Search Results (366574 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-1151 1 Compaq Microcom 1 Microcom 6000 Access Integrator 2026-04-16 N/A
Compaq/Microcom 6000 Access Integrator does not cause a session timeout after prompting for a username or password, which allows remote attackers to cause a denial of service by connecting to the integrator without providing a username or password.
CVE-1999-1153 1 Hamcards Postcard Cgi 1 Hamcards Postcard Cgi 2026-04-16 N/A
HAMcards Postcard CGI script 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.
CVE-2003-0441 1 Orville-write 1 Orville-write 2026-04-16 N/A
Multiple buffer overflows in Orville Write (orville-write) 2.53 and earlier allow local users to gain privileges.
CVE-1999-1154 1 Lakeweb 1 Filemail Cgi Script 2026-04-16 N/A
LakeWeb Filemail CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.
CVE-2003-0445 1 Webfs 1 Webfs 2026-04-16 N/A
Buffer overflow in webfs before 1.17.1 allows remote attackers to execute arbitrary code via an HTTP request with a long Request-URI.
CVE-1999-1155 1 Lakeweb 1 Mail List Cgi Script 2026-04-16 N/A
LakeWeb Mail List CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.
CVE-1999-1158 1 Sun 1 Sunos 2026-04-16 N/A
Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd.
CVE-2003-0446 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
Cross-site scripting (XSS) in Internet Explorer 5.5 and 6.0, possibly in a component that is also used by other Microsoft products, allows remote attackers to insert arbitrary web script via an XML file that contains a parse error, which inserts the script in the resulting error message.
CVE-2004-1013 6 Carnegie Mellon University, Conectiva, Openpkg and 3 more 6 Cyrus Imap Server, Linux, Openpkg and 3 more 2026-04-16 N/A
The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x through 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as (1) "body[p", (2) "binary[p", or (3) "binary[p") that cause an index increment error that leads to an out-of-bounds memory corruption.
CVE-1999-1160 1 Hp 1 Hp-ux 2026-04-16 N/A
Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root privileges.
CVE-2003-0448 1 Aboleo.net 1 Portmon 2026-04-16 N/A
Portmon 1.7 and possibly earlier versions allows local users to read and write arbitrary files via the (1) -c (host file) or (2) -l (log file) command line options.
CVE-1999-1164 1 Microsoft 2 Outlook, Outlook Express 2026-04-16 N/A
Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL headers, which causes Outlook to hang.
CVE-1999-1165 1 Gnu 1 Fingerd 2026-04-16 N/A
GNU fingerd 1.37 does not properly drop privileges before accessing user information, which could allow local users to (1) gain root privileges via a malicious program in the .fingerrc file, or (2) read arbitrary files via symbolic links from .plan, .forward, or .project files.
CVE-1999-1166 1 Linux 1 Linux Kernel 2026-04-16 N/A
Linux 2.0.37 does not properly encode the Custom segment limit, which allows local users to gain root privileges by accessing and modifying kernel memory.
CVE-1999-1168 1 Iss 1 Internet Security Scanner 2026-04-16 N/A
install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file.
CVE-1999-1169 1 Flavio Veloso 1 Nobo 2026-04-16 N/A
nobo 1.2 allows remote attackers to cause a denial of service (crash) via a series of large UDP packets.
CVE-1999-1172 1 Maximizer 1 Maximizer Enterprise 2026-04-16 N/A
By design, Maximizer Enterprise 4 calendar and address book program allows arbitrary users to modify the calendar of other users when the calendar is being shared.
CVE-1999-1177 1 Lincoln D. Stein 1 Nph-publish 2026-04-16 N/A
Directory traversal vulnerability in nph-publish before 1.2 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the pathname for an upload operation.
CVE-2003-0459 2 Kde, Redhat 10 Konqueror, Konqueror Embedded, Analog Real-time Synthesizer and 7 more 2026-04-16 N/A
KDE Konqueror for KDE 3.1.2 and earlier does not remove authentication credentials from URLs of the "user:password@host" form in the HTTP-Referer header, which could allow remote web sites to steal the credentials for pages that link to the sites.
CVE-1999-1185 1 Sco 5 Cmw, Internet Faststart, Open Desktop and 2 more 2026-04-16 N/A
Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file.