Full List

Search

Recent Vulnerabilities

• CVE-2002-0138 • published on March 15, 2002 CDRDAO 1.1.4 and 1.1.5 allows local users to read arbitrary files via the show-data command.
• CVE-2002-0144 • published on March 15, 2002 Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outside of the upload directory via a .. (dot dot) attack.
• CVE-2002-0132 • published on March 15, 2002 Buffer overflow in Chinput 3.0 allows local users to execute arbitrary code via a long HOME environment variable.
• CVE-2002-0141 • published on March 15, 2002 Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file.
• CVE-2002-0133 • published on March 15, 2002 Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long header fields to the HTTP proxy, or (2) a long string to the telnet proxy.
• CVE-2002-0140 • published on March 15, 2002 Domain Name Relay Daemon (dnrd) 2.10 and earlier allows remote malicious DNS sites to cause a denial of service and possibly execute arbitrary code via a long or malformed DNS reply, which is not handled properly by parse_query, get_objectname, and possibly other functions.
• CVE-2002-0142 • published on March 15, 2002 CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters.
• CVE-2002-0145 • published on March 15, 2002 chuid 1.2 and earlier does not properly verify the ownership of files that will be changed, which allows remote attackers to change files owned by other users, such as root.
• CVE-2002-0136 • published on March 15, 2002 Microsoft Internet Explorer 5.5 on Windows 98 allows remote web pages to cause a denial of service (hang) via extremely long values for form fields such as INPUT and TEXTAREA, which can be automatically filled via Javascript.
• CVE-2002-0137 • published on March 15, 2002 CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file.
• CVE-1999-0380 • published on March 9, 2002 SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service (RAS) is enabled by setting a user's Finger File to point to the target file, then running finger on the user.
• CVE-1999-0815 • published on March 9, 2002 Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries.
• CVE-1999-0930 • published on March 9, 2002 wwwboard allows a remote attacker to delete message board articles via a malformed argument.
• CVE-1999-0968 • published on March 9, 2002 Buffer overflow in BNC IRC proxy allows remote attackers to gain privileges.
• CVE-1999-0801 • published on March 9, 2002 BMC Patrol allows remote attackers to gain access to an agent by spoofing frames.
• CVE-1999-0921 • published on March 9, 2002 BMC Patrol allows any remote attacker to flood its UDP port, causing a denial of service.
• CVE-1999-1014 • published on March 9, 2002 Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument.
• CVE-1999-1032 • published on March 9, 2002 Vulnerability in LAT/Telnet Gateway (lattelnet) on Ultrix 4.1 and 4.2 allows attackers to gain root privileges.
• CVE-1999-1044 • published on March 9, 2002 Vulnerability in Advanced File System Utility (advfs) in Digital UNIX 4.0 through 4.0d allows local users to gain privileges.
• CVE-1999-1047 • published on March 9, 2002 When BSDI patches for Gauntlet 5.0 BSDI are installed in a particular order, Gauntlet allows remote attackers to bypass firewall access restrictions, and does not log the activities.