| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line. |
| Finger redirection allows finger bombs. |
| RIP v1 is susceptible to spoofing. |
| Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys. |
| The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string, as demonstrated by reading the password file. |
| Open WebMail 2.30 and earlier, when use_syshomedir is disabled or create_syshomedir is enabled, creates new directories before authenticating, which allows remote attackers to create arbitrary directories. |
| Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood. |
| The handler CGI program in IRIX allows arbitrary command execution. |
| AIX infod allows local users to gain root access through an X display. |
| Windows NT 4.0 beta allows users to read and delete shares. |
| Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root. |
| The Perl fingerd program allows arbitrary command execution from remote users. |
| Multiple cross-site scripting vulnerabilities in Image Gallery Web Application 0.9.10 allow remote attackers to inject arbitrary web script or HTML. |
| Buffer overflow in AIX lchangelv gives root access. |
| Race condition in Linux mailx command allows local users to read user files. |
| The DG/UX finger daemon allows remote command execution through shell metacharacters. |
| Buffer overflow in ADA Image Server (ImgSvr) 0.4 allows remote attackers to cause a denial of service (web server crash) or execute arbitrary code via a long GET request. |
| Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon. |
| Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. |
| Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. |