National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

There are 129,705 matching records.
Displaying matches 127101 through 127120.
Vuln ID Summary CVSS Severity
CVE-2000-1184

telnetd in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service by specifying an arbitrary large file in the TERMCAP environmental variable, which consumes resources as the server processes the file.

Published: January 09, 2001; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1185

The telnet proxy in RideWay PN proxy server allows remote attackers to cause a denial of service via a flood of connections that contain malformed requests.

Published: January 09, 2001; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1186

Buffer overflow in phf CGI program allows remote attackers to execute arbitrary commands by specifying a large number of arguments and including a long MIME header.

Published: January 09, 2001; 12:00:00 AM -05:00
    V2: 7.5 HIGH
CVE-2000-1187

Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field.

Published: January 09, 2001; 12:00:00 AM -05:00
    V2: 7.5 HIGH
CVE-2000-1188

Directory traversal vulnerability in Quikstore shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "page" parameter.

Published: January 09, 2001; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1189

Buffer overflow in pam_localuser PAM module in Red Hat Linux 7.x and 6.x allows attackers to gain privileges.

Published: January 09, 2001; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-2001-1037

Cisco SN 5420 Storage Router 1.1(3) and earlier allows local users to access a developer's shell without a password and execute certain restricted commands without being logged.

Published: January 08, 2001; 12:00:00 AM -05:00
    V2: 4.6 MEDIUM
CVE-2001-0160

Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will let them decrypt messages.

Published: January 01, 2001; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2001-0161

Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks.

Published: January 01, 2001; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2001-0162

WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.

Published: January 01, 2001; 12:00:00 AM -05:00
    V2: 7.5 HIGH
CVE-2001-0163

Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.

Published: January 01, 2001; 12:00:00 AM -05:00
    V2: 4.6 MEDIUM
CVE-2000-1225

Xitami 2.5b installs the testcgi.exe program by default in the cgi-bin directory, which allows remote attackers to gain sensitive configuration information about the web server by accessing the program.

Published: December 31, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1226

Snort 1.6, when running in straight ASCII packet logging mode or IDS mode with straight decoded ASCII packet logging selected, allows remote attackers to cause a denial of service (crash) by sending non-IP protocols that Snort does not know about, as demonstrated by an nmap protocol scan.

Published: December 31, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1227

Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause a denial of service (unavailable connections) by sending multiple SMB SMBnegprots requests but not reading the response that is sent back.

Published: December 31, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1228

Phorum 3.0.7 allows remote attackers to change the administrator password without authentication via an HTTP request for admin.php3 that sets step, option, confirm and newPssword variables.

Published: December 31, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1229

Directory traversal vulnerability in Phorum 3.0.7 allows remote Phorum administrators to read arbitrary files via ".." (dot dot) sequences in the default .langfile name field in the Master Settings administrative function, which causes the file to be displayed in admin.php3.

Published: December 31, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1230

Backdoor in auth.php3 in Phorum 3.0.7 allows remote attackers to access restricted web pages via an HTTP request with the PHP_AUTH_USER parameter set to "boogieman".

Published: December 31, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1231

code.php3 in Phorum 3.0.7 allows remote attackers to read arbitrary files in the phorum directory via the query string.

Published: December 31, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1232

upgrade.php3 in Phorum 3.0.7 could allow remote attackers to modify certain Phorum database tables via an unknown method.

Published: December 31, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1233

SQL injection vulnerability in read.php3 and other scripts in Phorum 3.0.7 allows remote attackers to execute arbitrary SQL queries via the sSQL parameter.

Published: December 31, 2000; 12:00:00 AM -05:00
    V2: 7.5 HIGH