CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

631 matches found

CVE•added 2001/05/24 4:0 a.m.•50 views

CVE-2001-0436

The vulnerability CVE-2001-0436 affects DCForum 2000, specifically the dcboard.cgi CGI: remote attackers can execute arbitrary commands by uploading a Perl program to the server and referencing it via a .. in the AZ parameter. This is documented in the NVD entry for DCForum 2000 1.0 with a base s...

7.5CVSS7.7AI score0.02032EPSS

Exploits1References5Affected Software2

Cvelist•added 2001/02/02 5:0 a.m.•22 views

CVE-2001-0025

ad.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter...

7.7AI score0.04619EPSS

Exploits1References3

Cvelist•added 2001/02/02 5:0 a.m.•21 views

CVE-2001-0098

Buffer overflow in Bea WebLogic Server before 5.1.0 allows remote attackers to execute arbitrary commands via a long URL that begins with a ".." string...

7.7AI score0.21388EPSS

Exploits1References3

CVE•added 2001/01/22 5:0 a.m.•36 views

CVE-2000-0973

CVE-2000-0973 affects curl before 6.0-1.1 and curl-ssl before 6.0-1.2. A buffer overflow occurs when generating a long error message, allowing remote attackers to execute arbitrary commands. Root cause: unchecked length in error handling. Connected sources (OSV, CVE records) confirm the overflow ...

10CVSS8.2AI score0.12231EPSS

Exploits1References4Affected Software1

Cvelist•added 2001/01/22 5:0 a.m.•17 views

CVE-2000-1077

Buffer overflow in the SHTML logging functionality of iPlanet Web Server 4.x allows remote attackers to execute arbitrary commands via a long filename with a .shtml extension...

7.8AI score0.02445EPSS

Exploits0References2

Cvelist•added 2000/10/13 4:0 a.m.•17 views

CVE-2000-0586

Buffer overflow in Dalnet IRC server 4.6.5 allows remote attackers to cause a denial of service or execute arbitrary commands via the SUMMON command...

7.8AI score0.094EPSS

Exploits0References2

CVE•added 2000/07/12 4:0 a.m.•46 views

CVE-2000-0398

The CVE-2000-0398 issue affects Rockliffe MailSite Management Agent, due to a buffer overflow in wconsole.dll that can be triggered by a long query_string parameter in an HTTP GET request. This allows remote attackers to potentially execute arbitrary commands. Public documents identify the vulner...

10CVSS7.8AI score0.01831EPSS

Exploits0References2Affected Software1

Packet Storm•added 2000/03/29 12:0 a.m.•31 views

winmail305.txt

I found some vulnerabilities if windmail run as a CGI application.tested On WindowsNT 4.0, Windmail 3.05 successfully. WindMail is a 32-bit Windows console program by geocel that gives you command-line e-mail messaging capability. You can download an evaluation copy of WindMail 3.0 at:...

7.4AI score

Exploits0

exploitpack•added 1999/09/27 12:0 a.m.•10 views

Adobe Acrobat ActiveX Control 1.3.188 - ActiveX Buffer Overflow

Adobe Acrobat ActiveX Control 1.3.188 - ActiveX Buffer Overflow source: https://www.securityfocus.com/bid/666/info There is a buffer overflow in the 1.3.188 version of the Adobe Acrobat ActiveX control pdf.ocx that ships with Acrobat Viewer 4.0. This ActiveX control is marked 'Safe for Scripting'...

0.8AI score

Exploits0

Packet Storm•added 1999/08/17 12:0 a.m.•71 views

abuseconsole.sh

There is a security hole in RedHat 2.1, which installs the game abuse, /usr/lib/games/abuse/abuse.console suid root. The abuse.console program loads its files without absolute pathnames, assuming the user is running abuse from the /usr/lib/games/abuse directory. One of these files in the undrv...

7.4AI score

Exploits0