| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Falcon web server allows remote attackers to determine the absolute path of the web root via long file names. |
| Zeus web server allows remote attackers to read arbitrary files by specifying the file name in an option to the search engine. |
| The Zeus web server administrative interface uses weak encryption for its passwords. |
| Alibaba web server allows remote attackers to execute commands via a pipe character in a malformed URL. |
| sccw allows local users to read arbitrary files. |
| URL Live! web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. |
| Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command. |
| Buffer overflow in SmartDesk WebSuite allows remote attackers to cause a denial of service via a long URL. |
| Buffer overflow in Mediahouse Statistics Server allows remote attackers to execute commands. |
| Mediahouse Statistics Server allows remote attackers to read the administrator password, which is stored in cleartext in the ss.cfg file. |
| TeamTrack web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. |
| Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 with Security Patch allow remote attackers to execute arbitrary SQL commands via the Username field in (1) index.php or (2) member.php, action parameter to (3) search.php or (4) member.php, or (5) polloptions parameter to polls.php. |
| Mutt mail client allows a remote attacker to execute commands via shell metacharacters. |
| IBM WebSphere ikeyman tool uses weak encryption to store a password for a key database that is used for SSL connections. |
| The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message that is sent to the spoofed host, potentially setting up a loop, aka Snork. |
| The OmniHTTPD visadmin.exe program allows a remote attacker to conduct a denial of service via a malformed URL which causes a large number of temporary files to be created. |
| Buffer overflow in Xshipwars xsw program. |
| Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode. |
| Directory traversal vulnerability in admin/admin_hacks_list.php in Nivisec Hacks List 1.20 and earlier for phpBB, when register_globals is enabled, allows remote attackers to read arbitrary files via a ".." in the phpEx parameter. |
| htdig allows remote attackers to execute commands via filenames with shell metacharacters. |
