Total
29798 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-0578 | 2 Mozilla, Redhat | 3 Firefox, Mozilla, Enterprise Linux | 2025-04-03 | N/A |
| Firefox before 1.0.1 and Mozilla Suite before 1.7.6 use a predictable filename for the plugin temporary directory, which allows local users to delete arbitrary files of other users via a symlink attack on the plugtmp directory. | ||||
| CVE-1999-1200 | 1 Vintra Systems | 1 Smtp Mailserver | 2025-04-03 | N/A |
| Vintra SMTP MailServer allows remote attackers to cause a denial of service via a malformed "EXPN *@" command. | ||||
| CVE-2005-0584 | 2 Mozilla, Redhat | 3 Firefox, Mozilla, Enterprise Linux | 2025-04-03 | N/A |
| Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the HTTP Authentication dialog, do not change the focus to the tab that generated the prompt, which could facilitate spoofing and phishing attacks. | ||||
| CVE-2002-1079 | 1 Aprelium Technologies | 1 Abyss Web Server | 2025-04-03 | N/A |
| Directory traversal vulnerability in Abyss Web Server 1.0.3 allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in an HTTP GET request. | ||||
| CVE-1999-1219 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows local users to gain root privileges, possibly through the clogin command. | ||||
| CVE-2004-0219 | 1 Openbsd | 1 Openbsd | 2025-04-03 | N/A |
| isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with a malformed IPSEC SA payload, as demonstrated by the Striker ISAKMP Protocol Test Suite. | ||||
| CVE-1999-1224 | 1 University Of Washington | 1 Imapd | 2025-04-03 | N/A |
| IMAP 4.1 BETA, and possibly other versions, does not properly handle the SIGABRT (abort) signal, which allows local users to crash the server (imapd) via certain sequences of commands, which causes a core dump that may contain sensitive password information. | ||||
| CVE-1999-1229 | 1 Id Software | 1 Quake 2 Server | 2025-04-03 | N/A |
| Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the target file. | ||||
| CVE-1999-1230 | 1 Id Software | 1 Quake 2 | 2025-04-03 | N/A |
| Quake 2 server allows remote attackers to cause a denial of service via a spoofed UDP packet with a source address of 127.0.0.1, which causes the server to attempt to connect to itself. | ||||
| CVE-1999-1235 | 1 Microsoft | 1 Internet Explorer | 2025-04-03 | N/A |
| Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information from another user's index.dat, or (2) people who are physically observing ("shoulder surfing") another user to read the information from the status bar when the user moves the mouse over a link. | ||||
| CVE-1999-1249 | 1 Hp | 1 Hp-ux | 2025-04-03 | N/A |
| movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain privileges. | ||||
| CVE-2004-0227 | 1 Triornis | 1 Zoneminder | 2025-04-03 | N/A |
| Buffer overflow in the zms script in ZoneMinder before 1.19.2 may allow a remote attacker to execute arbitrary code via a long query string. | ||||
| CVE-1999-1269 | 1 Kde | 1 Kde Beta 3 | 2025-04-03 | N/A |
| Screen savers in KDE beta 3 allows local users to overwrite arbitrary files via a symlink attack on the .kss.pid file. | ||||
| CVE-1999-1281 | 1 Winddance Networks Corporation | 1 Breeze Network Server | 2025-04-03 | N/A |
| Development version of Breeze Network Server allows remote attackers to cause the system to reboot by accessing the configbreeze CGI program. | ||||
| CVE-1999-1289 | 1 Mirabilis | 1 Icq | 2025-04-03 | N/A |
| ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an ICQ packet instead of the public address (e.g. through NAT), which provides remote attackers with potentially sensitive information about the client or the internal network configuration. | ||||
| CVE-1999-1292 | 1 Kolban | 1 Webcam32 | 2025-04-03 | N/A |
| Buffer overflow in web administration feature of Kolban Webcam32 4.8.3 and earlier allows remote attackers to execute arbitrary commands via a long URL. | ||||
| CVE-1999-1294 | 1 Microsoft | 1 Windows Nt | 2025-04-03 | N/A |
| Office Shortcut Bar (OSB) in Windows 3.51 enables backup and restore permissions, which are inherited by programs such as File Manager that are started from the Shortcut Bar, which could allow local users to read folders for which they do not have permission. | ||||
| CVE-2006-4041 | 1 Pike | 1 Pike | 2025-04-03 | N/A |
| SQL injection vulnerability in Pike before 7.6.86, when using a Postgres database server, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors. | ||||
| CVE-2002-1038 | 1 Michael Dean | 1 Double Choco Latte | 2025-04-03 | N/A |
| Double Choco Latte (DCL) before 20020706 does not properly verify if a file was uploaded, which allows remote attackers to conduct certain operations on arbitrary files via the (1) Projects: Upload File Attachment or (2) Work Orders: Import features. | ||||
| CVE-1999-1307 | 1 Novell | 1 Unixware | 2025-04-03 | N/A |
| Vulnerability in urestore in Novell UnixWare 1.1 allows local users to gain root privileges. | ||||