91 matches found
CVE-2003-1027
CVE-2003-1027 is a remote-code-execution vulnerability related to Internet Explorer’s handling of drag-and-drop. The Drag-and-Drop Vulnerability (CAN-2005-0053) updates address this and is explicitly stated as a variation of CVE-2003-1027. Affected software includes IE 5.01 through 6 SP1 (and rel...
CVE-2002-1027
CVE-2002-1027 describes a cross-site scripting flaw in Macromedia Sitespring 1.2.0 (277.1). The vulnerability resides in the default HTTP 500 error script (500error.jsp); an attacker can craft a link to 500error.jsp containing script in the 1the et parameter to execute arbitrary web script in a v...
CVE-2002-1027
Cross-site scripting vulnerability in the default HTTP 500 error script 500error.jsp for Macromedia Sitespring 1.2.0 277.1 allows remote attackers to execute arbitrary web script via a link to 500error.jsp with the script in 1the et parameter...
CVE-2001-1027
Buffer overflow in WindowMaker aka wmaker 0.64 and earlier allows remote attackers to execute arbitrary code via a long window title...
CVE-2001-1027
The CVE-2001-1027 entry describes a buffer overflow in the WindowMaker (wmaker) window title handling code, affecting at least 0.64 and earlier. Exploitation could occur remotely by sending a long window title, enabling arbitrary code execution. OpenVAS/Debian Mandrake advisories confirm remote i...
CVE-1999-1027
Solaris 2.6 HW3/98 installs admintool with world-writable permissions, which allows local users to gain privileges by replacing it with a Trojan horse program...
CVE-1999-1027
Solaris 2.6 HW3/98 installs admintool with world-writable permissions, enabling local users to escalate privileges by replacing the admintool binary with a Trojan horse program. Root cause: insecure file permissions on an installed admin tool. Impact: local privilege escalation; exact scope not q...
CVE-2001-1027
Buffer overflow in WindowMaker aka wmaker 0.64 and earlier allows remote attackers to execute arbitrary code via a long window title...
CVE-2000-1027
Cisco Secure PIX Firewall 5.22 allows remote attackers to determine the real IP address of a target FTP server by flooding the server with PASV requests, which includes the real IP address in the response when passive mode is established...
CVE-2017-1027
This CVE entry is rejected/not used and does not represent an active vulnerability entry.
Office 2019 1027
Office 2019 1027...