| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Progressive Networks Real Video server (pnserver) can be crashed remotely. |
| Denial of service in Slmail v2.5 through the POP3 port. |
| Vulnerability in the newgrp command in HP-UX 11.00 allows local users to gain privileges. |
| Denial of service through Solaris 2.5.1 telnet by sending ^D characters. |
| Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows attackers to cause a denial of service. |
| Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made. |
| Various modems that do not implement a guard time, or are configured with a guard time of 0, can allow remote attackers to execute arbitrary modem commands such as ATH, ATH0, etc., via a "+++" sequence that appears in ICMP packets, the subject of an e-mail message, IRC commands, and others. |
| The web interface for Lyris List Manager 3 and 4 allows list subscribers to obtain administrative access by modifying the value of the list_admin hidden form field. |
| Excite for Web Servers (EWS) allows remote command execution via shell metacharacters. |
| ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remote attackers to determine user account names on the server. |
| Remote command execution in Microsoft Internet Explorer using .lnk and .url files. |
| Denial of service in IIS using long URLs. |
| Buffer overflow in NCSA HTTP daemon v1.3 allows remote command execution. |
| SystemSoft SystemWizard package in HP Pavilion PC with Windows 98, and possibly other platforms and operating systems, installs two ActiveX controls that are marked as safe for scripting, which allows remote attackers to execute arbitrary commands via a malicious web page that references (1) the Launch control, or (2) the RegObj control. |
| The info2www CGI script allows remote file access or remote command execution. |
| Some implementations of rlogin allow root access if given a -froot parameter. |
| AIX bugfiler program allows local users to gain root access. |
| Local users can execute commands as other users, and read other users' files, through the filter command in the Elm elm-2.4 mail package using a symlink attack. |
| Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood. |
| CGIMail.exe CGI program in Stalkerlab Mailers 1.1.2 allows remote attackers to read arbitrary files by specifying the file in the $Attach$ hidden form variable. |
