CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

3100 matches found

securityvulns•added 2000/08/18 12:0 a.m.•146 views

Htgrep CGI Arbitrary File Viewing Vulnerability

Software: Htgrep URL: http://www.iam.unibe.ch/scg/Src/Doc/ Version: All Versions Platforms: Unix maybe Winnt? Author status: Notified Summary: Any remote user can view arbitrary files on the system with the privileges of the web user Vulnerability: The CGI allows a user to specify a header and...

Exploit DB•added 2000/08/17 12:0 a.m.•29 views

netwin netauth 4.2 - Directory Traversal

source: https://www.securityfocus.com/bid/1587/info A remote user is capable of gaining read access to any known file residing on a host running Netwin Netauth through directory traversal. Appending a series of '../' and the desired file name to the 'page' variable at the end of a request to...

Packet Storm•added 2000/08/15 12:0 a.m.•19 views

lyris.3-4.txt

Versions 3 and 4 of the Lyris List Manager allow any mailing list subscriber to gain access to the administrative interface of that list. After a user has logged in, they may modify the generated web page as follows to gain access: Save the html to disk, and add the full path to the server into t...

securityvulns•added 2000/08/07 12:0 a.m.•37 views

HPUX FTPd vulnerability

Hello, I have discovered HPUX ftpd remote vulnerability. The problem persists in using vsprintf without format string. Example: 220 xxx FTP server Version 1.7.212.2 Tue Apr 21 12:14:46 GMT 1998 ready. user ftp 331 Guest login ok, send ident as password. pass .1030d 230 Guest login ok, access...

securityvulns•added 2000/08/07 12:0 a.m.•47 views

kon2

-------------------------------------------------------------------------------------------------------------------------------------------- Info : Package : kon2-0.3.8 Compromise : root Vulnerable Sistems : All linux sistems that have this package installed. Author : E-Ligth Hugo Oliveira Dias -...

exploitpack•added 2000/07/11 12:0 a.m.•25 views

Texas Imperial Software WFTPD 2.4.1 - RNTO Denial of Service

Texas Imperial Software WFTPD 2.4.1 - RNTO Denial of Service source: https://www.securityfocus.com/bid/1456/info It is possible for a user to cause a denial of service against the WFtpd server. Requesting an RNTO command without using the RNFR command first will cause the server service to stop...

Exploit DB•added 2000/06/28 12:0 a.m.•21 views

CVS Kit CVS Server 1.10.8 - 'Checkin.prog' Binary Execution

source: https://www.securityfocus.com/bid/1524/info A CVS committer can execute arbitrary binaries by using Checkin.prog. Usually CVS/Checkin.prog in a working directory is copied from CVSROOT/modules when the directory is "checkout"ed and it is sent back to the server and executed with committin...

Exploit DB•added 2000/06/01 12:0 a.m.•31 views

Allegro RomPager 2.10 - URL Request Denial of Service

Allegro's RomPager is reported prone to a remote denial of service vulnerability. If a specifically-malformed request is sent to Allegro's RomPager, it will crash, often crashing the parent device as well. In this manner, network hardware and possibly entire networks can be rendered unusable by a...

7.5CVSS6.6AI score0.03469EPSS

NVD•added 2000/05/17 4:0 a.m.•12 views

CVE-1999-1008

xsoldier program allows local users to gain root access via a long argument...

7.2CVSS6.5AI score0.00341EPSS

Exploits0References2

securityvulns•added 2000/05/16 12:0 a.m.•37 views

Vulnerability in CGI counter 4.0.7 by George Burgyan

I've found no mention of this vulnerability in Bugtraq or in the CVE nor have I been able to contact the author, so I'm posting here to give everyone the opportunity to protect themselves. This vulnerability is being actively exploited and has been reported to CERT. The popular CGI web page acces...

Exploit DB•added 2000/05/16 12:0 a.m.•37 views

Cygnus Network Security 4.0/KerbNet 5.0 / MIT Kerberos 4/5 / RedHat 6.2 - Compatibility 'krb_rd_req()' Remote Buffer Overflow (1)

// source: https://www.securityfocus.com/bid/1220/info Several buffer overflow vulnerabilities exist in Kerberos 5 implmenetations due to buffer overflows in the Kerberos 4 compatability code. These include MIT Kerberos 5 releases 1.0.x, 1.1 and 1.1.1, MIT Kerberos 4 patch level 10 and, most...

Exploit DB•added 2000/05/11 12:0 a.m.•37 views

Mozilla Bugzilla 2.4/2.6/2.8/2.10 - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/1199/info Bugzilla is a web-based bug-tracking system based on Perl and MySQL. It allows people to submit bugs and catalogs them. Bugzilla is prone to a vulnerability which may allow remote users to execute arbitrary commands on the target webserver. When...

exploitpack•added 2000/05/07 12:0 a.m.•18 views

Elm Development Group ELM 2.42.5.1 Mail for UNIX - ELM Buffer Overflow (1)

Elm Development Group ELM 2.42.5.1 Mail for UNIX - ELM Buffer Overflow 1 // source: https://www.securityfocus.com/bid/1276/info // // Buffer overflow vulnerabilities exist in elm Electronic Mail for Unix. // / Elm Exploit - Scrippie - Phreak.nl - b0f - http://b0f.freebsd.lublin.pl This exploit...

exploitpack•added 2000/04/28 12:0 a.m.•11 views

Qualcomm Eudora 4.24.3 - Warning Message Circumvention

Qualcomm Eudora 4.24.3 - Warning Message Circumvention source: https://www.securityfocus.com/bid/1157/info A malicious email sender can circumvent warning messages that would normally display when a user attempts to view executable attachments in Eudora 4.2/4.3. Eudora does not prompt a user with...

exploitpack•added 2000/04/23 12:0 a.m.•15 views

CVS 1.10.7 - Local Denial of Service

CVS 1.10.7 - Local Denial of Service source: https://www.securityfocus.com/bid/1136/info CVS stands for Concurrent Versions Software and is an open-source package designed to allow multiple developers to work concurrently on a single source tree, recording changes and controlling versions. It is...

Exploit DB•added 2000/03/13 12:0 a.m.•30 views

Halloween Linux 4.0 / RedHat Linux 6.1/6.2 - 'imwheel' (2)

// source: https://www.securityfocus.com/bid/1060/info A vulnerability exists in the 'imwheel' package for Linux. This package is known to be vulnerable to a buffer overrun in its handling of the HOME environment variable. By supplying a sufficiently long string containing machine executable code...

CVE•added 2000/02/15 5:0 a.m.•96 views

CVE-2000-0138

CVE-2000-0138 is associated with systems infected by DDoS control tools (master/agent/zombie) such as Trinoo, TFN/TFN2K, stacheldraht, mstream, and shaft. The Connected documents show multiple Nessus plugin detections (e.g., Trinity v3, mstream, Shaft, Trin00) reporting a compromised host running...

5CVSS6.3AI score0.00973EPSS

Exploits0References3

Exploit DB•added 1999/12/03 12:0 a.m.•33 views

SCO Unixware 7.0/7.0.1/7.1/7.1.1 - 'xauto' Local Buffer Overflow

// source: https://www.securityfocus.com/bid/848/info Certain versions of SCO's UnixWare ship with a version of /usr/X/bin/xauto which is vulnerable to a buffer overflow attack which may result in an attacker gaining root privileges. This is exploitable to gain root privileges even though...

exploitpack•added 1999/12/03 12:0 a.m.•21 views

SCO Unixware 7.07.0.17.17.1.1 - xauto Local Buffer Overflow

SCO Unixware 7.07.0.17.17.1.1 - xauto Local Buffer Overflow // source: https://www.securityfocus.com/bid/848/info Certain versions of SCO's UnixWare ship with a version of /usr/X/bin/xauto which is vulnerable to a buffer overflow attack which may result in an attacker gaining root privileges. Thi...

NVD•added 1999/12/02 5:0 a.m.•13 views

CVE-1999-0828

UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission...

3.6CVSS6.6AI score0.00353EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by