Full List

Search

Recent Vulnerabilities

• CVE-2001-0458 • published on May 24, 2001 Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands.
• CVE-2001-0459 • published on May 24, 2001 Buffer overflows in ascdc Afterstep while running setuid allows local users to gain root privileges via a long (1) -d option, (2) -m option, or (3) -f option.
• CVE-2001-0477 • published on May 24, 2001 Vulnerability in WebCalendar 0.9.26 allows remote command execution.
• CVE-2001-0478 • published on May 24, 2001 Directory traversal vulnerability in phpMyAdmin 2.2.0 and earlier versions allows remote attackers to execute arbitrary code via a .. (dot dot) in an argument to the sql.php script.
• CVE-2001-0491 • published on May 24, 2001 Directory traversal vulnerability in RaidenFTPD Server 2.1 before build 952 allows attackers to access files outside the ftp root via dot dot attacks, such as (1) .... in CWD, (2) .. in NLST, or (3) ... in NLST.
• CVE-2001-0492 • published on May 24, 2001 Netcruiser Web server version 0.1.2.8 and earlier allows remote attackers to determine the physical path of the server via a URL containing (1) con, (2) com2, or (3) com3.
• CVE-2001-0460 • published on May 24, 2001 Websweeper 4.0 does not limit the length of certain HTTP headers, which allows remote attackers to cause a denial of service (memory exhaustion) via an extremely large HTTP Referrer: header.
• CVE-2001-0466 • published on May 24, 2001 Directory traversal vulnerability in ustorekeeper 1.61 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
• CVE-2001-0476 • published on May 24, 2001 Multiple buffer overflows in s.cgi program in Aspseek search engine 1.03 and earlier allow remote attackers to execute arbitrary commands via (1) a long HTTP query string, or (2) a long tmpl parameter.
• CVE-2001-0479 • published on May 24, 2001 Directory traversal vulnerability in phpPgAdmin 2.2.1 and earlier versions allows remote attackers to execute arbitrary code via a .. (dot dot) in an argument to the sql.php script.
• CVE-2001-0484 • published on May 24, 2001 Tektronix PhaserLink 850 does not require authentication for access to configuration pages such as _ncl_subjects.shtml and _ncl_items.shtml, which allows remote attackers to modify configuration information and cause a denial of service by accessing the pages.
• CVE-1999-0115 • published on May 7, 2001 AIX bugfiler program allows local users to gain root access.
• CVE-1999-0223 • published on May 7, 2001 Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry.
• CVE-1999-0268 • published on May 7, 2001 MetaInfo MetaWeb web server allows users to upload, execute, and read scripts.
• CVE-1999-0681 • published on May 7, 2001 Buffer overflow in Microsoft FrontPage Server Extensions (PWS) 3.0.2.926 on Windows 95, and possibly other versions, allows remote attackers to cause a denial of service via a long URL.
• CVE-1999-0608 • published on May 7, 2001 An incorrect configuration of the PDG Shopping Cart CGI program "shopper.cgi" could disclose private information.
• CVE-1999-0758 • published on May 7, 2001 Netscape Enterprise 3.5.1 and FastTrack 3.01 servers allow a remote attacker to view source code to scripts by appending a %20 to the script's URL.
• CVE-1999-0922 • published on May 7, 2001 An example application in ColdFusion Server 4.0 allows remote attackers to view source code via the sourcewindow.cfm file.
• CVE-1999-0760 • published on May 7, 2001 Undocumented ColdFusion Markup Language (CFML) tags and functions in the ColdFusion Administrator allow users to gain additional privileges.
• CVE-1999-0924 • published on May 7, 2001 The Syntax Checker in ColdFusion Server 4.0 allows remote attackers to conduct a denial of service.