5658 matches found
CVE-2001-0298
CVE-2001-0298 affects WebReflex 1.55 HTTPd. The vulnerability is a buffer overflow triggered by a long HTTP GET request, enabling remote denial of service and potentially arbitrary command execution. The available descriptions from NVD/CVE records confirm the issue but do not specify affected pla...
CVE-2001-0305
The CVE-2001-0305 issue affects the store.cgi CGI in Thinking Arts ES.One. It enables a directory traversal via .. in the StartID parameter, allowing remote attackers to read arbitraries files with the web server’s privileges. Multiple sources (NVD/NVD-derived entries, CVE lists, and Nessus plugi...
CVE-2001-0258
The CVE-2001-0258 issue affects the Easycom/Safecom Print Server PrintGuide server (firmware 404.590). The vulnerability is a remote denial of service caused by a large number of connections that send null characters, affecting availability (CVSS base metric shows Availability impact PARTIAL). Th...
CVE-2001-0171
CVE-2001-0171 affects SlimServe HTTPd 1.0 via a buffer overflow in handling a long GET request. This leads to a remote denial of service and may allow arbitrary command execution . The provided documents identify the root cause as the overflow in SlimServe HTTPd 1.0 and state the impact as DoS an...
CVE-2001-0228
Directory traversal vulnerability in GoAhead web server 2.1 and earlier allows remote attackers to read arbitrary files via a .. attack in an HTTP GET request...
CVE-2001-0200
HSWeb 2.0 HTTP server is affected by a path-disclosure vulnerability: remote attackers can obtain the server’s physical path by requesting the /cgi/ directory if directory browsing is enabled. This results in partial confidentiality impact. The available sources do not provide exploit details, af...
CVE-1999-0805
CVE-1999-0805 corresponds to Novell NetWare’s Transaction Tracking System (TTS) affecting NetWare 4.11 and earlier. The vulnerability allows remote attackers to cause a denial of service by issuing a large number of requests. Multiple trusted sources (NVD, Red Hat advisory) reiterate the same imp...
CVE-2001-0023
everythingform.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter...
CVE-2001-0076
CVE-2001-0076 affects Ikonboard (register.cgi)
CVE-2001-0070
The CVE-2001-0070 entry concerns a buffer overflow in 1st Up Mail Server 4.1. The vulnerability is triggered by a long MAIL FROM command, enabling remote attackers to cause a denial of service and potentially execute arbitrary commands. Affected software is 1st Up Mail Server 4.1; the root cause ...
CVE-2001-0023
CVE-2001-0023 affects the everythingform.cgi CGI program by Leif Wright. It allows a remote attacker to execute arbitrary commands via shell metacharacters in the config parameter. The available documents do not specify affected versions, root cause details beyond this description, or any provide...
CVE-2001-0022
CVE-2001-0022 affects the simplestguest.cgi CGI program by Leif Wright, allowing remote attackers to execute arbitrary commands via shell metacharacters in the guestbook parameter. The NVD entry assigns a CVSS v2 base score of 10.0 (HIGH) with network access, low attack complexity, no authenticat...
CVE-2001-0032
CVE-2001-0032: A format-string vulnerability in ssldump could allow remote attackers to cause a denial of service and possibly gain root privileges via malicious format specifiers in a URL. The NVD records a base score of 10.0 (HIGH). Connected sources confirm the issue and describe the vulnerabi...
CVE-2000-0978
The CVE-2000-0978 entry concerns the Big Brother System and Network Monitor (bbd server). It identifies a vulnerability in versions before 1.5c2 where remote attackers could execute arbitrary commands via the shell metacharacter “&”. The impact is remote command execution with the potential for p...
CVE-2000-1026
CVE-2000-1026 involves multiple buffer overflows in LBNL tcpdump that allow remote attackers to execute arbitrary commands. Affected software is tcpdump (LBNL). The vulnerability is triggered by crafting inputs over the network and, per CVSS, has high impact with full confidentiality, integrity, ...
CVE-2000-0941
The CVE-2000-0941 entry concerns the KW Whois CGI script (KW Web) version 1.0, which fails to filter shell metacharacters in the 'whois' parameter. This allows an unauthenticated, remote attacker to execute arbitrary commands with the privileges of the http daemon. The vulnerability is demonstrat...
CVE-2000-1003
CVE-2000-1003 (Windows 95/98 NETBIOS client) : The NETBIOS client in Windows 95 and Windows 98 is affected. A remote attacker over a network can cause a denial of service by altering a file sharing service to return an unknown driver type, which crashes the client. Root cause described as the fil...
CVE-2000-0255
The CVE-2000-0255 entry affects the Nbase-Xyplex EdgeBlaster router. The vulnerability arises when an attacker performs a scan for the FormMail CGI program, which can cause a denial of service. Documented impact is network-based, with availability impact described as PARTIAL. The provided sources...
CVE-2000-1049
CVE-2000-1049 affects Allaire JRun 3.0 HTTP servlet server. The vulnerability allows remote denial of service when a URL containing a long sequence of "." characters is processed. The available sources describe the impact as a DoS, but do not provide concrete exploitation details, affected versio...
CVE-2000-0923
CVE-2000-0923 concerns the authenticate.cgi CGI in Aplio PRO, where remote attackers can execute arbitrary commands by injecting shell metacharacters into the password parameter. The entry lists a CVSS v2 base score of 7.5 (HIGH) with network access, low attack complexity, and no authentication. ...