| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Denial of service in Gauntlet Firewall via a malformed ICMP packet. |
| Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option. |
| Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL. |
| Buffer overflow in Microsoft Phone Dialer (dialer.exe), via a malformed dialer entry in the dialer.ini file. |
| After an unattended installation of Windows NT 4.0, an installation file could include sensitive information such as the local Administrator password. |
| A vulnerability in Caldera Open Administration System (COAS) allows the /etc/shadow password file to be made world-readable. |
| Buffer overflow in OpenBSD procfs and fdescfs file systems via uio_offset in the readdir() function. |
| Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field. |
| The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages. |
| The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users. |
| Denial of service in Windows NT Local Security Authority (LSA) through a malformed LSA request. |
| The KDE klock program allows local users to unlock a session using malformed input. |
| The logging facility of the Debian smtp-refuser package allows local users to delete arbitrary files using symbolic links. |
| A kernel leak in the OpenBSD kernel allows IPsec packets to be sent unencrypted. |
| Buffer overflow in Lotus Notes LDAP (NLDAP) allows an attacker to conduct a denial of service through the ldap_search request. |
| A default configuration of CiscoSecure Access Control Server (ACS) allows remote users to modify the server database without authentication. |
| The zsoelim program in the Debian man-db package allows local users to overwrite files via a symlink attack. |
| Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request. |
| A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service. |
| The Debian mailman package uses weak authentication, which allows attackers to gain privileges. |