Lucene search
K

93 matches found

UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.16 views

CVE-2005-0877

Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq...

7.5CVSS6AI score0.01874EPSS
Exploits0References1
CVE
CVE
added 2005/03/26 5:0 a.m.156 views

CVE-2005-0877

Dnsmasq before 2.21 is vulnerable to DNS cache poisoning: remote attackers can inject answers to queries not issued by dnsmasq, potentially compromising DNS integrity. Affected component is the dnsmasq binary; root cause is handling of unsolicited responses that enables cache poisoning. Impact is...

7.5CVSS7.5AI score0.01874EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2003/10/30 5:0 a.m.51 views

CVE-2003-0877

Mac OS X prior to 10.3 with core files enabled is vulnerable to a local symlink attack in /cores that can cause arbitrary file overwrite and core file disclosure. The core files are created with predictable names (core.PID), owned by root and 0400 by default, and the /cores directory is world-wri...

4.6CVSS6.3AI score0.00325EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2003/10/30 5:0 a.m.21 views

CVE-2003-0877

Mac OS X before 10.3 with core files enabled allows local users to overwrite arbitrary files and read core files via a symlink attack on core files that are created with predictable names in the /cores directory...

6.3AI score0.00325EPSS
Exploits0References4
NVD
NVD
added 2002/10/04 4:0 a.m.12 views

CVE-2002-0877

Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. dot dot in the 1 LIST ls or 2 GET commands...

5CVSS6.7AI score0.02039EPSS
Exploits0References3
CVE
CVE
added 2002/08/31 4:0 a.m.41 views

CVE-2002-0877

CVE-2002-0877 describes a directory traversal vulnerability in the FTP server for Shambala 4.5. The flaw allows remote attackers to read arbitrary files by injecting .. (dot dot) into the LIST (ls) or GET commands. Public details in the provided sources confirm the vulnerability class (directory ...

5CVSS7.1AI score0.02039EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2002/08/31 4:0 a.m.13 views

CVE-2002-0877

Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. dot dot in the 1 LIST ls or 2 GET commands...

6.7AI score0.02039EPSS
Exploits0References3
Cvelist
Cvelist
added 2001/09/18 4:0 a.m.15 views

CVE-2000-0877

mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attachfile parameter, which MailForm then sends to the attacker...

6.7AI score0.01562EPSS
Exploits0References3
CVE
CVE
added 2001/09/18 4:0 a.m.62 views

CVE-2000-0877

CVE-2000-0877 concerns the MailForm 2.0 product, specifically the mailform.pl CGI script. The vulnerability allows remote attackers to read arbitrary files by supplying a filename in the XX-attach_file parameter, which MailForm then sends to the attacker. The issue directly concerns the confident...

5CVSS7.1AI score0.01562EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2000/11/14 5:0 a.m.24 views

CVE-2000-0877

mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attachfile parameter, which MailForm then sends to the attacker...

5CVSS6.7AI score0.01562EPSS
Exploits0References3
Cvelist
Cvelist
added 2000/01/04 5:0 a.m.25 views

CVE-1999-0877

Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME...

6.6AI score0.17672EPSS
Exploits0References2
CVE
CVE
added 2000/01/04 5:0 a.m.58 views

CVE-1999-0877

Affected product : Internet Explorer 5. The vulnerability allows a remote attacker to read files by invoking an ExecCommand on an IFRAME. The description provides the root cause as an insecure use of ExecCommand within an IFRAME context, enabling unauthorized file access. The connected documents ...

4.3CVSS7AI score0.17672EPSS
Exploits0References2Affected Software1
NVD
NVD
added 1999/10/01 4:0 a.m.17 views

CVE-1999-0877

Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME...

4.3CVSS6.6AI score0.17672EPSS
Exploits0References2
Rows per page
Query Builder