Lucene search
K

124 matches found

OSV
OSV
added 2004/12/23 5:0 a.m.2 views

DEBIAN-CVE-2001-1413

Stack-based buffer overflow in the comprexx function for ncompress 4.2.4 and earlier, when used in situations that cross security boundaries such as FTP server, may allow remote attackers to execute arbitrary code via a long filename argument...

7.5CVSS8.3AI score0.04775EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2002/11/08 11:15 a.m.2 views

security flaw

The mail function in PHP 4.x to 4.2.2 does not filter ASCII control characters from its arguments, which could allow remote attackers to modify mail message content, including mail headers, and possibly use PHP as a "spam proxy."...

5CVSS5.9AI score0.0315EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2002/11/07 5:42 p.m.6 views

security flaw

Argument injection vulnerability in the mail function for PHP 4.x to 4.2.2 may allow attackers to bypass safe mode restrictions and modify command line arguments to the MTA e.g. sendmail in the 5th argument to mail, altering MTA behavior and possibly executing commands...

7.5CVSS5.8AI score0.02951EPSS
Exploits0References4
Exploit DB
Exploit DB
added 2000/04/15 12:0 a.m.35 views

QSSL QNX 4.25 A - 'crypt()' Local Privilege Escalation

/ source: https://www.securityfocus.com/bid/1114/info A design error in the operation of the crypt3 function exists in QNX, from QNX System Software, Limited QSSL. The flaw allows the recovery of passwords from the hashes. On most Unix variants, crypt3 is based on a variant of the DES encryption...

7.4AI score
Exploits0
Rows per page
Query Builder