Export limit exceeded: 29880 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29880 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2002-2002 | 1 Compaq | 1 Tru64 | 2025-04-03 | N/A |
| Buffer overflow in libc in Compaq Tru64 4.0F, 5.0, 5.1 and 5.1A allows attackers to execute arbitrary code via long (1) LANG and (2) LOCPATH environment variables. | ||||
| CVE-2002-2007 | 1 Apache | 1 Tomcat | 2025-04-03 | N/A |
| The default installations of Apache Tomcat 3.2.3 and 3.2.4 allows remote attackers to obtain sensitive system information such as directory listings and web root path, via erroneous HTTP requests for Java Server Pages (JSP) in the (1) test/jsp, (2) samples/jsp and (3) examples/jsp directories, or the (4) test/realPath.jsp servlet, which leaks pathnames in error messages. | ||||
| CVE-2002-2010 | 1 Htdig | 1 Htdig | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in htsearch.cgi in htdig (ht://Dig) 3.1.5, 3.1.6, and 3.2 allows remote attackers to inject arbitrary web script or HTML via the words parameter. | ||||
| CVE-2002-2011 | 1 Jon Howell | 1 Faq-o-matic | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in the fom CGI program (fom.cgi) in Faq-O-Matic 2.711 and 2.712 allows remote attackers to inject arbitrary web script or HTML via the file parameter. | ||||
| CVE-2002-2016 | 1 User-mode Linux | 1 User-mode Linux | 2025-04-03 | N/A |
| User-mode Linux (UML) 2.4.17-8 does not restrict access to kernel address space, which allows local users to execute arbitrary code. | ||||
| CVE-2000-0420 | 1 Microsoft | 1 Windows 2000 | 2025-04-03 | N/A |
| The default configuration of SYSKEY in Windows 2000 stores the startup key in the registry, which could allow an attacker tor ecover it and use it to decrypt Encrypted File System (EFS) data. | ||||
| CVE-2000-0421 | 1 Mozilla | 1 Bugzilla | 2025-04-03 | N/A |
| The process_bug.cgi script in Bugzilla allows remote attackers to execute arbitrary commands via shell metacharacters. | ||||
| CVE-2000-0422 | 1 Netwin | 1 Dmail | 2025-04-03 | N/A |
| Buffer overflow in Netwin DMailWeb CGI program allows remote attackers to execute arbitrary commands via a long utoken parameter. | ||||
| CVE-2000-0423 | 1 Netwin | 1 Dnews | 2025-04-03 | N/A |
| Buffer overflow in Netwin DNEWSWEB CGI program allows remote attackers to execute arbitrary commands via long parameters such as group, cmd, and utag. | ||||
| CVE-2000-0424 | 1 George Burgyan | 1 Cgi Counter | 2025-04-03 | N/A |
| The CGI counter 4.0.7 by George Burgyan allows remote attackers to execute arbitrary commands via shell metacharacters. | ||||
| CVE-2000-0425 | 1 Lsoft | 1 Listserv | 2025-04-03 | N/A |
| Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands. | ||||
| CVE-2000-0426 | 1 Ultrascripts | 1 Ultraboard | 2025-04-03 | N/A |
| UltraBoard 1.6 and other versions allow remote attackers to cause a denial of service by referencing UltraBoard in the Session parameter, which causes UltraBoard to fork copies of itself. | ||||
| CVE-2000-0429 | 1 Mcmurtrey Whitaker And Associates | 1 Cart32 | 2025-04-03 | N/A |
| A backdoor password in Cart32 3.0 and earlier allows remote attackers to execute arbitrary commands. | ||||
| CVE-2000-0431 | 1 Sun | 2 Cobalt Raq 2, Cobalt Raq 3i | 2025-04-03 | N/A |
| Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgiwrap and modify files. | ||||
| CVE-2000-0432 | 1 Matt Kruse | 1 Calendar Script | 2025-04-03 | N/A |
| The calender.pl and the calendar_admin.pl calendar scripts by Matt Kruse allow remote attackers to execute arbitrary commands via shell metacharacters. | ||||
| CVE-2000-0433 | 1 Suse | 1 Suse Linux | 2025-04-03 | N/A |
| The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accounts by creating standard user startup scripts such as profiles. | ||||
| CVE-2000-0434 | 1 Matthew Redman | 1 Allmanage | 2025-04-03 | N/A |
| The administrative password for the Allmanage web site administration software is stored in plaintext in a file which could be accessed by remote attackers. | ||||
| CVE-2000-0435 | 1 Matthew Redman | 1 Allmanage | 2025-04-03 | N/A |
| The allmanageup.pl file upload CGI script in the Allmanage Website administration software 2.6 can be called directly by remote attackers, which allows them to modify user accounts or web pages. | ||||
| CVE-2000-0430 | 1 Mcmurtrey Whitaker And Associates | 1 Cart32 | 2025-04-03 | N/A |
| Cart32 allows remote attackers to access sensitive debugging information by appending /expdate to the URL request. | ||||
| CVE-2000-0438 | 4 Caldera, Slackware, Suse and 1 more | 4 Openlinux, Slackware Linux, Suse Linux and 1 more | 2025-04-03 | N/A |
| Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter. | ||||