Search Results (364862 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-1099 1 Kth 1 Kth Kerberos 2026-04-16 N/A
Kerberos 4 allows remote attackers to obtain sensitive information via a malformed UDP packet that generates an error string that inadvertently includes the realm name and the last user.
CVE-2004-1718 1 Pedestal Software 1 Integrity Protection Driver 2026-04-16 N/A
The ZwOpenSection function in Integrity Protection Driver (IPD) 1.4 and earlier allows local users to cause a denial of service (crash) via an invalid pointer in the "oa" argument.
CVE-1999-1101 1 Kab Software 1 Lydia 2026-04-16 N/A
Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords and gain privileges.
CVE-1999-0295 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges.
CVE-1999-1109 1 Sendmail 1 Sendmail 2026-04-16 N/A
Sendmail before 8.10.0 allows remote attackers to cause a denial of service by sending a series of ETRN commands then disconnecting from the server, while Sendmail continues to process the commands after the connection has been terminated.
CVE-1999-1111 1 Immunix 1 Stackguard 2026-04-16 N/A
Vulnerability in StackGuard before 1.21 allows remote attackers to bypass the Random and Terminator Canary security mechanisms by using a non-linear attack which directly modifies a pointer to a return address instead of using a buffer overflow to reach the return address entry itself.
CVE-1999-1112 1 Irfanview 1 Irfanview 2026-04-16 N/A
Buffer overflow in IrfanView32 3.07 and earlier allows attackers to execute arbitrary commands via a long string after the "8BPS" image type in a Photo Shop image header.
CVE-1999-1121 1 Ibm 1 Aix 2026-04-16 N/A
The default configuration for UUCP in AIX before 3.2 allows local users to gain root privileges.
CVE-2004-0043 1 Yahoo 1 Messenger 2026-04-16 N/A
Buffer overflow in Yahoo Instant Messenger 5.6.0.1351 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long filename in the download feature.
CVE-2002-0217 1 Xoops 1 Xoops 2026-04-16 N/A
Cross-site scripting (CSS) vulnerabilities in the Private Message System for XOOPS 1.0 RC1 allow remote attackers to execute Javascript on other web clients via (1) the Title field or a Private Message Box or (2) the image field parameter in pmlite.php.
CVE-2004-1726 1 John Bradley 1 Xv 2026-04-16 N/A
Multiple integer overflows in (1) xviris.c, (2) xvpcx.c, and (3) xvpm.c in XV allow remote attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow.
CVE-1999-0307 1 Hp 1 Hp-ux 2026-04-16 N/A
Buffer overflow in HP-UX cstm program allows local users to gain root privileges.
CVE-1999-1130 1 Netscape 1 Enterprise Server 2026-04-16 N/A
Default configuration of the search engine in Netscape Enterprise Server 3.5.1, and possibly other versions, allows remote attackers to read the source of JHTML files by specifying a search command using the HTML-tocrec-demo1.pat pattern file.
CVE-2004-0044 1 Cisco 1 Personal Assistant 2026-04-16 N/A
Cisco Personal Assistant 1.4(1) and 1.4(2) disables password authentication when "Allow Only Cisco CallManager Users" is enabled and the Corporate Directory settings refer to the directory service being used by Cisco CallManager, which allows remote attackers to gain access with a valid username.
CVE-1999-1131 1 Sgi 1 Irix 2026-04-16 N/A
Buffer overflow in OSF Distributed Computing Environment (DCE) security demon (secd) in IRIX 6.4 and earlier allows attackers to cause a denial of service via a long principal, group, or organization.
CVE-2001-0722 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
Internet Explorer 5.5 and 6.0 allows remote attackers to read and modify user cookies via Javascript in an about: URL, aka the "First Cookie Handling Vulnerability."
CVE-1999-1134 1 Hp 1 Hp-ux 2026-04-16 N/A
Vulnerability in Vue 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4038, PHSS_4055, and PHSS_4066.
CVE-1999-1137 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.
CVE-2005-0700 1 Aztek Forum 1 Aztek Forum 2026-04-16 N/A
The export_index action in myadmin.php for Aztek Forum 4.0 allows remote attackers to obtain database files, possibly by setting the ATK_ADMIN cookie.
CVE-1999-1139 1 Hp 1 Hp-ux 2026-04-16 N/A
Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the IOERROR.mytty file.