Export limit exceeded: 359197 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 359197 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 359197 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (359197 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0845 | 1 Sco | 1 Unixware | 2026-04-16 | N/A |
| Buffer overflow in SCO su program allows local users to gain root access via a long username. | ||||
| CVE-2001-0616 | 1 Faust Informatics | 1 Freestyle Chat | 2026-04-16 | N/A |
| Faust Informatics Freestyle Chat server prior to 4.1 SR3 allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (e.g., GET /aux HTTP/1.0). | ||||
| CVE-2002-0111 | 1 Funsoft | 1 Dinos Webserver | 2026-04-16 | N/A |
| Directory traversal vulnerability in Funsoft Dino's Webserver 1.2 and earlier allows remote attackers to read files or execute arbitrary commands via a .. (dot dot) in the URL. | ||||
| CVE-2002-0116 | 1 Palm | 1 Palm Os | 2026-04-16 | N/A |
| Palm OS 3.5h and possibly other versions, as used in Handspring Visor and Xircom products, allows remote attackers to cause a denial of service via a TCP connect scan, e.g. from nmap. | ||||
| CVE-2002-0117 | 1 Yabb | 1 Yabb | 2026-04-16 | N/A |
| Cross-site scripting vulnerability in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 and earlier allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag. | ||||
| CVE-1999-0881 | 1 Blueface | 1 Falcon Web Server | 2026-04-16 | N/A |
| Falcon web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2006-3682 | 1 Awstats | 1 Awstats | 2026-04-16 | N/A |
| awstats.pl in AWStats 6.5 build 1.857 and earlier allows remote attackers to obtain the installation path via the (1) year, (2) pluginmode or (3) month parameters. | ||||
| CVE-1999-0893 | 1 Sco | 1 Openserver | 2026-04-16 | N/A |
| userOsa in SCO OpenServer allows local users to corrupt files via a symlink attack. | ||||
| CVE-2000-0002 | 1 Zbsoft | 1 Zbserver | 2026-04-16 | N/A |
| Buffer overflow in ZBServer Pro 1.50 allows remote attackers to execute commands via a long GET request. | ||||
| CVE-2000-0003 | 1 Sco | 1 Unixware | 2026-04-16 | N/A |
| Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable. | ||||
| CVE-1999-0912 | 1 Freebsd | 1 Freebsd | 2026-04-16 | N/A |
| FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files. | ||||
| CVE-1999-0913 | 1 Network Security Wizards | 1 Dragon-fire Ids | 2026-04-16 | N/A |
| dfire.cgi script in Dragon-Fire IDS allows remote users to execute commands via shell metacharacters. | ||||
| CVE-2000-0011 | 1 Analogx | 1 Simpleserver Www | 2026-04-16 | N/A |
| Buffer overflow in AnalogX SimpleServer:WWW HTTP server allows remote attackers to execute commands via a long GET request. | ||||
| CVE-2001-0619 | 1 Lucent | 1 Orinoco | 2026-04-16 | N/A |
| The Lucent Closed Network protocol can allow remote attackers to join Closed Network networks which they do not have access to. The 'Network Name' or SSID, which is used as a shared secret to join the network, is transmitted in the clear. | ||||
| CVE-2001-1560 | 1 Microsoft | 2 Windows 2000, Windows Xp | 2026-04-16 | N/A |
| Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function after receiving a WM_NCCREATE message. | ||||
| CVE-2002-0121 | 1 Php | 1 Php | 2026-04-16 | N/A |
| PHP 4.0 through 4.1.1 stores session IDs in temporary files whose name contains the session ID, which allows local users to hijack web connections. | ||||
| CVE-2000-0012 | 1 Hughes | 1 Msql | 2026-04-16 | N/A |
| Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands. | ||||
| CVE-2001-1565 | 1 Apple | 1 Mac Os X | 2026-04-16 | N/A |
| Point to Point Protocol daemon (pppd) in MacOS x 10.0 and 10.1 through 10.1.5 provides the username and password on the command line, which allows local users to obtain authentication information via the ps command. | ||||
| CVE-2001-1566 | 2 Vanessa, Verge | 2 Vanessa Logger, Perdition | 2026-04-16 | N/A |
| Format string vulnerability in libvanessa_logger 0.0.1 in Perdition 0.1.8 allows remote attackers to execute arbitrary code via format string specifiers in the __vanessa_logger_log function. | ||||
| CVE-1999-0927 | 1 Gordano | 1 Ntmail | 2026-04-16 | N/A |
| NTMail allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||