Search Results (351250 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2003-1035 1 Sap 2 Sap R 3, Sapgui 2026-04-16 N/A
The default installation of SAP R/3 46C/D allows remote attackers to bypass account locking by using the RFC API instead of the SAPGUI to conduct a brute force password guessing attack, which does not lock out the account like the SAPGUI does.
CVE-2006-0661 1 Scriptme 2 Sme Blog Host, Sme Gb Host 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in Scriptme SmE GB Host 1.21 and SmE Blog Host allows remote attackers to inject arbitrary web script or HTML via the BBcode url tag.
CVE-2006-0852 1 Devscripts 1 Admbook 2026-04-16 N/A
Direct static code injection vulnerability in write.php in Admbook 1.2.2 and earlier allows remote attackers to execute arbitrary PHP code via the X-Forwarded-For HTTP header field, which is inserted into content-data.php.
CVE-2003-1058 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
The Xsun server for Sun Solaris 2.6 through 9, when running in Direct Graphics Access (DGA) mode, allows local users to cause a denial of service (Xsun crash) or to create or overwrite arbitrary files on the system, probably via a symlink attack on temporary server files.
CVE-2004-2238 1 Inter7 1 Vpopmail \(vchkpw\) 2026-04-16 N/A
Format string vulnerability in vsybase.c in vpopmail 5.4.2 and earlier has unknown impact and attack vectors. NOTE: in a followup post, it was observed that the source code used constants that, when compiled, became static format strings. Thus this is not a vulnerability
CVE-1999-0547 2026-04-16 N/A
An SSH server allows authentication through the .rhosts file.
CVE-1999-0549 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Windows NT automatically logs in an administrator upon rebooting.
CVE-2003-1037 1 Sap 1 Internet Transaction Server 2026-04-16 N/A
Format string vulnerability in the WGate component for SAP Internet Transaction Server (ITS) allows remote attackers to execute arbitrary code via a high "trace level."
CVE-1999-0564 2026-04-16 N/A
An attacker can force a printer to print arbitrary documents (e.g. if the printer doesn't require a password) or to become disabled.
CVE-1999-0591 2026-04-16 N/A
An event log in Windows NT has inappropriate access permissions.
CVE-1999-0975 1 Microsoft 3 Windows 95, Windows 98, Windows Nt 2026-04-16 N/A
The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.
CVE-2005-0554 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
Buffer overflow in the URL processor of Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL with a long hostname, aka "URL Parsing Memory Corruption Vulnerability."
CVE-2005-0560 1 Microsoft 1 Exchange Server 2026-04-16 N/A
Heap-based buffer overflow in the SvrAppendReceivedChunk function in xlsasink.dll in the SMTP service of Exchange Server 2000 and 2003 allows remote attackers to execute arbitrary code via a crafted X-LINK2STATE extended verb request to the SMTP port.
CVE-1999-0624 2026-04-16 N/A
The rstat/rstatd service is running.
CVE-2006-0674 1 Ibm 1 Aix 2026-04-16 N/A
Buffer overflow in the arp command of IBM AIX 5.3 L, 5.3, 5.2.2, 5.2 L, and 5.2 allows local users to cause a denial of service (crash) via a long iftype argument.
CVE-1999-0661 2026-04-16 N/A
A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP Wrappers 7.6, (2) util-linux 2.9g, (3) wuarchive ftpd (wuftpd) 2.2 and 2.1f, (4) IRC client (ircII) ircII 2.2.9, (5) OpenSSH 3.4p1, or (6) Sendmail 8.12.6.
CVE-1999-0008 2 Hp, Sun 3 Hp-ux, Solaris, Sunos 2026-04-16 N/A
Buffer overflow in NIS+, in Sun's rpc.nisd program.
CVE-1999-0294 1 Microsoft 1 Wins 2026-04-16 N/A
All records in a WINS database can be deleted through SNMP for a denial of service.
CVE-1999-0551 1 Hp 1 Openmail 2026-04-16 N/A
HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests.
CVE-1999-0961 1 Hp 1 Hp-ux 2026-04-16 N/A
HPUX sysdiag allows local users to gain root privileges via a symlink attack during log file creation.