CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8318 matches found

Positive Technologies•added 2000/12/19 12:0 a.m.•9 views

PT-2000-1902 · Openssh +1 · Sshd +1

Name of the Vulnerable Software and Affected Versions: sshd versions 1.2.xx Description: A directory traversal issue in the scp component of sshd allows a remote malicious scp server to overwrite arbitrary files using a .. dot dot attack. Recommendations: For sshd versions 1.2.xx, consider...

10CVSS8AI score0.90356EPSS

Exploits207References337

Exploit DB•added 2000/12/12 12:0 a.m.•34 views

AOL Instant Messenger 3.5.1856/4.0/4.1.2010/4.2.1193 - 'aim://' Remote Buffer Overflow

source: https://www.securityfocus.com/bid/2118/info AOL Instant Messenger AIM is a real time messaging service for users that are on line. When AOL Instant Messenger is installed, by default it configures the system so that the aim: URL protocol connects aim:// urls to the AIM client. There exist...

7.4AI score

Exploits0

Exploit DB•added 2000/12/01 12:0 a.m.•39 views

Microsoft SQL Server 7.0/2000 / Data Engine 1.0/2000 - xp_displayparamstmt Buffer Overflow

// source: https://www.securityfocus.com/bid/2030/info The API Srvparaminfo, which is implemented by Extended Stored Procedures XPs in Microsoft SQL Server and Data Engine, is susceptible to a buffer overflow vulnerability which may cause the application to fail or arbitrary code to be executed o...

7.4AI score

Exploits0

exploitpack•added 2000/12/01 12:0 a.m.•20 views

Microsoft SQL Server 7.02000 Data Engine 1.02000 - xp_showcolv Buffer Overflow

Microsoft SQL Server 7.02000 Data Engine 1.02000 - xpshowcolv Buffer Overflow // source: https://www.securityfocus.com/bid/2038/info The API Srvparaminfo, which is implemented by Extended Stored Procedures XPs in Microsoft SQL Server and Data Engine, is susceptible to a buffer overflow...

0.1AI score

Exploits0

exploitpack•added 2000/12/01 12:0 a.m.•15 views

Microsoft SQL Server 7.02000 Data Engine 1.02000 - xp_peekqueue Buffer Overflow

Microsoft SQL Server 7.02000 Data Engine 1.02000 - xppeekqueue Buffer Overflow // source: https://www.securityfocus.com/bid/2040/info The API Srvparaminfo, which is implemented by Extended Stored Procedures XPs in Microsoft SQL Server and Data Engine, is susceptible to a buffer overflow...

0.2AI score

Exploits0

securityvulns•added 2000/11/16 12:0 a.m.•72 views

Joe's Own Editor File Link Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TITLE: Joe's Own Editor File Link Vulnerability ADVISORY ID: WSIR-00/11-01 CONTACT: Patrik Birgersson, Wkit Security AB CLASS: File Handling Error OBJECT: joe1 exec VENDOR: Josef H. Allen STATUS: Vendor not reachable REMOTE: No LOCAL: Yes DATE:...

6.8AI score

Exploits0

securityvulns•added 2000/08/15 12:0 a.m.•33 views

MacroMedia Flash/Shockwave plug-in on linux : memcpy overrun problem.

X-PMC-CI-e-mail-id: 13428 A replacement library for checking well-known type of stack overrun caused by memory copy / string copy operations has been made available, namely libsafe. I have used it on Linux and I spotted a couple of suspicous popular programs on linux. I have been using libsafe on...

7.4AI score

Exploits0

Cvelist•added 2000/07/12 4:0 a.m.•18 views

CVE-2000-0545

Buffer overflow in mailx mail command aka Mail on Linux systems allows local users to gain privileges via a long -c carbon copy parameter...

6.9AI score0.00202EPSS

Exploits0References3

securityvulns•added 2000/04/22 12:0 a.m.•63 views

another WU imapd buffer overflow

Hi, While doing code security audit, I discovered another buffer overflow in imapd. This time security flaw exist in standard rfc 1064 COPY command: OK mail IMAP4rev1 v12.264 server ready login siva9 secret OK LOGIN completed select inbox 2 EXISTS 0 RECENT OK UIDVALIDITY 956162550 UID validity...

0.5AI score

Exploits0

Packet Storm•added 1999/08/17 12:0 a.m.•52 views

nt4+sp4.profile.quota.dos.txt

Date: Fri, 21 May 1999 01:15:11 +0200 From: Tonino Lucca To: [email protected] Subject: Ordinary user can easily surpass profiles quota in NT+SP4 Hi all, File system full in %systemdrive% in Terminal Server can easily be reached by an ordinary user by growing his own profile so...

7.4AI score

Exploits0

Packet Storm•added 1999/08/17 12:0 a.m.•21 views

nt4+sp4.y2k.txt

Date: Tue, 23 Mar 1999 18:31:34 -0500 From: Ilya Slavin To: [email protected] Subject: NT Y2K issue post SP4 Those of you who are in the process of deploying SP4 or are planning to do so should be aware that a new Y2K problem was discovered in this service pack. Here's the scoop. I...

7.4AI score

Exploits0

Packet Storm•added 1999/08/17 12:0 a.m.•37 views

linux.2.x.mmap.DoS.txt

Date: Sun, 7 Mar 1999 01:41:25 +0100 From: Michal Zalewski Linux 2.x mmap vunerability Linux 2.0.36 has the similiar problem with copy-on-write pages allocated with mmap - as these pages are not accounted within per-user limits. Fortunately, it's less harmfull than 5, because memory will be freed...

7.4AI score

Exploits0

Positive Technologies•added 1999/01/01 12:0 a.m.•2 views

PT-1999-1243 · Uucp · Uucp

Name of the Vulnerable Software and Affected Versions: UUCP affected versions not specified Description: The issue is related to the UUCP service being active. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

6.2AI score0.0061EPSS

Exploits0References2

Positive Technologies•added 1989/10/26 12:0 a.m.•3 views

PT-1989-1001 · Sun · Sunos +1

Name of the Vulnerable Software and Affected Versions: rcp on SunOS version 4.0.x Description: The issue allows remote attackers from trusted hosts to execute arbitrary commands as root. This is possibly related to the configuration of the nobody user. Recommendations: For SunOS version 4.0.x,...

10CVSS8.5AI score0.05819EPSS

Exploits0References5