| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| rpc.ypupdated (NIS) allows remote users to execute arbitrary commands. |
| Unspecified vulnerability in Reservation.class.php for phpScheduleIt 1.01 and earlier allows attackers to modify or delete reservations. |
| Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server. |
| PHP remote file inclusion vulnerability in ZeroBoard 4.1pl4 and earlier allows remote attackers to execute arbitrary PHP code by modifying the (1) _zb_path parameter to outlogin.php or (2) dir parameter to write.php to reference a URL on a remote web server that contains the code. |
| Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as used in Commonwealth of Massachusetts Virtual Law Office (VLO) and other products, allow remote attackers to execute arbitrary PHP code via a URL in the phpc_root_path parameter to (1) includes/calendar.php or (2) includes/setup.php. |
| Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems. |
| Buffer overflow in FTP Serv-U 2.5 allows remote authenticated users to cause a denial of service (crash) via a long (1) CWD or (2) LS (list) command. |
| Attackers can do a denial of service of IRC by crashing the server. |
| Denial of service in Cisco IOS web server allows attackers to reboot the router using a long URL. |
| Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry. |
| Windows NT TCP/IP processes fragmented IP packets improperly, causing a denial of service. |
| Buffer overflow in NCSA WebServer (version 1.5c) gives remote access. |
| Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access. |
| Some filters or firewalls allow fragmented SYN packets with IP reserved bits in violation of their implemented policy. |
| abuse.console in Red Hat 2.1 uses relative pathnames to find and execute the undrv program, which allows local users to execute arbitrary commands via a path that points to a Trojan horse program. |
| Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm. |
| Windows NT RSHSVC program allows remote users to execute arbitrary commands. |
| The mod_authz_svn Apache module for Subversion 1.0.4-r1 and earlier allows remote authenticated users, with write access to the repository, to read unauthorized parts of the repository via the svn copy command. |
| Denial of service in Qmail through long SMTP commands. |
| Unspecified vulnerability in Jetty HTTP Server, as used in (1) IBM Trading Partner Interchange before 4.2.4, (2) CA Unicenter Web Services Distributed Management (WSDM) before 3.11, and possibly other products, allows remote attackers to read arbitrary files via a .. (dot dot) in the URL. |
