Search Results (363429 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2001-1056 1 Linux 1 Linux Kernel 2026-04-16 N/A
IRC DCC helper in the ip_masq_irc IP masquerading module 2.2 allows remote attackers to bypass intended firewall restrictions by causing the target system to send a "DCC SEND" request to a malicious server which listens on port 6667, which may cause the module to believe that the traffic is a valid request and allow the connection to the port specified in the DCC SEND request.
CVE-1999-0985 1 Cc 1 Cc Whois 2026-04-16 N/A
CC Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry.
CVE-1999-0986 3 Debian, Linux, Redhat 3 Debian Linux, Linux Kernel, Linux 2026-04-16 N/A
The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.
CVE-1999-0987 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name.
CVE-2001-1057 1 Wolfram Research 1 Mathematica 2026-04-16 N/A
The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by connecting to port 16286 and not disconnecting, which prevents users from making license requests.
CVE-2002-0238 1 Netgear 1 Rt314 2026-04-16 N/A
Cross-site scripting vulnerability in web administration interface for NetGear RT314 and RT311 Gateway Routers allows remote attackers to execute arbitrary script on another client via a URL that contains the script.
CVE-1999-0990 1 Gnome 1 Gdm 2026-04-16 N/A
Error messages generated by gdm with the VerboseAuth setting allows an attacker to identify valid users on a system.
CVE-1999-0994 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords.
CVE-1999-0996 1 Infoseek 1 Ultraseek Server 2026-04-16 N/A
Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request.
CVE-1999-0997 3 Millenux Gmbh, Redhat, University Of Washington 3 Anonftp, Linux, Wu-ftpd 2026-04-16 N/A
wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.
CVE-1999-0999 1 Microsoft 1 Sql Server 2026-04-16 N/A
Microsoft SQL 7.0 server allows a remote attacker to cause a denial of service via a malformed TDS packet.
CVE-1999-1002 1 Netscape 1 Communicator 2026-04-16 N/A
Netscape Navigator uses weak encryption for storing a user's Netscape mail password.
CVE-1999-1003 1 Jgaa 1 Warftpd 2026-04-16 N/A
War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections.
CVE-1999-1004 1 Symantec 1 Norton Antivirus 2026-04-16 N/A
Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command.
CVE-1999-0720 1 Linux 1 Linux Kernel 2026-04-16 N/A
The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users.
CVE-1999-0661 2026-04-16 N/A
A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP Wrappers 7.6, (2) util-linux 2.9g, (3) wuarchive ftpd (wuftpd) 2.2 and 2.1f, (4) IRC client (ircII) ircII 2.2.9, (5) OpenSSH 3.4p1, or (6) Sendmail 8.12.6.
CVE-2001-0992 1 Kabotie Software Technologies 1 Shopplus Cart 2026-04-16 N/A
shopplus.cgi in ShopPlus shopping cart allows remote attackers to execute arbitrary commands via shell metacharacters in the "file" parameter.
CVE-1999-0664 2026-04-16 N/A
An application-critical Windows NT registry key has inappropriate permissions.
CVE-1999-0665 2026-04-16 N/A
An application-critical Windows NT registry key has an inappropriate value.
CVE-1999-0668 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
The scriptlet.typelib ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy.