Export limit exceeded: 344998 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 344998 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (344998 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2001-0772 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Buffer overflows and other vulnerabilities in multiple Common Desktop Environment (CDE) modules in HP-UX 10.10 through 11.11 allow attackers to cause a denial of service and possibly gain additional privileges. | ||||
| CVE-2001-0017 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | N/A |
| Memory leak in PPTP server in Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed data packet, aka the "Malformed PPTP Packet Stream" vulnerability. | ||||
| CVE-2001-0196 | 1 Freebsd | 1 Freebsd | 2026-04-16 | N/A |
| inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group. | ||||
| CVE-2001-0301 | 2 Redhat, Stephen Turner | 2 Secure Web Server, Analog | 2026-04-16 | N/A |
| Buffer overflow in Analog before 4.16 allows remote attackers to execute arbitrary commands by using the ALIAS command to construct large strings. | ||||
| CVE-2001-0424 | 2 Freebsd, Timecop | 2 Freebsd, Bubblemon | 2026-04-16 | N/A |
| BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id. | ||||
| CVE-2001-1087 | 1 Network Appliance | 1 Netcache | 2026-04-16 | N/A |
| The default configuration of the config.http.tunnel.allow_ports option on NetCache devices is set to +all, which allows remote attackers to connect to arbitrary ports on remote systems behind the device. | ||||
| CVE-2001-1128 | 1 Progress | 1 Progress | 2026-04-16 | N/A |
| Buffer overflow in Progress database 8.3D and 9.1C allows local users to execute arbitrary code via long entries in files that are specified by the (1) PROMSGS or (2) PROTERMCAP environment variables. | ||||
| CVE-1999-0530 | 2026-04-16 | N/A | ||
| A system is operating in "promiscuous" mode which allows it to perform packet sniffing. | ||||
| CVE-2000-0797 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| Buffer overflow in gr_osview in IRIX 6.2 and 6.3 allows local users to gain privileges via a long -D option. | ||||
| CVE-2001-0201 | 1 Umut Gokbayrak | 1 Postaci | 2026-04-16 | N/A |
| The Postaci frontend for PostgreSQL does not properly filter characters such as semicolons, which could allow remote attackers to execute arbitrary SQL queries via the deletecontact.php program. | ||||
| CVE-2006-3540 | 1 Zonelabs | 1 Zonealarm Security Suite | 2026-04-16 | N/A |
| Check Point Zone Labs ZoneAlarm Internet Security Suite 6.5.722.000, 6.1.737.000, and possibly other versions do not properly validate RegSaveKey, RegRestoreKey, and RegDeleteKey function calls, which allows local users to cause a denial of service (system crash) via a certain combination of these function calls with an HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\VETFDDNT\Enum argument. | ||||
| CVE-1999-0532 | 2026-04-16 | N/A | ||
| A DNS server allows zone transfers. | ||||
| CVE-2000-0013 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| IRIX soundplayer program allows local users to gain privileges by including shell metacharacters in a .wav file, which is executed via the midikeys program. | ||||
| CVE-2006-3541 | 1 Kyberna | 1 Ky2help | 2026-04-16 | N/A |
| SQL injection vulnerability in Meine Links (aka My Links) in Kyberna ky2help allows remote authenticated users to execute arbitrary SQL commands via unspecified "textboxes." | ||||
| CVE-1999-0533 | 2026-04-16 | N/A | ||
| A DNS server allows inverse queries. | ||||
| CVE-2000-0017 | 1 Redhat | 1 Linux | 2026-04-16 | N/A |
| Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter. | ||||
| CVE-2000-0798 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| The truncate function in IRIX 6.x does not properly check for privileges when the file is in the xfs file system, which allows local users to delete the contents of arbitrary files. | ||||
| CVE-2006-3542 | 1 Boxcar Media | 1 Shopping Cart | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Garry Glendown Shopping Cart 0.9 allow remote attackers to inject arbitrary web script or HTML via the (1) shop name field in (a) editshop.php, (b) edititem.php, and (c) index.php; and via the (2) item field in editshop.php and edititem.php. | ||||
| CVE-2006-3881 | 1 Musicbox | 1 Musicbox | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in Shalwan MusicBox 2.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter in a request for the top-level URI. NOTE: the id parameter in index.php, and the type and show parameters in a top action, are already covered by CVE-2006-1349; and the term parameter in a search action is already covered by CVE-2006-1806. | ||||
| CVE-2000-0019 | 1 Ipswitch | 1 Imail | 2026-04-16 | N/A |
| IMail POP3 daemon uses weak encryption, which allows local users to read files. | ||||