Full List

Search

Recent Vulnerabilities

• CVE-2000-0875 • published on May 7, 2001 WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to cause a denial of service by sending a long string of unprintable characters.
• CVE-2000-0890 • published on May 7, 2001 periodic in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows local users to overwrite arbitrary files via a symlink attack.
• CVE-2000-0964 • published on May 7, 2001 Buffer overflow in the web administration service for the HiNet LP5100 IP-phone allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request.
• CVE-2000-0927 • published on May 7, 2001 WQuinn QuotaAdvisor 4.1 does not properly record file sizes if they are stored in alternative data streams, which allows users to bypass quota restrictions.
• CVE-2000-1108 • published on May 7, 2001 cons.saver in Midnight Commander (mc) 4.5.42 and earlier does not properly verify if an output file descriptor is a TTY, which allows local users to corrupt files by creating a symbolic link to the target file, calling mc, and specifying that link as a TTY argument.
• CVE-2000-1109 • published on May 7, 2001 Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed.
• CVE-2000-1119 • published on May 7, 2001 Buffer overflow in setsenv command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands via a long "x=" argument.
• CVE-2000-1122 • published on May 7, 2001 Buffer overflow in setclock command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long argument.
• CVE-2000-1123 • published on May 7, 2001 Buffer overflow in pioout command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands.
• CVE-2000-1164 • published on May 7, 2001 WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system.
• CVE-2000-1165 • published on May 7, 2001 Balabit syslog-ng allows remote attackers to cause a denial of service (application crash) via a malformed log message that does not have a closing in the priority specifier.
• CVE-2000-1170 • published on May 7, 2001 Buffer overflow in Netsnap webcam HTTP server before 1.2.9 allows remote attackers to execute arbitrary commands via a long GET request.
• CVE-2000-1174 • published on May 7, 2001 Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username.
• CVE-2000-1121 • published on May 7, 2001 Buffer overflow in enq command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long -M argument.
• CVE-2000-1171 • published on May 7, 2001 Directory traversal vulnerability in cgiforum.pl script in CGIForum 1.0 allows remote attackers to ready arbitrary files via a .. (dot dot) attack in the "thesection" parameter.
• CVE-2000-1075 • published on May 7, 2001 Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services.
• CVE-2000-1124 • published on May 7, 2001 Buffer overflow in piobe command in IBM AIX 4.3.x allows local users to gain privileges via long environmental variables.
• CVE-2000-1180 • published on May 7, 2001 Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument.
• CVE-2001-0002 • published on May 7, 2001 Internet Explorer 5.5 and earlier allows remote attackers to obtain the physical location of cached content and open the content in the Local Computer Zone, then use compiled HTML help (.chm) files to execute arbitrary programs.
• CVE-2001-0008 • published on May 7, 2001 Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures.