Export limit exceeded: 363654 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (363654 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2002-0377 1 Rob Flynn 1 Gaim 2026-04-16 N/A
Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows local users to access MSN web email accounts of other users who run Gaim by reading authentication information from the files.
CVE-2000-0206 1 Oracle 1 Oracle8i 2026-04-16 N/A
The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges.
CVE-2001-1289 1 Id Software 1 Quake 3 Arena 2026-04-16 N/A
Quake 3 arena 1.29f and 1.29g allows remote attackers to cause a denial of service (crash) via a malformed connection packet that begins with several char-255 characters.
CVE-2001-1291 1 3com 2 Superstack Ii Ps Hub 40, Superstack Ii Ps Hub 40 Firmware 2026-04-16 9.8 Critical
The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the server via brute force password guessing.
CVE-2001-1294 1 Avtronics 1 Inetserv 2026-04-16 N/A
Buffer overflow in A-V Tronics Inetserv 3.2.1 and earlier allows remote attackers to cause a denial of service (crash) in the Webmail interface via a long username and password.
CVE-2000-0210 1 Sun 1 Workshop 2026-04-16 N/A
The lit program in Sun Flex License Manager (FlexLM) follows symlinks, which allows local users to modify arbitrary files.
CVE-2001-1297 1 Actionpoll 1 Actionpoll 2026-04-16 N/A
PHP remote file inclusion vulnerability in Actionpoll PHP script before 1.1.2 allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter.
CVE-2000-0211 1 Microsoft 1 Windows Media Services 2026-04-16 N/A
The Windows Media server allows remote attackers to cause a denial of service via a series of client handshake packets that are sent in an improper sequence, aka the "Misordered Windows Media Services Handshake" vulnerability.
CVE-2000-0212 1 Pragma Systems 1 Interaccess Telnetd Server 2026-04-16 N/A
InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information.
CVE-2000-0218 2 Caldera, Suse 2 Openlinux, Suse Linux 2026-04-16 N/A
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
CVE-2000-0219 1 Redhat 1 Linux 2026-04-16 N/A
Red Hat 6.0 allows local users to gain root access by booting single user and hitting ^C at the password prompt.
CVE-2000-0222 1 Microsoft 1 Windows 2000 2026-04-16 N/A
The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote attackers to connect to the ADMIN$ share without a password until the reboot occurs.
CVE-2000-0226 1 Microsoft 1 Internet Information Server 2026-04-16 N/A
IIS 4.0 allows attackers to cause a denial of service by requesting a large buffer in a POST or PUT command which consumes memory, aka the "Chunked Transfer Encoding Buffer Overflow Vulnerability."
CVE-2000-0235 1 Freebsd 1 Freebsd 2026-04-16 N/A
Buffer overflow in the huh program in the orville-write package allows local users to gain root privileges.
CVE-2000-0237 1 Netscape 1 Enterprise Server 2026-04-16 N/A
Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse the directories.
CVE-2001-1298 1 Grant Horwood 1 Webodex 2026-04-16 N/A
Webodex PHP script 1.0 and earlier allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
CVE-2000-0241 1 Vqsoft 1 Vqserver 2026-04-16 N/A
vqSoft vqServer stores sensitive information such as passwords in cleartext in the server.cfg file, which allows attackers to gain privileges.
CVE-2001-1299 1 Zorbat 1 Zorbstats 2026-04-16 N/A
Zorbat Zorbstats PHP script before 0.9 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
CVE-2002-0379 2 Redhat, University Of Washington 2 Linux, Uw-imap 2026-04-16 N/A
Buffer overflow in University of Washington imap server (uw-imapd) imap-2001 (imapd 2001.315) and imap-2001a (imapd 2001.315) with legacy RFC 1730 support, and imapd 2000.287 and earlier, allows remote authenticated users to execute arbitrary code via a long BODY request.
CVE-2000-0245 1 Sgi 1 Irix 2026-04-16 N/A
Vulnerability in SGI IRIX objectserver daemon allows remote attackers to create user accounts.