Search Results (29948 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2002-1559 1 Research Systems Inc. 1 Ion Script 2026-04-16 N/A
Directory traversal vulnerability in ion-p.exe (aka ion-p) allows remote attackers to read arbitrary files via (1) C: (drive letter) or (2) .. (dot-dot) sequences in the page parameter.
CVE-2002-1561 1 Microsoft 4 Windows 2000, Windows 2000 Terminal Services, Windows Nt and 1 more 2026-04-16 N/A
The RPC component in Windows 2000, Windows NT 4.0, and Windows XP allows remote attackers to cause a denial of service (disabled RPC service) via a malformed packet to the RPC Endpoint Mapper at TCP port 135, which triggers a null pointer dereference.
CVE-1999-0250 1 Dan Bernstein 1 Qmail 2026-04-16 N/A
Denial of service in Qmail through long SMTP commands.
CVE-1999-1550 1 F5 1 Tmos 2026-04-16 N/A
bigconf.conf in F5 BIG/ip 2.1.2 and earlier allows remote attackers to read arbitrary files by specifying the target file in the "file" parameter.
CVE-1999-1551 1 Ipswitch 1 Imail 2026-04-16 N/A
Buffer overflow in Ipswitch IMail Service 5.0 allows an attacker to cause a denial of service (crash) and possibly execute arbitrary commands via a long URL.
CVE-2000-0024 1 Microsoft 3 Internet Information Server, Site Server, Site Server Commerce 2026-04-16 N/A
IIS does not properly canonicalize URLs, potentially allowing remote attackers to bypass access restrictions in third-party software via escape characters, aka the "Escape Character Parsing" vulnerability.
CVE-2002-1603 1 Goahead Software 1 Goahead Webserver 2026-04-16 N/A
GoAhead Web Server 2.1.7 and earlier allows remote attackers to obtain the source code of ASP files via a URL terminated with a /, \, %2f (encoded /), %20 (encoded space), or %00 (encoded null) character, which returns the ASP source code unparsed.
CVE-2000-0032 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.
CVE-2002-1609 1 Hp 2 Hp-ux, Tru64 2026-04-16 N/A
Buffer overflow in binmail in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges.
CVE-2004-0453 1 Vice 1 Vice 2026-04-16 N/A
Format string vulnerability in the monitor "memory dump" command in VICE 1.6 to 1.14 allows local users to cause a denial of service (emulator crash) and possibly execute arbitrary code via format string specifiers in an output string.
CVE-2000-0036 1 Microsoft 2 Ie, Outlook Express 2026-04-16 N/A
Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability.
CVE-2002-1616 1 Hp 1 Tru64 2026-04-16 N/A
Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain root privileges via (1) su, (2) chsh, (3) passwd, (4) chfn, (5) dxchpwd, and (6) libc.
CVE-1999-0771 1 Compaq 2 Insight Management Agent, Power Management 2026-04-16 N/A
The web components of Compaq Management Agents and the Compaq Survey Utility allow a remote attacker to read arbitrary files via a .. (dot dot) attack.
CVE-2000-0037 1 Great Circle Associates 1 Majordomo 2026-04-16 N/A
Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file.
CVE-2000-0038 1 Glftpd 1 Glftpd 2026-04-16 N/A
glFtpD includes a default glftpd user account with a default password and a UID of 0.
CVE-2002-1617 1 Hp 1 Tru64 2026-04-16 N/A
Multiple buffer overflows in HP Tru64 UNIX 5.x allow local users to execute arbitrary code via (1) a long -contextDir argument to dtaction, (2) a long -p argument to dtprintinfo, (3) a long -customization argument to dxterm, or (4) a long DISPLAY environment variable to dtterm.
CVE-2004-0459 1 Ieee 1 802.11 Wireless Protocol 2026-04-16 N/A
The Clear Channel Assessment (CCA) algorithm in the IEEE 802.11 wireless protocol, when using DSSS transmission encoding, allows remote attackers to cause a denial of service via a certain RF signal that causes a channel to appear busy (aka "jabber"), which prevents devices from transmitting data.
CVE-1999-0960 1 Sgi 1 Irix 2026-04-16 N/A
IRIX cdplayer allows local users to create directories in arbitrary locations via a command line option.
CVE-2000-0039 1 Altavista 1 Search Intranet 2026-04-16 N/A
AltaVista search engine allows remote attackers to read files above the document root via a .. (dot dot) in the query.cgi CGI program.
CVE-2002-1618 1 Hp 2 Hp-ux, Jfs 2026-04-16 N/A
JFS (JFS3.1 and OnlineJFS) in HP-UX 10.20, 11.00, and 11.04 does not properly implement the sticky bit functionality, which could allow attackers to bypass intended restrictions on filesystems.