ReportizFlow
Filtered by vendor
Subscriptions
Total
29889 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0754 | 1 Isc | 1 Inn | 2025-04-03 | N/A |
| The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable. | ||||
| CVE-2006-1319 | 1 Runit | 1 Runit | 2025-04-03 | N/A |
| chpst in runit 1.3.3-1 for Debian GNU/Linux, when compiled on little endian i386 machines against dietlibc, does not properly handle when multiple groups are specified in the -u option, which causes chpst to assign permissions for the root group due to inconsistent bit sizes for the gid_t type. | ||||
| CVE-2002-0647 | 1 Microsoft | 1 Internet Explorer | 2025-04-03 | N/A |
| Buffer overflow in a legacy ActiveX control used to display specially formatted text in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to execute arbitrary code, aka "Buffer Overrun in Legacy Text Formatting ActiveX Control". | ||||
| CVE-2002-0665 | 1 Macromedia | 1 Jrun | 2025-04-03 | N/A |
| Macromedia JRun Administration Server allows remote attackers to bypass authentication on the login form via an extra slash (/) in the URL. | ||||
| CVE-2006-4030 | 1 Gallery Project | 1 Gallery | 2025-04-03 | N/A |
| Unspecified vulnerability in the stats module in Gallery 1.5.1-RC2 and earlier allows remote attackers to obtain sensitive information via unspecified attack vectors, related to "two file exposure bugs." | ||||
| CVE-2002-0702 | 1 Isc | 1 Dhcpd | 2025-04-03 | N/A |
| Format string vulnerabilities in the logging routines for dynamic DNS code (print.c) of ISC DHCP daemon (DHCPD) 3 to 3.0.1rc8, with the NSUPDATE option enabled, allow remote malicious DNS servers to execute arbitrary code via format strings in a DNS server response. | ||||
| CVE-1999-0459 | 2025-04-03 | N/A | ||
| Local users can perform a denial of service in Alpha Linux, using MILO to force a reboot. | ||||
| CVE-1999-0461 | 2 Linux, Sgi | 2 Linux Kernel, Irix | 2025-04-03 | N/A |
| Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address. | ||||
| CVE-1999-0477 | 1 Allaire | 1 Coldfusion Server | 2025-04-03 | N/A |
| The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not restrict access to the server properly. | ||||
| CVE-1999-0510 | 2025-04-03 | N/A | ||
| A router or firewall allows source routed packets from arbitrary hosts. | ||||
| CVE-1999-0501 | 2025-04-03 | N/A | ||
| A Unix account has a guessable password. | ||||
| CVE-2006-1341 | 1 Maian Events | 1 Maian Events | 2025-04-03 | N/A |
| SQL injection vulnerability in events.php in Maian Events 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) month and (2) year parameters. | ||||
| CVE-1999-0514 | 2025-04-03 | N/A | ||
| UDP messages to broadcast addresses are allowed, allowing for a Fraggle attack that can cause a denial of service by flooding the target. | ||||
| CVE-1999-0528 | 2025-04-03 | N/A | ||
| A router or firewall forwards external packets that claim to come from inside the network that the router/firewall is in front of. | ||||
| CVE-1999-0579 | 1 Microsoft | 1 Windows Nt | 2025-04-03 | N/A |
| A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys. | ||||
| CVE-2006-4497 | 1 Iwebnegar | 1 Iwebnegar | 2025-04-03 | N/A |
| SQL injection vulnerability in comments.php in IwebNegar 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. | ||||
| CVE-1999-0593 | 1 Microsoft | 1 Windows Nt | 2025-04-03 | N/A |
| The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in. | ||||
| CVE-1999-0625 | 2025-04-03 | N/A | ||
| The rpc.rquotad service is running. | ||||
| CVE-1999-0632 | 2025-04-03 | N/A | ||
| The RPC portmapper service is running. | ||||
| CVE-2006-1395 | 1 Cholod | 1 Mysql Based Message Board | 2025-04-03 | N/A |
| SQL injection vulnerability in mb.cgi in Cholod MySQL Based Message Board allows remote attackers to execute arbitrary SQL commands via unspecified vectors in a showmessage action, possibly the username parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information. | ||||