Search Results (29948 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0184 1 Isc 1 Bind 2026-04-16 N/A
When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records.
CVE-2003-0296 1 Ximian 1 Evolution 2026-04-16 N/A
The IMAP Client for Evolution 1.2.4 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal size values that cause either integer signedness errors or integer overflow errors.
CVE-2004-1414 1 Gadu-gadu 1 Gadu-gadu Instant Messenger 2026-04-16 N/A
Gadu-Gadu 6.1 build 156 allows remote attackers to cause a denial of service (application hang) via a message that contains many special strings that are converted to images.
CVE-2003-0159 2 Ethereal Group, Redhat 3 Ethereal, Enterprise Linux, Linux 2026-04-16 N/A
Heap-based buffer overflow in the NTLMSSP code for Ethereal 0.9.9 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code.
CVE-1999-0194 2026-04-16 N/A
Denial of service in in.comsat allows attackers to generate messages.
CVE-2004-1415 1 Ben3w 1 2bgal 2026-04-16 N/A
SQL injection vulnerability in (1) disp_album.php and possibly (2) disp_img.php in 2Bgal 2.4 and 2.5.1 allows remote attackers to execute arbitrary SQL commands via the id_album parameter.
CVE-2004-2467 1 Efs Software 1 Easy Chat Server 2026-04-16 N/A
chat.ghp in Easy Chat Server 1.2 allows remote attackers to add a large number of fake users, then eventually cause a denial of service (server crash).
CVE-1999-0201 1 Ftp 1 Ftp 2026-04-16 N/A
A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user.
CVE-2004-2662 1 Soft3304 1 04webserver 2026-04-16 N/A
Soft3304 04WebServer before 1.41 allows remote attackers to cause a denial of service (resource consumption or crash) via certain data related to OpenSSL, which causes a thread to terminate but continue to hold resources.
CVE-2005-3087 1 Securew2 1 Securew2 2026-04-16 N/A
The SecureW2 3.0 TLS implementation uses weak random number generators (rand and srand from system time) during generation of the pre-master secret (PMS), which makes it easier for attackers to guess the secret and decrypt sensitive data.
CVE-1999-0205 1 Eric Allman 1 Sendmail 2026-04-16 N/A
Denial of service in Sendmail 8.6.11 and 8.6.12.
CVE-1999-0208 3 Ibm, Nec, Sgi 5 Aix, Asl Ux 4800, Ews-ux V and 2 more 2026-04-16 N/A
rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.
CVE-1999-0212 1 Sun 1 Sunos 2026-04-16 N/A
Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server.
CVE-2004-2469 1 Brickhost 1 Phpscheduleit 2026-04-16 N/A
Unspecified vulnerability in Reservation.class.php for phpScheduleIt 1.01 and earlier allows attackers to modify or delete reservations.
CVE-2003-0676 1 Sun 2 Iplanet Directory Server, One Directory Server 2026-04-16 N/A
Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via "..%2f" (partially encoded dot dot) sequences.
CVE-2005-1481 1 Aaronoutpost 1 Asp Inline Corporate Calendar 2026-04-16 N/A
Multiple SQL injection vulnerabilities in Aaron Outpost ASP Inline Corporate Calendar allow remote attackers to execute arbitrary SQL commands via the Event_ID parameter to (1) defer.asp or (2) details.asp.
CVE-2005-1483 1 Interspire 1 Articlelive 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in ArticleLive 2005 allow remote attackers to inject arbitrary web script or HTML via the (1) Query, (2) Username, (3) LastName, (4) Biography, or (5) BlogId parameter.
CVE-2005-1484 1 Kmint21 Software 1 Golden Ftp Server 2026-04-16 N/A
Directory traversal vulnerability in Golden FTP server pro 2.52 allows remote attackers to read arbitrary files via a "\.." (backward slash dot dot) with a leading '"' (double quote) in the GET command.
CVE-2005-1488 2 Icewarp, Merak 2 Web Mail, Mail Server 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in Merak Mail Server 8.0.3 with Icewarp Web Mail 5.4.2 allow remote authenticated users to inject arbitrary web script or HTML via (1) the E-mail address, Note, or Public Certificate fields to address.html, (2) addressaction.html, (3) the Signature field to settings.html, or (4) the Shared calendars to calendarsettings.html.
CVE-2005-1489 2 Icewarp, Merak 2 Web Mail, Mail Server 2026-04-16 N/A
Unknown vulnerability in Merak Mail Server 8.0.3 with Icewarp Web Mail 5.4.2 allows remote authenticated users to obtain the full path of the server via certain requests to (1) calendar_addevent.html, (2) calendar_event.html, or (3) calendar_task.html.