUM | N/A |
| Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages. | |||||
| CVE-1999-1425 | 1 Sun | 1 Solstice Adminsuite | 2011-03-07 | 6.2 MEDIUM | N/A |
| Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd. | |||||
| CVE-2000-0092 | 3 Freebsd, Netbsd, Openbsd | 3 Freebsd, Netbsd, Openbsd | 2011-03-07 | 6.2 MEDIUM | N/A |
| The BSD make program allows local users to modify files via a symlink attack when the -j option is being used. | |||||
| CVE-2000-0235 | 1 Freebsd | 1 Freebsd | 2011-03-07 | 7.2 HIGH | N/A |
| Buffer overflow in the huh program in the orville-write package allows local users to gain root privileges. | |||||
| CVE-1999-0783 | 1 Freebsd | 1 Freebsd | 2011-03-07 | 5.0 MEDIUM | N/A |
| FreeBSD allows local users to conduct a denial of service by creating a hard link from a device special file to a file on an NFS file system. | |||||
| CVE-1999-1044 | 1 Digital | 1 Unix | 2011-03-07 | 4.6 MEDIUM | N/A |
| Vulnerability in Advanced File System Utility (advfs) in Digital UNIX 4.0 through 4.0d allows local users to gain privileges. | |||||
| CVE-1999-1303 | 1 Sco | 5 Open Desktop, Open Desktop Lite, Openserver Enterprise System and 2 more | 2011-03-07 | 7.2 HIGH | N/A |
| Vulnerability in prwarn in SCO UNIX 4.2 and earlier allows local users to gain root access. | |||||
| CVE-1999-1304 | 1 Sco | 5 Open Desktop, Open Desktop Lite, Openserver Enterprise System and 2 more | 2011-03-07 | 7.2 HIGH | N/A |
| Vulnerability in login in SCO UNIX 4.2 and earlier allows local users to gain root access. | |||||
| CVE-1999-1305 | 1 Sco | 5 Open Desktop, Open Desktop Lite, Openserver Enterprise System and 2 more | 2011-03-07 | 7.2 HIGH | N/A |
| Vulnerability in "at" program in SCO UNIX 4.2 and earlier allows local users to gain root access. | |||||
| CVE-1999-1308 | 1 Hp | 1 Hp-ux | 2011-03-07 | 4.6 MEDIUM | N/A |
| Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privileges. | |||||
| CVE-1999-1311 | 1 Hp | 1 Hp-ux | 2011-03-07 | 4.6 MEDIUM | N/A |
| Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authentication and gain privileges. | |||||
| CVE-2005-1929 | 1 Trend Micro | 1 Serverprotect | 2011-03-06 | 7.5 HIGH | N/A |
| Multiple heap-based buffer overflows in (1) isaNVWRequest.dll and (2) relay.dll in Trend Micro ServerProtect Management Console 5.58 and earlier, as used in Control Manager 2.5 and 3.0 and Damage Cleanup Server 1.1, allow remote attackers to execute arbitrary code via "wrapped" length values in Chunked transfer requests. NOTE: the original report suggests that the relay.dll issue is related to a problem in which a Microsoft Foundation Classes (MFC) static library returns invalid values under heavy load. As such, this might not be a vulnerability in Trend Micro's product. | |||||
| CVE-2005-3496 | 1 Php Handicapper | 1 Php Handicapper | 2011-03-06 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in PHP Handicapper allows remote attackers to inject arbitrary web script or HTML via the msg parameter to msg.php. NOTE: some sources identify a second vector in the login parameter to process_signup.php, but the original source says that it is for CRLF injection (CVE-2005-4712). Also note: the vendor has disputed CVE-2005-3497, and it is possible that the dispute was intended to include this issue as well. If so, followup investigation strongly suggests that the original report is correct. | |||||