The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as de...
Buffer overflow in the Eyedog ActiveX control allows a remote attacker to execute arbitrary commands.
Buffer overflow in INN inews program.
The "download behavior" in Internet Explorer 5 allows remote attackers to read arbitrary files via a server-side redirect.
Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the...
Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.
Compaq Integration Maintenance Utility as used in Compaq Insight Manager agent before SmartStart 4.50 modifies the legal notice caption (LegalNoticeCa...
A buffer overflow in TenFour TFS Gateway SMTP mail server 3.2 allows an attacker to crash the mail server and possibly execute arbitrary code by offer...
FreeBSD 3.2 and possibly other versions allows a local user to cause a denial of service (panic) with a large number accesses of an NFS v3 mounted dir...
UnityMail allows remote attackers to conduct a denial of service via a large number of MIME headers.
Apache allows remote attackers to conduct a denial of service via a large number of MIME headers.
gFTP FTP client 1.13, and other versions before 2.0.0, records a password in plaintext in (1) the log window, or (2) in a log file.
FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, ...
Nosque MsgCore 2.14 stores passwords in cleartext: (1) the administrator password in the AdmPasswd registry key, and (2) user passwords in the Userbas...
Buffer overflow in Solaris libc, ufsrestore, and rcp via LC_MESSAGES environmental variable.
SCO Doctor allows local users to gain root privileges through a Tools option.
Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavori...
Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, which could then be cached by a proxy and inadverte...
The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (imgscan.ocx), (4) Thumbnail Image (imgthumb.ocx), (5)...
Computalynx CMail 2.4 and CMail 2.3 SP2 SMTP servers are vulnerable to a buffer overflow attack in the MAIL FROM command that may allow a remote attac...
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.
The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.
Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execute commands on the user's Hotmail account.
Buffer overflow in Accept command in Netscape Enterprise Server 3.6 with the SSL Handshake Patch.
Buffer overflow in FuseMAIL POP service via long USER and PASS commands.
Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument.
guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitr...
Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols...
Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.
iHTML Merchant allows remote attackers to obtain sensitive information or execute commands via a code parsing error.
sccw allows local users to read arbitrary files.
WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers.
WWWBoard has a default username and default password.
The SSH authentication agent follows symlinks via a UNIX domain socket.
The security descriptor for RASMAN allows users to point to an alternate location via the Windows NT Service Control Manager.
Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the "Spoofed R...
Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.
The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.
FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files.
IIS FTP servers may allow a remote attacker to read or delete files on the server, even if they have "No Access" permissions.
Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable.
Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_ent...
named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f parameter and a malforme...
Buffer overflow in GNOME libraries 1.0.8 allows local user to gain root access via a long --espeaker argument in programs such as nethack.
Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local users to obtain root access via a long HOME environme...
Directory traversal vulnerability in KVIrc IRC client 0.9.0 with the "Listen to !nick <soundname> requests" option enabled allows remote attackers to ...
Buffer overflow in MSN Setup BBS 4.71.0.10 ActiveX control (setupbbs.ocx) allows a remote attacker to execute arbitrary commands via the methods (1) v...
Buffer overflow in Registration Wizard ActiveX control (regwizc.dll, InvokeRegWizard) 3.0.0.0 for Internet Explorer 4.01 and 5 allows remote attackers...
Arkiea nlservd allows remote attackers to conduct a denial of service.
Buffer overflow in mutt mail client allows remote attackers to execute commands via malformed MIME messages.
Buffer overflow in Adobe Acrobat ActiveX control (pdf.ocx, PDF.PdfCtrl.1) 1.3.188 for Acrobat Reader 4.0 allows remote attackers to execute arbitrary ...
Buffer overflow in AIX ftpd in the libc library.
mknod in Linux 2.2 follows symbolic links, which could allow local users to overwrite files or gain privileges.
ARCAD Systemhaus 0.078-5 installs critical programs and files with world-writeable permissions, which could allow local users to gain privileges by re...
Buffer overflow in Mediahouse Statistics Server allows remote attackers to execute commands.
Mediahouse Statistics Server allows remote attackers to read the administrator password, which is stored in cleartext in the ss.cfg file.
Buffer overflow in w3-auth CGI program in miniSQL package allows remote attackers to execute arbitrary commands via an HTTP request with (1) a long UR...
Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long hostname command line argument.