Search Results (29926 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2000-1036 1 Extent Technologies 1 Rbs Isp 2026-04-16 N/A
Directory traversal vulnerability in Extent RBS ISP web server allows remote attackers to read sensitive information via a .. (dot dot) attack on the Image parameter.
CVE-2000-1038 1 Ibm 1 As400 Firewall 2026-04-16 N/A
The web administration interface for IBM AS/400 Firewall allows remote attackers to cause a denial of service via an empty GET request.
CVE-2000-1044 1 Suse 1 Suse Linux 2026-04-16 N/A
Format string vulnerability in ypbind-mt in SuSE SuSE-6.2, and possibly other Linux operating systems, allows an attacker to gain root privileges.
CVE-2000-1053 1 Macromedia 1 Jrun 2026-04-16 N/A
Allaire JRun 2.3.3 server allows remote attackers to compile and execute JSP code by inserting it via a cross-site scripting (CSS) attack and directly calling the com.livesoftware.jrun.plugins.JSP JSP servlet.
CVE-2000-1058 1 Hp 1 Openview Network Node Manager 2026-04-16 N/A
Buffer overflow in OverView5 CGI program in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, in the SNMP service (snmp.exe), aka the "Java SNMP MIB Browser Object ID parsing problem."
CVE-2000-1060 1 Xfree86 Project 1 Xfce 2026-04-16 N/A
The default configuration of XFCE 3.5.1 bypasses the Xauthority access control mechanism with an "xhost + localhost" command in the xinitrc program, which allows local users to sniff X Windows traffic and gain privileges.
CVE-2000-1061 1 Microsoft 1 Ie 2026-04-16 N/A
Microsoft Virtual Machine (VM) in Internet Explorer 4.x and 5.x allows an unsigned applet to create and use ActiveX controls, which allows a remote attacker to bypass Internet Explorer's security settings and execute arbitrary commands via a malicious web page or email, aka the "Microsoft VM ActiveX Component" vulnerability.
CVE-2001-0004 1 Microsoft 2 Internet Information Server, Internet Information Services 2026-04-16 N/A
IIS 5.0 and 4.0 allows remote attackers to read the source code for executable web server programs by appending "%3F+.htr" to the requested URL, which causes the files to be parsed by the .HTR ISAPI extension, aka a variant of the "File Fragment Reading via .HTR" vulnerability.
CVE-2001-0010 2 Isc, Redhat 2 Bind, Linux 2026-04-16 N/A
Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges.
CVE-2001-0011 2 Isc, Redhat 2 Bind, Linux 2026-04-16 N/A
Buffer overflow in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges.
CVE-2001-0013 2 Isc, Redhat 2 Bind, Linux 2026-04-16 N/A
Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges.
CVE-2001-0106 1 Hp 1 Hp-ux 2026-04-16 N/A
Vulnerability in inetd server in HP-UX 11.04 and earlier allows attackers to cause a denial of service when the "swait" state is used by a server.
CVE-2001-0114 1 Omnicron 1 Omnihttpd 2026-04-16 N/A
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter.
CVE-2005-1105 1 Sun 1 Javamail 2026-04-16 N/A
Directory traversal vulnerability in the MimeBodyPart.getFileName method in JavaMail 1.3.2 allows remote attackers to write arbitrary files via a .. (dot dot) in the filename in the Content-Disposition header.
CVE-1999-0410 1 Sun 1 Sunos 2026-04-16 N/A
The cancel command in Solaris 2.6 (i386) has a buffer overflow that allows local users to obtain root access.
CVE-2001-0118 3 Immunix, Mandrakesoft, Redhat 3 Immunix, Mandrake Linux, Linux 2026-04-16 N/A
rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0119 3 Immunix, Mandrakesoft, Redhat 3 Immunix, Mandrake Linux, Linux 2026-04-16 N/A
getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0122 1 Ibm 2 Http Server, Websphere Application Server 2026-04-16 N/A
Kernel leak in AfpaCache module of the Fast Response Cache Accelerator (FRCA) component of IBM HTTP Server 1.3.x and Websphere 3.52 allows remote attackers to cause a denial of service via a series of malformed HTTP requests that generate a "bad request" error.
CVE-2001-0123 1 Extropia 1 Bbs Forum.cgi 2026-04-16 N/A
Directory traversal vulnerability in eXtropia bbs_forum.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the file parameter.
CVE-2001-0127 1 Oliver Debon 1 Flash 2026-04-16 N/A
Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long DefineSound tag.