Search Results (364840 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0812 1 Samba 1 Samba 2026-04-16 N/A
Race condition in Samba smbmnt allows local users to mount file systems in arbitrary locations.
CVE-1999-0819 1 Microsoft 2 Windows 2000, Windows Nt 2026-04-16 N/A
NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it.
CVE-1999-0822 1 Qualcomm 1 Qpopper 2026-04-16 N/A
Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command.
CVE-1999-0823 1 Freebsd 1 Freebsd 2026-04-16 N/A
Buffer overflow in FreeBSD xmindpath allows local users to gain privileges via -f argument.
CVE-1999-0826 1 Freebsd 1 Freebsd 2026-04-16 N/A
Buffer overflow in FreeBSD angband allows local users to gain privileges.
CVE-1999-0833 2 Isc, Sun 3 Bind, Solaris, Sunos 2026-04-16 N/A
Buffer overflow in BIND 8.2 via NXT records.
CVE-1999-0846 1 Deerfield 1 Mdaemon 2026-04-16 N/A
Denial of service in MDaemon 2.7 via a large number of connection attempts.
CVE-1999-0850 1 Endymion 1 Mailman Webmail 2026-04-16 N/A
The default permissions for Endymion MailMan allow local users to read email or modify files.
CVE-1999-0856 1 Slackware 1 Slackware Linux 2026-04-16 N/A
login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist.
CVE-1999-0860 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack.
CVE-1999-0874 1 Microsoft 3 Internet Information Server, Windows 2000, Windows Nt 2026-04-16 N/A
Buffer overflow in IIS 4.0 allows remote attackers to cause a denial of service via a malformed request for files with .HTR, .IDC, or .STM extensions.
CVE-1999-0876 1 Microsoft 2 Ie, Internet Explorer 2026-04-16 N/A
Buffer overflow in Internet Explorer 4.0 via EMBED tag.
CVE-1999-0878 2 Beroftpd, Washington University 2 Beroftpd, Wu-ftpd 2026-04-16 N/A
Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR.
CVE-2003-1056 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
The ed editor for Sun Solaris 2.6, 7, and 8 allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.
CVE-2003-1051 1 Ibm 1 Db2 2026-04-16 N/A
Multiple format string vulnerabilities in IBM DB2 Universal Database 8.1 may allow local users to execute arbitrary code via certain command line arguments to (1) db2start, (2) db2stop, or (3) db2govd.
CVE-2002-1757 1 Phprojekt 1 Phprojekt 2026-04-16 N/A
PHProjekt 2.0 through 3.1 relies on the $PHP_SELF variable for authentication, which allows remote attackers to bypass authentication for scripts via a request to a .php file with "sms" in the URL, which is included in the PATH_INFO portion of the $PHP_SELF variable, as demonstrated using "mail_send.php/sms".
CVE-2006-4956 1 Neosys 1 Neon Webmail 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in the updateuser servlet in Neon WebMail for Java before 5.08 allows remote attackers to inject arbitrary web script or HTML via the in_name parameter, as used by the Name field.
CVE-2006-4133 1 Sap 1 Internet Graphics Server 2026-04-16 N/A
Heap-based buffer overflow in SAP Internet Graphics Service (IGS) 6.40 and earlier, and 7.00 and earlier, allows remote attackers to cause a denial of service (crash) or execute arbitrary code via an HTTP request with an ADM:GETLOGFILE command and a long portwatcher argument, which triggers the overflow during error message construction when the _snprintf function returns a negative value that is used in a memcpy operation.
CVE-2004-2144 1 Baalsystems 1 Baal Smart Forms 2026-04-16 N/A
Baal Smart Forms before 3.2 allows remote attackers to bypass authentication and obtain system access via a direct request to regadmin.php.
CVE-2004-0957 6 Openpkg, Oracle, Redhat and 3 more 8 Openpkg, Mysql, Enterprise Linux and 5 more 2026-04-16 N/A
Unknown vulnerability in MySQL 3.23.58 and earlier, when a local user has privileges for a database whose name includes a "_" (underscore), grants privileges to other databases that have similar names, which can allow the user to conduct unauthorized activities.