Search Results (366668 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2003-0278 1 Happycgi.com 1 Happymall 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to insert arbitrary web script via the file parameter.
CVE-1999-0828 1 Sco 1 Unixware 2026-04-16 N/A
UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.
CVE-1999-0821 1 Freebsd 1 Freebsd 2026-04-16 N/A
FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument.
CVE-1999-0820 1 Freebsd 1 Freebsd 2026-04-16 N/A
FreeBSD seyon allows users to gain privileges via a modified PATH variable for finding the xterm and seyon-emu commands.
CVE-2006-3167 1 Free Realty 1 Free Realty 2026-04-16 N/A
Free Realty before 2.9 allows remote attackers to obtain the full path and other sensitive information via unspecified manipulations that produce an error message.
CVE-2006-3166 1 Free Realty 1 Free Realty 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in propview.php in Free Realty 2.9-0.6 and earlier allows remote attackers to execute arbitrary web script or HTML via the sort parameter.
CVE-2005-3288 1 Rockliffe 1 Mailsite Express 2026-04-16 N/A
Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the "compose page" feature, then accessing the file from the cache directory before saving or sending the message.
CVE-1999-0818 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Buffer overflow in Solaris kcms_configure via a long NETPATH environmental variable.
CVE-2003-0277 1 Happycgi 1 Happymall 2026-04-16 N/A
Directory traversal vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the file parameter.
CVE-1999-0814 1 Redhat 1 Linux 2026-04-16 N/A
Red Hat pump DHCP client allows remote attackers to gain root access in some configurations.
CVE-2003-0269 1 Youbin 1 Youbin 2026-04-16 N/A
Buffer overflow in youbin allows local users to gain privileges via a long HOME environment variable.
CVE-1999-0811 1 Samba 1 Samba 2026-04-16 N/A
Buffer overflow in Samba smbd program via a malformed message command.
CVE-1999-0393 1 Eric Allman 1 Sendmail 2026-04-16 N/A
Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers.
CVE-1999-0394 2026-04-16 N/A
DPEC Online Courseware allows an attacker to change another user's password without knowing the original password.
CVE-1999-0399 1 Khaled Mardam-bey 1 Mirc 2026-04-16 N/A
The DCC server command in the Mirc 5.5 client doesn't filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands.
CVE-1999-0401 1 Linux 1 Linux Kernel 2026-04-16 N/A
A race condition in Linux 2.2.1 allows local users to read arbitrary memory from /proc files.
CVE-2004-1005 6 Debian, Gentoo, Midnight Commander and 3 more 8 Debian Linux, Linux, Midnight Commander and 5 more 2026-04-16 N/A
Multiple buffer overflows in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact.
CVE-1999-0406 1 Digital 1 Unix 2026-04-16 N/A
Digital Unix Networker program nsralist has a buffer overflow which allows local users to obtain root privilege.
CVE-1999-0408 1 Sun 1 Cobalt Raq 2026-04-16 N/A
Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server.
CVE-2003-0131 2 Openssl, Redhat 4 Openssl, Enterprise Linux, Linux and 1 more 2026-04-16 N/A
The SSL and TLS components for OpenSSL 0.9.6i and earlier, 0.9.7, and 0.9.7a allow remote attackers to perform an unauthorized RSA private key operation via a modified Bleichenbacher attack that uses a large number of SSL or TLS connections using PKCS #1 v1.5 padding that cause OpenSSL to leak information regarding the relationship between ciphertext and the associated plaintext, aka the "Klima-Pokorny-Rosa attack."