Export limit exceeded: 345203 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (345203 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0865 | 1 Tridia | 1 Doublevision | 2026-04-16 | N/A |
| Buffer overflow in dvtermtype in Tridia Double Vision 3.07.00 allows local users to gain root privileges via a long terminal type argument. | ||||
| CVE-2002-0205 | 1 Plumtree | 1 Plumtree Corporate Portal | 2026-04-16 | N/A |
| Cross-site scripting (CSS) vulnerability in error.asp for Plumtree Corporate Portal 3.5 through 4.5 allows remote attackers to execute arbitrary script on other clients via the "Description" parameter. | ||||
| CVE-2000-0867 | 5 Debian, Mandrakesoft, Redhat and 2 more | 5 Debian Linux, Mandrake Linux, Linux and 2 more | 2026-04-16 | N/A |
| Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages. | ||||
| CVE-2002-0206 | 1 Francisco Burzi | 1 Php-nuke | 2026-04-16 | N/A |
| index.php in Francisco Burzi PHP-Nuke 5.3.1 and earlier, and possibly other versions before 5.5, allows remote attackers to execute arbitrary PHP code by specifying a URL to the malicious code in the file parameter. | ||||
| CVE-2000-0868 | 2 Apache, Suse | 2 Http Server, Suse Linux | 2026-04-16 | N/A |
| The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/. | ||||
| CVE-2002-0207 | 1 Realnetworks | 2 Realone Player, Realplayer Intranet | 2026-04-16 | N/A |
| Buffer overflow in Real Networks RealPlayer 8.0 and earlier allows remote attackers to execute arbitrary code via a header length value that exceeds the actual length of the header. | ||||
| CVE-2004-0105 | 3 Metamail Corporation, Redhat, Sgi | 4 Metamail, Enterprise Linux, Linux Advanced Workstation and 1 more | 2026-04-16 | N/A |
| Multiple buffer overflows in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code. | ||||
| CVE-2000-0869 | 2 Apache, Suse | 2 Http Server, Suse Linux | 2026-04-16 | N/A |
| The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary directories via the PROPFIND HTTP request method. | ||||
| CVE-2000-0870 | 1 Khamil Landross And Zack Jones | 1 Eftp | 2026-04-16 | N/A |
| Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string. | ||||
| CVE-2002-0209 | 1 Nortel | 1 Alteon Acedirector | 2026-04-16 | N/A |
| Nortel Alteon ACEdirector WebOS 9.0, with the Server Load Balancing (SLB) and Cookie-Based Persistence features enabled, allows remote attackers to determine the real IP address of a web server with a half-closed session, which causes ACEdirector to send packets from the server without changing the address to the virtual IP address. | ||||
| CVE-2000-0871 | 1 Khamil Landross And Zack Jones | 1 Eftp | 2026-04-16 | N/A |
| Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server. | ||||
| CVE-2000-0872 | 1 Nathan Purciful | 1 Phpphotoalbum | 2026-04-16 | N/A |
| explorer.php in PhotoAlbum 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2002-0212 | 1 Hosting Controller | 1 Hosting Controller | 2026-04-16 | N/A |
| The login for Hosting Controller 1.1 through 1.4.1 returns different error messages when a valid or invalid user is provided, which allows remote attackers to determine the existence of valid usernames and makes it easier to conduct a brute force attack. | ||||
| CVE-2000-0873 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface statistics and possibly hide evidence of unusual network activities. | ||||
| CVE-2000-0874 | 1 Qualcomm | 1 Eudora | 2026-04-16 | N/A |
| Eudora mail client includes the absolute path of the sender's host within a virtual card (VCF). | ||||
| CVE-2000-0876 | 1 Texas Imperial Software | 2 Wftpd, Wftpd Pro | 2026-04-16 | N/A |
| WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname. | ||||
| CVE-2000-0877 | 1 Ranson Johnson | 1 Mailform | 2026-04-16 | N/A |
| mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attach_file parameter, which MailForm then sends to the attacker. | ||||
| CVE-2000-0878 | 1 Ranson Johnson | 1 Mailto Cgi Script | 2026-04-16 | N/A |
| The mailto CGI script allows remote attacker to execute arbitrary commands via shell metacharacters in the emailadd form field. | ||||
| CVE-2000-0879 | 1 Plus Technologies | 1 Lpplus | 2026-04-16 | N/A |
| LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to start and stop various LPD services. | ||||
| CVE-2002-0213 | 2 Sgi, Xinet | 2 Irix, K-ashare | 2026-04-16 | N/A |
| xkas in Xinet K-AShare 0.011.01 for IRIX allows local users to read arbitrary files via a symlink attack on the VOLICON file, which is copied to the .HSicon file in a shared directory. | ||||