Vulnerability Index: Year 2001

PHP-Nuke 4.4 Cookie Authentication Bypass Vulnerability Arbitrary Program Execution via Cached Content in Internet Explorer 5.5 and Earlier Web Client NTLM Authentication Vulnerability File Fragment Reading via .HTR Vulnerability in IIS 5.0 and 4.0 Critical Buffer Overflow Vulnerability in Microsoft PowerPoint 2000 Allows Remote Code Execution Winsock Mutex Vulnerability NetScreen Firewall WebUI Buffer Overflow Vulnerability Remote Code Execution via Backdoor Account in Interbase Database Server Lotus Domino 5.0.5 Web Server Directory Traversal Vulnerability Remote Code Execution via Buffer Overflow in BIND 8 Transaction Signature Handling Remote Code Execution via Buffer Overflow in BIND 4's nslookupComplain Function Remote Information Disclosure Vulnerability in BIND 4 and BIND 8 BIND 4 nslookupComplain Function Format String Vulnerability Invalid RDP Data Vulnerability Privilege Escalation via Network Dynamic Data Exchange (DDE) in Windows 2000 NTLMSSP Service Function Number Check Bypass Vulnerability Malformed PPTP Packet Stream vulnerability in Windows NT 4.0 PPTP Server Denial of Service Vulnerability in Windows 2000 Domain Controller Denial of Service Vulnerability in Arrowpoint (Cisco Content Services) Arrowpoint Directory Traversal Vulnerability Arbitrary Command Execution in MailMan Webmail 3.0.25 and Earlier Arbitrary Command Execution in simplestguest.cgi CGI Program Arbitrary Command Execution in everythingform.cgi CGI Program Arbitrary Command Execution in simplestmail.cgi CGI Program Remote Code Execution in ad.cgi CGI Program by Leif Wright Denial of Service Vulnerability in rp-pppoe PPPoE Client Privilege Escalation via mod_sqlpw in ProFTPD Remote Code Execution Vulnerability in oops WWW Proxy Server 1.5.2 and Earlier Arbitrary Command Execution Vulnerability in oops WWW Proxy Server 1.4.6 Local Users Can Bypass Program Execution Restrictions in FoolProof 3.9 Path Disclosure Vulnerability in BroadVision One-To-One Enterprise Format String Vulnerability in ssldump: Remote DoS and Potential Root Privilege Escalation KTH Kerberos IV Privilege Escalation via KRBCONFDIR Environmental Variable KTH Kerberos IV Privilege Escalation via krb4_proxy Variable Buffer Overflow in KTH Kerberos IV's kdc_reply_cipher Function Allows Remote Code Execution KTH Kerberos IV Local File Overwrite Vulnerability HomeSeer Directory Traversal Vulnerability Arbitrary File Read Vulnerability in Offline Explorer 1.4 Denial of Service Vulnerability in IPSwitch IMail 6.0.5 via SMTP AUTH Command Insecure Process ID Storage in APC UPS Daemon (apcupsd) Allows Arbitrary Process Termination Denial of Service Vulnerability in Cisco Catalyst 4000, 5000, and 6000 Series Switches via Failed Telnet Authentication Attempts Arbitrary File Read Vulnerability in PHP 3.x on Apache 1.3.6 Arbitrary PHP Command Execution in phpGroupWare before 0.9.7 Buffer Overflow Vulnerabilities in Lexmark MarkVision Printer Driver Programs Registry Permissions Vulnerability in RAS Administration Key in Windows NT 4.0 Default Permissions Vulnerability in SNMP Parameters Registry Key in Windows NT 4.0 MTS Package Administration Registry Key Vulnerability Directory Service Restore Mode Password Vulnerability in Microsoft 2000 Domain Controllers Denial of Service Vulnerability in WatchGuard SOHO FireWall 2.2.1 and Earlier Buffer Overflow Vulnerability in BitchX IRC Client: Remote DoS and Command Execution Default User Account with Weak Credentials in IBM DB2 Universal Database Version 6.1 Denial of Service Vulnerability in IBM DB2 Universal Database Version 6.1 One-byte buffer overflow in replydirname function in BSD-based ftpd FTP Serv-U Directory Traversal Vulnerability Denial of Service Vulnerability in CBOS 2.4.1 and Earlier in Cisco 600 Routers Unlogged Invalid Logins in Cisco Web Management Interface Denial of Service Vulnerability in Cisco 600 Routers Running CBOS 2.4.1 and Earlier Denial of Service Vulnerability in Cisco 600 Routers with CBOS 2.4.1 and Earlier Symlink Attack Vulnerability in Solaris Patchadd Arbitrary Command Execution via Malformed Ident Username in stunnel 3.8 and Earlier Privilege Escalation via procfs in FreeBSD and Other Operating Systems Denial of Service Vulnerability in procfs mmap() Function Procfs Privilege Escalation Vulnerability in FreeBSD and Other Operating Systems Denial of Service Vulnerability in MDaemon 3.5.0 and Earlier Buffer Overflow Vulnerability in bftpd 1.0.13 via Long SITE CHOWN Command Memory Corruption Vulnerability in slocate Insecure Umask Settings in J-Pilot Installation Allows Unauthorized Access to PalmOS Backup Information File Reading Vulnerability in Mac OS Runtime for Java (MRJ) 2.2.3 Local Privilege Escalation via Symlink Attack in Debian GNU/Linux Dialog Buffer Overflow Vulnerability in 1st Up Mail Server 4.1 Detached Signature Verification Vulnerability in GnuPG 1.0.4 and Other Versions GPG Import Vulnerability: Silent Import of Private Keys from Public Key Servers Buffer Overflow Vulnerability in NSA Security-enhanced Linux's libsecure: Potential Memory Modification Technote print.cgi Directory Traversal Vulnerability Technote main.cgi Directory Traversal Vulnerability Arbitrary Command Execution in Ikonboard 2.1.7b and Earlier via register.cgi Unauthenticated Access to Sensitive Information in Sun Cluster 2.x Clustmon Service Arbitrary File Read Vulnerability in Sun Cluster 2.x HA-NFS Status File Local File Overwrite Vulnerability in Support Tools Manager (STM) A.22.00 for HP-UX Denial of Service Vulnerability in Cisco Catalyst 6000, 5000, and 4000 Switches Operator Card Set Recovery Feature Bypass in nCipher: A Key to Application Key Breach Bypassing Access Restrictions in Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode Enabled Severed Windows Media Server Connection Vulnerability Arbitrary Module Specification Vulnerability in GTK+ Library Buffer Overflow Vulnerability in Kermit Communications Software in HP-UX 11.0 and Earlier Arbitrary User Deletion Vulnerability in CGI Script Center Subscribe Me LITE 2.0 and Earlier Privilege Escalation via PATH Manipulation in itetris/xitetris Improper Initialization of $CONF Array in phpWebLog 0.4.2 Allows for Easy Administrative Privilege Escalation File Upload via Form Vulnerability in Internet Explorer 5.0 through 5.5 Browser Print Template vulnerability in Internet Explorer 5.5 Arbitrary File Reading Vulnerability in Internet Explorer 5.0-5.5 ActiveX Control Frame Domain Verification Vulnerability in Internet Explorer 5.0 through 5.5 Root Privilege Escalation via Telnetd Environmental Variable Modification Buffer Overflow Vulnerability in libkrb's kdc_reply_cipher in NetBSD 1.5 and FreeBSD 4.2 and Earlier Symlink Attack Vulnerability in Solaris 2.7 and 2.8's Catman Denial of Service Vulnerability in FrontPage Server Extensions (FPSE) Denial of Service Vulnerability in Infinite Interchange 3.6.1 Web Interface Remote Code Execution Vulnerability in Bea WebLogic Server Arbitrary Command Execution in bsguest.cgi Guestbook Script Remote Code Execution in bslist.cgi Mailing List Script via Email Address GSSAPI Command Vulnerability in fetchmail 5.5.0-2 and Earlier Privilege Escalation via Users & Groups Data File Removal in Mac OS 9 Weak Encryption of Passwords in CoffeeCup Direct and Free FTP Clients Bypassing Lock Server Security Setting in MDaemon Pro 3.5.1 and Earlier Local Privilege Escalation Vulnerability in top on HP-UX 11.04 and Earlier Denial of Service Vulnerability in HP-UX 11.04 and Earlier inetd Server Denial of Service Vulnerability in Veritas Backup Agent on Linux Bypassing .htaccess Access Restrictions in PHP Apache Module 4.0.4 and Earlier Symlink Attack Vulnerability in rctab of SuSE 7.0 and Earlier Buffer Overflow in jaZip Zip/Jaz Drive Manager Allows Local Privilege Escalation Splitvt 1.6.5 and Earlier: Format String Vulnerability Allows Arbitrary Command Execution Arbitrary Command Execution Vulnerability in splitvt before 1.6.5 Arbitrary Command Execution in OmniHTTPd 2.07 via statsconfig.pl Arbitrary File Overwrite Vulnerability in OmniHTTPd 2.07 Arbitrary Command Execution Vulnerability in Solaris 7 and Earlier ARP Command Local Privilege Escalation Vulnerability in gpm 1.19.3 via Symlink Attack Local Privilege Escalation via Symlink Attack in sdiff 2.7 Local Privilege Escalation via Symlink Attack in rdist 6.1.5 Local Privilege Escalation via Symlink Attack in getty_ps 2.0.7j Local Privilege Escalation Vulnerability in useradd Program Denial of Service Vulnerability in ImageCast Control Center 4.1.0 Kernel Leak Vulnerability in AfpaCache Module of IBM HTTP Server 1.3.x and Websphere 3.52 eXtropia bbs_forum.cgi 1.0 Directory Traversal Vulnerability Buffer Overflow Vulnerability in exrecover in Solaris 2.6 and Earlier Local Privilege Escalation Vulnerability in exmh 2.2 and Earlier Arbitrary Java Code Execution in Oracle XSQL Servlet via xml-stylesheet Parameter Buffer Overflow in Olivier Debon Flash Plugin: Remote Code Execution Vulnerability Local Role Computation Vulnerability in Zope Buffer Overflow Vulnerability in Tinyproxy HTTP Proxy 1.3.3 and Earlier Buffer Overflow in HTML Parser of Lotus R5 Domino Server and Client Local File Overwrite Vulnerability in htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others Symlink Attack Vulnerability in Interscan VirusWall 3.6.x and Earlier Unencrypted Web Administration Interface in Interscan VirusWall 3.6.x and Earlier Allows Password Sniffing Buffer Overflow in cpqlogin.htm Allows Remote Code Execution World-writeable directories in Ultraboard 2000 2.11 installation Memory Leak Vulnerability in ProFTPd 1.2.0rc2 Allows Remote Denial of Service Windows Media Player Skins File Download Vulnerability Symlink Attack Vulnerability in privatepw Program of wu-ftpd before 2.6.1-6 Local Privilege Escalation via Symlink Attack in inn 2.2.3 Local Privilege Escalation Vulnerability in arpwatch 2.1a4 Local Privilege Escalation via Symlink Attack in mgetty 1.1.22 Local Privilege Escalation Vulnerability in Squid 2.3 and Earlier Symlink Attack Vulnerability in vpop3d Program in Linuxconf 1.23r and Earlier Integer Overflow Vulnerability in CORE SDI SSH1 CRC-32 Compensation Attack Detector Arbitrary Command Execution Vulnerability in Outlook and Outlook Express VCard Handler Denial of Service Vulnerability in IIS 5.0 and Microsoft Exchange 2000 Windows 2000 Event Viewer Snap-In Buffer Overflow Vulnerability Remote Code Execution via WMP ActiveX Control in Windows Media Player 7 Arbitrary File Reading Vulnerability in Windows Scripting Host in Internet Explorer 5.5 and Earlier Arbitrary Command Execution Vulnerability in Internet Explorer 5.5 and Earlier Denial of Service Vulnerability in IIS 5.0 via Malformed WebDAV Requests Password Vulnerability in Compressed Folders Feature in Plus! for Windows 98 and Windows Me Remote Code Execution via Buffer Overflow in VB-TSQL Debugger Object Unusual MIME Type Execution Vulnerability in Internet Explorer 5.5 and Earlier Format String Vulnerability in VShell SSH Gateway 1.0.1 and Earlier Default Port Forwarding Rule Vulnerability in VShell SSH Gateway 1.0.1 and Earlier Palm OS Backdoor Vulnerability: Bypassing Access Restrictions and Password Extraction Predictable Initialization Vector (IV) Generation in Lucent/ORiNOCO WaveLAN Cards: A Threat to WEP Encryption Weak WEP Encryption Implementation in Cisco 340-series Aironet Access Point Firmware 11.01 Predictable TCP Initial Sequence Numbers (ISNs) in WinCE 3.0.9348: A Gateway for TCP Connection Spoofing and Hijacking Predictable TCP Initial Sequence Numbers (ISNs) in Cisco AP340 Base Station: A Gateway for TCP Connection Spoofing and Hijacking Buffer Overflow Vulnerability in Netscape Directory Server 4.12 and Earlier Buffer Overflow in ximp40 Shared Library in Solaris 7 and Solaris 8 Allows Local Privilege Escalation Denial of Service Vulnerability in Macromedia Shockwave Flash Plugin Version 8 and Earlier Remote Code Execution Vulnerability in AT&T WinVNC Client 3.3.3r7 and Earlier Remote Code Execution Vulnerability in AT&T WinVNC Server 3.3.3r7 and Earlier Insecure LD_PRELOAD Library Loading Vulnerability Local File Disclosure Vulnerability in glibc 2.1.9x and Earlier Buffer Overflow Vulnerability in SlimServe HTTPd 1.0 Allows Remote Code Execution Buffer Overflow Vulnerability in ReiserFS 3.5.28 in SuSE Linux Buffer Overflow in qDecoder Library 5.08 and Earlier: Remote Command Execution via Long MIME Content-Type Header Buffer Overflow Vulnerability in Trend Micro Virus Buster 2001 8.00 Denial of Service Vulnerability in Netscape Fasttrack Server 4.1 Caching Module Arbitrary Command Execution Vulnerability in Voyant Sonata 3.x Denial of Service Vulnerability in WebMaster ConferenceRoom 1.8.1 Privilege Escalation via Insecure UNIX Socket Verification in kdesu program Directory Listing and Disclosure Vulnerability in Allaire JRun 3.0 Arbitrary Command Execution in Lars Ellingsen guestserver.cgi Remote Code Execution via Format String Vulnerability in Caldera Linux DHCP Server and Client FireWall-1 4.1 Denial of Service Vulnerability Remote Bypass of Access Restrictions in ipfw and ip6fw in FreeBSD 4.2 and Earlier Remote Denial of Service Vulnerability in eEye Iris 1.01 beta Denial of Service Vulnerability in Netopia R9100 Router Version 4.6 Free Java Web Server 1.0 Directory Traversal Vulnerability Remote Code Execution via Format String Vulnerability in wu-ftp 2.6.1 and Earlier Denial of Service Vulnerability in GoodTech FTP Server 3.0.1.2.1.0 and Earlier LocalWEB2000 HTTP Server Directory Traversal Vulnerability Buffer Overflow Vulnerability in cu Command in Solaris 2.8 and Earlier Buffer Overflow Vulnerability in gnuserv before 3.12 Buffer Overflow Vulnerabilities in XMail's CTRLServer: Arbitrary Command Execution Format String Vulnerability in Linux Man Command Allows Local Privilege Escalation Remote Code Execution Vulnerability in CUPS 1.1.5 via Buffer Overflow in httpGets Function World-readable /etc/shadow file in Debian GNU/Linux before 3.4-4 allows local privilege escalation through password cracking Group Permission Vulnerability in FreeBSD 4.x and Earlier: Unauthorized Access to Wheel Group Files via inetd ident Server Arbitrary Command Execution via Format String Vulnerability in Icecast 1.3.8beta2 and Earlier Buffer Overflow in QuickTime Player Plugin 4.1.2 (Japanese): Remote Code Execution via Long HREF Parameter in EMBED Tag SEDUM HTTP Server 2.0 Directory Traversal Vulnerability Information Disclosure Vulnerability in HSWeb 2.0 HTTP Server SQL Injection Vulnerability in Postaci Frontend for PostgreSQL Arbitrary File Read Vulnerability in Picserver Web Server Vulnerability: Privilege Escalation in Watchguard Firebox II Firewall Denial of Service Vulnerability in Watchguard Firebox II AOLserver 3.2 Directory Traversal Vulnerability Soft Lite ServerWorx 3.00 Directory Traversal Vulnerability Remote Code Execution Vulnerability in Bing via Buffer Overflow Insecure Permissions in MicroFocus Cobol 4.1 AppTrack Feature Buffer Overflow Vulnerability in Shoutcast DNAS 1.7.1: Remote Code Execution and Denial of Service Directory Traversal Vulnerability in commerce.cgi CGI Program WebSPIRS 3.1 Directory Traversal Vulnerability HIS Auktion 1.62 Directory Traversal and Command Execution Vulnerability Remote Code Execution Vulnerability in PlanetIntra 2.5 via Buffer Overflow Arbitrary File Read Vulnerability in Way-board CGI Program Arbitrary File Read Vulnerability in ROADS search.pl Program Arbitrary Command Execution in PALS Library System's pals-cgi Program Arbitrary File Read Vulnerability in PALS Library System Remote Code Execution via Format String Vulnerability in mars_nwe 0.99.pl19 Denial of Service Vulnerability in HP-UX Support Tools Manager (xstm,cstm,stm) Buffer Overflow Vulnerability in ja-elvis and ko-helvis Ports of Elvis Allows Local Privilege Escalation Root Privilege Escalation via Buffer Overflow in ja-xklock 2.7.1 and Earlier Arbitrary File Overwrite Vulnerability in Webmin 0.84 and Earlier Remote Code Execution Vulnerability in wwwwais via Long QUERY_STRING Remote Path Disclosure Vulnerability in Muscat Empower CGI Program Arbitrary Command Execution Vulnerability in Fortran Math Component of Infobot 0.44.5.3 and Earlier BiblioWeb Web Server 2.0 Directory Traversal Vulnerability BiblioWeb Web Server 2.0 Buffer Overflow Vulnerability GoAhead web server 2.1 and earlier Directory Traversal Vulnerability Improper Group Privilege Setting in Chili!Soft ASP for Linux before 3.6 Buffer Overflow Vulnerability in dc20ctrl before 0.4_1: Local Privilege Escalation Arbitrary File Read Vulnerability in News Desk 1.2 Arbitrary File Read Vulnerability in News Desk 1.2 Buffer Overflow in micq Client 0.4.6 and Earlier: Remote Code Execution and Denial of Service Vulnerability Arbitrary SQL Query Execution and Privilege Escalation in NewsDaemon 0.21b Crontab File Disclosure Vulnerability Remote Code Execution Vulnerability in Solaris snmpXdmid SNMP to DMI Mapper Daemon Denial of Service Vulnerability in Microsoft 2000 Domain Controller via Kerberos Service Bypassing Security Zone Restrictions in Microsoft Data Access Component Internet Publishing Provider Denial of Service Vulnerability in Microsoft ISA Server 2000 Web Proxy Automatic Execution of Macros in Microsoft Word via RTF Documents Buffer Overflow in Internet Printing ISAPI Extension in Windows 2000: Remote Root Privilege Escalation Buffer Overflow Vulnerabilities in Microsoft Windows Media Player 7 and Earlier Vulnerability: Windows Media Player 7 and Earlier Remote File Reading Remote Code Execution Vulnerability in Microsoft Index Server 2.0 via Long Search Parameter Remote Code Execution via Malformed Search Request in Microsoft Index Server 2.0 and Indexing Service Frame Domain Verification Vulnerability in Internet Explorer 5.5 and Earlier Buffer Overflow Vulnerability in BSD-based FTP Servers Arbitrary Command Execution via Buffer Overflow in HPUX 11 FTP Server Arbitrary Command Execution via Heap Overflow in Solaris 8 FTP Daemon Arbitrary Directory Listing Vulnerability in Netscape Enterprise Server 4.x and Earlier Denial of Service Vulnerability in Netscape Enterprise Server 3.x via REVLOG Command Denial of Service Vulnerability in iPlanet Enterprise Server 4.1 Arbitrary File and Directory Read Vulnerability in iWeb Hyperseek 2000 Information Disclosure Vulnerability in FaSTream FTP++ Server 2.0 Arbitrary Directory Listing Vulnerability in FaSTream FTP++ Server 2.0 Denial of Service and Arbitrary Command Execution Vulnerability in FaSTream FTP++ Server 2.0 Arbitrary Command Execution Vulnerability in Easycom/Safecom Print Server Web Service Denial of Service Vulnerability in Easycom/Safecom Print Server (Firmware 404.590) Vulnerability: Local Attackers Can Recover SUN-DES-1 Magic Phrase in ssh-keygen Buffer Overflow Vulnerability in Lotus Domino Mail Server 5.0.5 and Earlier Windows 2000 Encrypted File System (EFS) Backup Vulnerability Buffer Overflow Vulnerability in Netscape SmartDownload 1.3 File Attribute Disclosure Vulnerability in Gene6 G6 FTP Server 2.0 Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) NETBIOS Credential Disclosure Vulnerability Arbitrary File Creation Vulnerability in Windows PGP 7.0.3 and Earlier Privilege Escalation Vulnerability in Software Distributor SD-UX in HP-UX 11.0 and Earlier Privilege Escalation through NM Debug in HP MPE/iX 6.5 and Earlier Privilege Escalation via Unvalidated Call Gate Target in i386_set_ldt System Call Bypassing Authentication in Solaris 8 via NULL Password in pam_ldap Denial of Service Vulnerability in Marconi ASX-1000 ASX Switches Arbitrary Command Execution in mailnews.cgi 1.3 and Earlier Directory Traversal Vulnerability in sendtemp.pl in W3.org Anaya Web Development Server PGP4Pine Interface Version 1.75-6: Expired Public Key Vulnerability Arbitrary Command Execution in kicq IRC Client 1.0.0 and Later Versions via URL Denial of Service and Remote Command Execution Vulnerability in Moby Netsuite Web Server 1.02 Information Disclosure Vulnerability in BadBlue 1.02.07 Personal Edition Web Server Buffer Overflow Vulnerability in BadBlue 1.02.07 Personal Edition's ext.dll Privilege Escalation Vulnerability in HP MPE/iX Linkeditor Buffer Overflow Vulnerability in Sudo (pre-1.6.3p6) Allows Local Privilege Escalation Arbitrary Command Execution via Long EXPN Command in MERCUR SMTP Server 3.30 Format String Vulnerability in DbgPrint Function in Windows NT Drivers SEDUM 2.1 HTTP Server Long HTTP Request Denial of Service and Command Execution Vulnerability SunFTP Build 9 Directory Traversal Vulnerability Buffer Overflow in IPSEC Authentication Mechanism for OpenBSD 2.8 and Earlier: Remote Code Execution and Denial of Service Vulnerability Buffer Overflow Vulnerability in A1 HTTP Server 1.0a: Remote DoS and Command Execution Directory Traversal Vulnerability in A1 HTTP Server 1.0a Denial of Service Vulnerability in VERITAS Cluster Server (VCS) 1.3.0 on Solaris Predictable TCP Initial Sequence Numbers (ISNs) in Cisco IOS 12.1 and earlier: A Remote Hijacking Vulnerability Privilege Escalation via Trojan Horse .joerc File in Joe Text Editor 2.8 Mailman 2.0.1 and Earlier: List Administrators Exploit User Passwords Vulnerability Buffer Overflow in Post-Query Sample CGI Program Allows Remote Command Execution User Email Address and Password Disclosure in PHP-Nuke 4.4.1a FTPXQ FTP Server 2.0.93 Directory Traversal Vulnerability Directory Traversal Vulnerability in TYPSoft FTP Server 0.85 War FTP 1.67.04 Directory Traversal Vulnerability Remote Code Execution Vulnerability in WFTPD Pro 3.00 via Long CWD Command Directory Traversal Vulnerability in Simple Server HTTPd 1.0 Allows Remote File Read Buffer Overflow Vulnerability in WebReflex 1.55 HTTPd Buffer Overflow Vulnerability in Voyager Web Administration Server for Nokia IP440 World-writable directory vulnerability in oidldapd 2.1.1.1 in Oracle 8.1.7 Buffer Overflow Vulnerability in Analog 4.16: Remote Command Execution via ALIAS Command Buffer Overflow Vulnerability in Pi3Web 1.0.1 Web Server Allows Remote Code Execution Path Disclosure Vulnerability in Pi3Web 1.0.1 Web Server Caucho Resin 1.2.2 Directory Traversal Vulnerability Thinking Arts ES.One store.cgi Directory Traversal Vulnerability ITAfrica WEBactive HTTP Server 1.00 Directory Traversal Vulnerability Arbitrary Command Execution in Bajie HTTP JServer 0.78 and Earlier Versions Arbitrary Command Execution via UploadServlet in Bajie HTTP JServer Denial of Service Vulnerability in inetd on Red Hat 6.2 Predictable Temporary File Names and Crash Vulnerability in sort Unauthorized Access Vulnerability in OmniBackII A.03.50 in HP 11.x and Earlier Remote Code Disclosure Vulnerability in IBM WebSphere Plugin for Netscape Enterprise Server Denial of Service Vulnerability in Borderware Firewall Server 6.1.2 Buffer Overflow Vulnerability in AOL 5.0's www.tol Module Bypassing Password Mechanism in mIRC 5.7 Locking Feature Kernel Memory Read Privilege Escalation Vulnerability Privilege Escalation via Race Condition in ptrace in Linux Kernel 2.4 and 2.2 ProFTPD 1.2.0rc2 Format String Vulnerability Arbitrary SQL Query Execution in IBM Net.Commerce 3.x via orderdspc.d2w Macro Arbitrary File Read and PHP Administrator Privilege Escalation in PHP-Nuke 4.4 Arbitrary File Read Vulnerability in opendir.php Script of PHP-Nuke Denial of Service Vulnerability in MSHTML.DLL HTML Parser ICMP Path MTU Discovery Denial of Service Vulnerability Denial of Service Vulnerability in Windows 98 and Windows 2000 Java Clients Buffer Overflow Vulnerability in QNX RTP 5.60: Remote Code Execution and Denial of Service via stat Command Arbitrary File Read Vulnerability in Oracle Java Virtual Machine (JVM) for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1 Memory Disclosure and Denial of Service Vulnerability in iPlanet Web Server Enterprise Edition 4.1 and Earlier Random Increment Initial Sequence Number (RIISN) Vulnerability Arbitrary Command Execution Vulnerability in Bugzilla 2.10 Bugzilla 2.10 Information Disclosure Vulnerability Remote Code Execution Vulnerability in Embedded Support Partner (ESP) Daemon (rpc.espd) in IRIX 6.5.8 and Earlier Frame Domain Verification Vulnerability in Internet Explorer 5.5 and Earlier Double Encoding Directory Traversal Vulnerability in IIS 5.0 and Earlier Denial of Service Vulnerability in IIS 5.0 and Earlier FTP Service FTP Service in IIS 5.0 and Earlier Allows Enumeration of Guest Accounts in Trusted Domains Denial of Service Vulnerability in Microsoft IIS 5.0 and Earlier (MS00-060) Memory Leak Vulnerability in Microsoft IIS 5.0 and Earlier Allows Denial of Service Attacks Server Certificate Validation Vulnerability in Internet Explorer 5.5 and Earlier Web Page Spoofing Vulnerability in Internet Explorer 5.5 and Earlier OWA Message Attachment HTML Code Execution Vulnerability Buffer Overflow in Microsoft Visual Studio RAD Support Sub-component of FrontPage Server Extensions Cached Connection Privilege Escalation Vulnerability in Microsoft SQL Server 2000 Gold and 7.0 Denial of Service Vulnerability in Microsoft Windows 2000 Telnet Service Denial of Service Vulnerability in Microsoft Windows 2000 Telnet Service Windows 2000 Telnet Service Information Disclosure Vulnerability Denial of Service Vulnerability in Microsoft Windows 2000 Telnet Service Predictable Named Pipes Vulnerability in Microsoft Windows 2000 Telnet Service Predictable Named Pipes Vulnerability in Microsoft Windows 2000 Telnet Service Denial of Service Vulnerability in Microsoft Windows 2000 Telnet Service Vulnerability: WEP Encryption Key Disclosure in 3Com AirConnect AP-4111 and Symbol 41X1 Access Points Buffer Overflow Vulnerability in Solaris Line Printer Daemon (in.lpd) Allows Root Privilege Escalation Denial of Service Vulnerability in TheNet CheckBO 1.56 Arbitrary File Access Vulnerability in Novell Groupwise 5.5 (sp1 and sp2) FormMail.pl in FormMail 1.6 and earlier: Remote Code Execution and Email Spoofing Vulnerability Buffer Overflow Vulnerabilities in Sierra Half-Life Build 1573 and Earlier: Remote Code Execution Sierra Half-Life Build 1573 and Earlier: Remote Code Execution via Map Command Arbitrary File Read Vulnerability in Ikonboard 2.1.7b and Earlier Vulnerability: Bleichenbacher Attack on SSH Version 1.5 Implementations Denial of Service Vulnerability in SSH Communications Security sshd 2.4 for Windows Remote Code Execution in Eudora via HTML Email with ActiveX Controls and Malicious IMG Tags SAP R/3 Web Application Server Demo 1.5 Local Privilege Escalation Vulnerability Denial of Service Vulnerability in Mirabilis ICQ WebFront Plug-in ICQ2000b Build 3278 BearShare 2.2.2 and Earlier Directory Traversal Vulnerability Buffer Overflow Vulnerability in lpsched on DGUX Version R4.20MU06 and MU02 Arbitrary Command Execution via Insecure File Signature Checking in fcheck Prior to 2.57.59 Race condition vulnerability in UFS and EXT2FS file systems in FreeBSD 4.2 and earlier Default Group Account with No Password in Akopia Interchange Demo Stores World-readable permissions on Dr. Watson crash dump files in Windows NT and Windows 2000 Vulnerability: Bypassing Access Restrictions via Management Port in Compaq Web-Enabled Management Software Denial of Service Vulnerability in Cisco PIX Firewall 515 and 520 with 5.1.4 OS Vulnerability: Brute Force Attack on SonicWALL Tele2 and SOHO Firewalls with 6.0.0.0 Firmware Denial of Service Vulnerability in Infradig Inframail prior to 3.98a Insecure Permissions in Readline History Files Local Privilege Escalation Vulnerability in HP-UX 11.11 Newgrp Program Default, Undocumented Community String 'ILMI' Allows Remote SNMP Read and Write Access to Crosscom/Olicom XLT-F (XL 80 IM Version 5.5 Build Level 2) Vulnerability in OpenPGP PGP Standard: Private Signature Key Determination via Cryptanalytic Attack Weak Encryption in Computer Associates CCC\Harvest 5.0 for Windows NT/2000 Allows Remote Privilege Escalation Unauthenticated Remote URL Modification in PHP-Nuke 4.4 and Earlier Arbitrary File Corruption Vulnerability in Reliant Sinix PPD Denial of Service Vulnerability in GoAhead Webserver 2.1 via HTTP Request to /aux Directory Denial of Service Vulnerability in AnalogX SimpleServer:WWW 1.08 HylaFAX hfaxd Format String Vulnerability Denial of Service Vulnerability in Time Server Daemon Timed Information Disclosure Vulnerability in IBM Websphere/NetCommerce3 3.1.2 Denial of Service Vulnerability in IBM Websphere/NetCommerce3 3.1.2 Remote Denial of Service (DoS) Vulnerability in Xitami Web Server Denial of Service Vulnerability in Navision Financials Server 2.60 and Earlier Denial of Service Vulnerability in Navision Financials Server 2.0 Denial of Service Vulnerability in Website Pro 3.0.37 Remote Manager Service Unlimited Login Attempts Vulnerability in Lightwave ConsoleServer 3200 Pre-login mode in Lightwave ConsoleServer 3200 allows remote attackers to access sensitive information Buffer Overflow Vulnerability in Silent Runner Collector (SRC) 1.6.1 via Long SMTP HELO Command Remote Code Execution Vulnerability in BAT! Mail Client Remote Code Disclosure in Caucho Resin 1.3b1 and Earlier Arbitrary Command Execution in nph-maillist.pl via Email Address Buffer Overflow in tip in Solaris 8 and Earlier: Arbitrary Command Execution via Long HOME Environmental Variable Insufficient Session Information in IPFilter 3.4.16 and Earlier Allows Access Restriction Bypass Arbitrary File Creation Vulnerability in Solaris perfmon Logging File Option JavaServer Web Dev Kit (JSWDK) 1.0.1 Directory Traversal Vulnerability Bypassing Access Restrictions in IPTables Firewall for Linux 2.4 via ip_conntrack_ftp Vulnerability Arbitrary File Overwrite Vulnerability in Samba MySQL Directory Traversal Vulnerability Arbitrary Command Execution Vulnerability in VIM (gvim) Vulnerability: Symlink Attack on Backup and Swap Files in Vim Buffer Overflow Vulnerability in Trend Micro Virus Buster 2001 8.02 Denial of Service Vulnerability in Reliant Unix 5.44 and Earlier Privilege Escalation Vulnerability in Cisco Content Services Switch (CSS) 11800 and Earlier Denial of Service Vulnerability in BinTec X4000 Access Router Buffer Overflow Vulnerability in ntpd ntp daemon 4.0.99k and earlier Cleartext Password Storage in REDIPlus Program's StartLog.txt Log File Vulnerability Insecure Permissions in sgml-tools Allow Unauthorized File Access Kerberos 4 Symlink Vulnerability Arbitrary Content Database Read Vulnerability in NCM Content Management System Buffer Overflow Vulnerability in iPlanet Web Server (iWS) 4.1 Allows Remote Command Execution Directory Traversal Vulnerability in talkback.cgi Program FTP Server Core Dump Vulnerability in Solaris 8 and Earlier Buffer Overflow in Xsun Allows Arbitrary Command Execution Buffer Overflow in ipcs in Solaris 7 x86 via Long TZ Environmental Variable Privilege Escalation in BubbleMon 1.31 Remote Code Execution in AdCycle via Malformed Agent Header Buffer Overflow Vulnerability in dtsession on Solaris and Other Operating Systems via Long LANG Environmental Variable Denial of Service Vulnerability in Cisco VPN 3000 Series Concentrators Denial of Service Vulnerability in Cisco VPN 3000 Series Concentrators Denial of Service Vulnerability in Cisco Catalyst 5000 Series Switches Insecure Temporary File Creation Vulnerability in exuberant-ctags before 3.2.4-0.1 Critical Vulnerability in iPlanet Web Server Enterprise Edition 4.x Remote Code Execution Vulnerability in Trend Micro Interscan VirusWall 3.01 Buffer Overflow Vulnerability in Savant 3.0 Web Server Allows Remote Code Execution Arbitrary File Modification and Denial of Service Vulnerability in LogDataListToFile ActiveX Function PGP 7.0 Split Key Vulnerability: Unauthorized Key Access via Passphrase Capture Arbitrary Command Execution in DCForum 2000 1.0 via dcboard.cgi Arbitrary File Upload Vulnerability in DCForum 2000 1.0 Local Privilege Escalation in Timbuktu for Mac OS X via About Menu Remote Command Execution in Licq before 1.0.3 via URL Shell Metacharacters Buffer Overflow Vulnerability in Logging Functions of Licq Buffer Overflow in slrn News Reader Wrapping and Unwrapping Functions Buffer Overflow Vulnerability in Mercury MTA POP3 Server for NetWare 1.48 and Earlier QPC QVT/Net Popd 4.20 Buffer Overflow Vulnerability Cisco CBOS 2.3.0.053 Telnet Information Disclosure Vulnerability Source Code Disclosure in IBM WCS 4.0.1 with Application Server 3.0.2 Remote Code Execution and Denial of Service Vulnerability in 602Pro LAN SUITE Web Configuration Server Denial of Service Vulnerability in 602Pro LAN SUITE Web Configuration Server WinZip 8.0 Buffer Overflow Vulnerability Transsoft FTP Broker 5.5 Directory Traversal Vulnerability Cookie-based Authentication Bypass in INDEXU 2.0 beta and Earlier Path Disclosure Vulnerability in BRS WebWeaver FTP Server Directory Traversal Vulnerability in BRS WebWeaver HTTP Server Arbitrary File Read Vulnerability in SlimServe HTTPd 1.1a Remote Configuration Modification Vulnerability in Cisco Aironet 340 Series Wireless Bridge Improper Configuration of Proftpd Run Privilege in Debian 2.2 Denial of Service Vulnerability in man2html before 1.5-22 Buffer Overflow Vulnerabilities in ePerl 2.2.14-0.7: Arbitrary Command Execution Buffer Overflow Vulnerabilities in ascdc Afterstep Denial of Service Vulnerability in Websweeper 4.0 via Large HTTP Referrer Header Remote Code Execution in template.cgi in Free On-Line Dictionary of Computing (FOLDOC) Directory Traversal Vulnerability in Perl Web Server 0.3 and Earlier PerlCal Directory Traversal Vulnerability Buffer Overflow Vulnerability in Cyberscheduler's websync.exe Allows Remote Command Execution TurboTax Vulnerability: Local Users Can Access Sensitive Information via Temporary Password File Arbitrary File Read Vulnerability in ustorekeeper 1.61 RobTex Viking Web Server Directory Traversal Vulnerability FTPFS Buffer Overflow Vulnerability Denial of Service Vulnerability in rwho daemon rwhod Buffer Overflow Vulnerability in SNMP Proxy Agent snmpd in Solaris 8 Unlogged Repeated Login Attempts in SSHD-1 (SSH-1) 1.2.30 and Earlier HSLCTF HTTP Object Denial of Service Vulnerability Remote Code Execution via Format String Vulnerability in Mutt Symlink Attack Vulnerability in Utah-glx on Mandrake Linux 7.2 Arbitrary PHP Code Execution in Jelsoft vBulletin via Templatecache Parameter Multiple Buffer Overflows in Aspseek Search Engine 1.03 and Earlier: Remote Command Execution Vulnerability Remote Command Execution Vulnerability in WebCalendar 0.9.26 Directory Traversal Vulnerability in phpMyAdmin 2.2.0 and Earlier: Remote Code Execution Arbitrary Code Execution via Directory Traversal in phpPgAdmin 2.2.1 and Earlier Alex's FTP Server 0.7 Directory Traversal Vulnerability Insecure Temporary File Handling Vulnerability in rpmdrake in Mandrake Linux 8.0 Root User Bypass and Denial of Service Vulnerability in Argus PitBull LX Remote Proxy Access Vulnerability in Axent Raptor Firewall 6.5 Unauthenticated Access to Configuration Pages in Tektronix PhaserLink 850 Arbitrary Command Execution Vulnerability in netprint on IRIX 6.2 and Other Versions Denial of Service Vulnerability in Novell BorderManager 3.6 and Earlier AIX SNMP Server Denial of Service Vulnerability Unnecessary Set Group ID Permissions in pcltotiff on HP-UX 10.x: Local Denial of Service Vulnerability Remote Code Execution via Format String Vulnerability in gftp prior to 2.0.8 Buffer Overflow Vulnerability in WINAMP 2.6x and 2.7x via Long String in AIP File RaidenFTPD Server 2.1 Directory Traversal Vulnerability Path Disclosure Vulnerability in Netcruiser Web Server Denial of Service Vulnerability in Small HTTP Server 2.03 via MS-DOS Device Name in URL Buffer Overflow in IPSwitch IMail SMTP Server 6.06 and Earlier Versions: Remote Code Execution via Long From: Header Directory Traversal Vulnerability in DataWizard WebXQ Server 1.204 World Readable Temporary Files in kdesu in kdelibs Package Insecure Permissions in BIND TSIG Key Files Allow Unauthorized DNS Updates Denial of Service Vulnerability in Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier Buffer Overflow in Oracle TNS Listener Buffer Overflow in ISAPI Extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 Beta and Earlier Macro Execution Bypass Vulnerability in Microsoft Word 2002 and Earlier Insecure Permission Check in Windows 2000 LDAP Server Allows Unauthorized Password Modification Denial of Service Vulnerability in Microsoft NetMeeting 3.01 with Remote Desktop Sharing SMTP Service Authentication Bypass Vulnerability in Microsoft Windows 2000 Memory Exhaustion Vulnerability in Microsoft Services for Unix 2.0 SSI Privilege Elevation Vulnerability in IIS 5.0 and 4.0 IIS 5.0 System File Listing Privilege Elevation Vulnerability IIS 5.0 Denial of Service Vulnerability via Long WebDAV Request Remote Denial of Service Vulnerabilities in RPC Servers Denial of Service Vulnerability in Oracle Listener Process on Windows NT Arbitrary Community String Vulnerability in Atmel 802.11b VNET-B Access Point 1.3 and Earlier Denial of Service Vulnerability in Oracle Listener with Large Offset_to_data Value Denial of Service Vulnerability in Oracle Listener Denial of Service Vulnerability in Oracle 8i Listener on Solaris Oracle Listener Denial of Service Vulnerability HTML SCRIPT Filtering Bypass in Aladdin eSafe Gateway Versions 2.x Circumvention of SCRIPT Tag Filtering in Aladdin eSafe Gateway Versions 3.0 and Earlier Circumvention of HTML SCRIPT Filtering in Aladdin eSafe Gateway Versions 3.0 and Earlier Privilege Escalation via Format String Vulnerability in GnuPG HTML Character Escaping Bypass Vulnerability in eEye SecureIIS Arbitrary Length String Vulnerability in eEye SecureIIS Versions 1.0.3 and Earlier Buffer Overflow Vulnerability in dsh in dqs 3.2.7 Buffer Overflow in Xview Library Allows Local Privilege Escalation via OPENWINHOME Environment Variable Privilege Escalation through Registration Form in DCScripts DCForum Versions 2000 and Earlier Cleartext Password Exposure in Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) Symlink Attack Vulnerability in OpenSSH with X Forwarding Remote File Bypass and Content Inspection Vulnerability in Spearhead NetGAP 200 and 300 (Builds < 78) Buffer Overflow in libi18n Library in IBM AIX 5.1 and 4.3.x: Privilege Escalation via LANG Environmental Variable Multiple Buffer Overflows in RADIUS Daemon: Remote Code Execution and Denial of Service Vulnerabilities Remote File Execution Vulnerability in Example Applications of ColdFusion Server 4.x Cisco IOS HTTP Server Authentication Bypass and Command Execution Vulnerability Arbitrary Command Execution Vulnerability in Microsoft Outlook ActiveX Control Remote Desktop Protocol (RDP) Memory Leak Vulnerability in Windows NT and Windows 2000 Terminal Servers Remote Code Execution Vulnerability in Microsoft Windows Media Player 7.1 and Earlier via Malformed .NSC File Arbitrary Code Execution Vulnerability in Microsoft SQL Server 7.0 and 2000 NNTP Service Memory Leak Vulnerability Denial of Service Vulnerability in IIS 5.0 via Invalid MIME Content-Type Header Denial of Service Vulnerability in IIS 4.0 with URL Redirection H.323 Gatekeeper Service Memory Leak Vulnerability in Microsoft ISA Server 2000 Memory Leak Vulnerability in Microsoft ISA Server 2000 Proxy Service Buffer Overflow in dtmail Allows Local Privilege Escalation via MAIL Environment Variable Cleartext Storage of Proxy Passwords in Symantec LiveUpdate 1.5 Remote Command Execution in wu-ftpd 2.6.1 via ~{ Argument Buffer Overflow in CDE Print Viewer (dtprintinfo) Allows Arbitrary Code Execution via Clipboard Arbitrary Command Execution Vulnerability in HP OpenView Network Node Manager (NNM) and Tivoli Netview Insecure Password Authentication in SSH Secure Shell 3.0.0 on Unix Systems Remote Code Execution Vulnerability in BSD-based Telnet Daemon Remote File Disclosure Vulnerability in ScreamingMedia SITEWare Local Privilege Escalation via Symlink Attack in NEdit 5.1.1 and Earlier Arbitrary File Viewing Vulnerability in T. Hauck Jana Webserver 1.46 and Earlier Denial of Service Vulnerability in T. Hauck Jana Webserver 2.01 beta 1 and Earlier Privilege Escalation via Crontab Parsing in Vixie Cron 3.0.1 and Earlier Buffer Overflow Vulnerability in Vixie Cron 3.0.1-56 and Earlier Directory Traversal Vulnerability in Drummond Miles A1Stats Prior to 1.6 Remote Command Execution in a1disp.cgi Program in Drummond Miles A1Stats prior to 1.6 Denial of Service Vulnerability in ElectroComm 2.0 and Earlier Denial of Service Vulnerability in APC Web/SNMP Management Card Firmware 310 and Earlier Buffer Overflow Vulnerability in mailx in Solaris 8 and Earlier Denial of Service Vulnerability in Cisco Catalyst 2900XL Switch via Empty UDP Packet to Port 161 Privilege Escalation via ZClass Permission Mapping in Digital Creations Zope 2.3.2 and Earlier Zope 2.3.1 b1 and Earlier: Local Attacker Can Alter ZClasses Class Attributes Vulnerability in Method Return Values of Digital Creations Zope 2.3.1 b1 and Earlier Format String Vulnerabilities in minicom 1.83.1 and Earlier Directory Traversal Vulnerability in Elron Internet Manager (IM) Message Inspector and Anti-Virus Information Leakage Vulnerabilities in SSH Protocols 1 and 2 Privilege Escalation through Trojan Horse Programs in lsfs on AIX 4.x MP3Mystic Directory Traversal Vulnerability Buffer Overflow Vulnerability in lpshut in SCO OpenServer 5.0.6 Buffer Overflow Vulnerability in lpusers Command in SCO OpenServer 5.0 through 5.0.6 Buffer Overflow Vulnerability in SCO OpenServer 5.0 through 5.0.6 Buffer Overflow Vulnerability in lpforms Command in SCO OpenServer 5.0-5.0.6 Buffer Overflow Vulnerability in lpadmin Command in SCO OpenServer 5.0.6 Remote Denial of Service Vulnerability in Hughes Technologies Virtual DNS (VDNS) Server 1.0 Denial of Service Vulnerability in Spytech Spynet Chat Server 6.5 Arbitrary File Access Vulnerability in Ben Spink CrushFTP FTP Server 2.1.6 and Earlier Remote Denial of Service Vulnerability in Alt-N Technologies MDaemon 3.5.4 Denial of Service Vulnerability in Alt-N Technologies MDaemon 3.5.6 IMAP Server Denial of Service Vulnerability in Gordano NTMail 6.0.3c Vulnerability: Credential Recovery in TrendMicro ScanMail for Exchange 3.5 Evaluation Buffer Overflow Vulnerability in MMDF 2.43.3b in SCO OpenServer 5.0.6 Buffer Overflow Vulnerability in Sendmail 8.9.3 DMZ Denial Bypass Vulnerability in NetScreen ScreenOS Remote Code Disclosure in Apache Tomcat Servlet Oracle JSP and Oracle 8.1.7 iAS Release 1.0.2 Directory Traversal Vulnerability Denial of Service Vulnerability in Watchguard Firebox II Prior to 4.6 Arbitrary File Read Vulnerability in Anaconda Partners Clipper 3.3 and Earlier Buffer Overflow Vulnerability in kcms_configure Allows Local Privilege Escalation Buffer Overflow in kcsSUNWIOsolf.so Library in Solaris 7 and 8 Arbitrary Javascript Execution via GIF Image Comment in Netscape Communicator Vulnerability: Password Recovery via Brute Force Attack in STRIP 0.5 and Earlier Denial of Service Vulnerability in Symantec Ghost Configuration Server Denial of Service Vulnerability in Sybase Adaptive Server Anywhere Database Engine 6.0.3.2747 Denial of Service Vulnerability in Lotus Domino R5 Denial of Service Vulnerability in Lotus Domino R5 Denial of Service Vulnerability in Lotus Domino R5 Denial of Service Vulnerability in Lotus Domino R5 Denial of Service Vulnerability in Lotus Domino R5 Arbitrary File Upload and Overwrite Vulnerability in Headlight Software MyGetright Denial of Service Vulnerability in iPlanet Web Server 4.X in HP-UX 11.04 (VVOS) with VirtualVault A.04.00 Vulnerability in asecure program on HP-UX 10.01 through 11.00 allows local attacker to create denial of service and gain additional privileges through unsafe permissions HP AIF Vulnerability: Privilege Escalation and Database Access via AIFCHANGELOGON Program Remote Privilege Escalation via Format String Vulnerability in Infodrom cfingerd 1.4.3 and Earlier Privilege Escalation via Symlink Attack in kfm Cache Directory Buffer Overflow Vulnerability in Becky! 2.00.05 and Earlier Denial of Service Vulnerability in McAfee Remote Desktop 3.0 and Earlier Denial of Service Vulnerability in Omnicron Technologies OmniHTTPD Professional 2.08 and Earlier Remote Code Execution Vulnerability in Carello E-Commerce 1.2.1 and Earlier Directory Traversal Vulnerability in Faust Informatics Freestyle Chat Server 4.1 SR3 and Earlier Denial of Service Vulnerability in Faust Informatics Freestyle Chat Server Remote Access to Mapped Services in Allied Telesyn AT-AR220e Router Firmware 1.08a RC14 Default WEP Key Vulnerability in Orinoco RG-1000 Wireless Residential Gateway Vulnerability: Insecure Transmission of Network Name in Lucent Closed Network Protocol Insecure Permissions in iPlanet Calendar Server Configuration File Allows Unauthorized Access to LDAP Database Arbitrary File Read/Write Vulnerability in Cisco Content Service 11000 Series Switches Privilege Escalation Vulnerability in Cisco Content Service Series 11000 Switches Privilege Escalation in SAFT's sendfiled on Linux Systems Local File Read Vulnerability in QNX 2.4 via FAT Disk Partition Mount Point Arbitrary File Overwrite Vulnerability in Computer Associates InoculateIT 6.0 via Symlink Attack Path Disclosure Vulnerability in O'Reilly Website Professional 2.5.4 and Earlier Local Privilege Escalation via Symlink Attack in vi (SCO OpenServer 5.0 - 5.0.6) Unauthenticated Macro Execution Vulnerability in Microsoft Word 2000 Buffer Overflow Vulnerability in HP Event Correlation Service (ecsd) in OpenView Network Node Manager 6.1 MIMAnet viewsrc.cgi 2.0 Directory Traversal Vulnerability Spoofing Vulnerability in Centrinity First Class Internet Services 5.50 Default Admin Credentials Vulnerability Directory Traversal Vulnerability in Sun Chili!Soft ASP on Multiple Unixes Weak Permissions on Sun Chili!Soft ASP Configuration Files Insecure Permissions on Swap Files in Red Hat Linux 7.1: A Local Privilege Escalation Vulnerability Multiple Buffer Overflow Vulnerabilities in Raytheon SilentRunner Buffer Overflow Vulnerability in Linux Man Program Allows Arbitrary Code Execution Directory Traversal Vulnerability in IncrediMail Allows Local File Overwrite CLSID Spoofing Vulnerability in Internet Explorer 5.5 Plaintext Password Storage Vulnerability in Maxum Rumpus FTP Server Default Password Vulnerabilities in Symantec/AXENT NetProwler 3.5.x Denial of Service Vulnerability in Maxum Rumpus FTP Server 1.3.3 and 2.0.3 dev 3 Denial of Service Vulnerability in Orange Web Server 2.1 PHProjekt 2.1 Directory Traversal Vulnerability Denial of Service Vulnerability in Personal Web Sharing 1.5.5 Vulnerability: Remote Crash and Bad Route Updates in Cisco Devices via Malformed BGP Updates Heap Overflow in xlock Allows Local Privilege Escalation Local Privilege Escalation Vulnerability in Sendmail 8.10.0 through 8.11.5 and 8.12.0 beta Cross-Site Scripting (XSS) Vulnerability in Microsoft ISA Server 2000 IrDA Driver Buffer Overflow Vulnerability on Windows 2000 Outlook Web Access (OWA) User Email Address Disclosure Vulnerability Denial of Service Vulnerability in Windows NT 4.0 RPC Endpoint Mapper Denial of Service Vulnerability in Terminal Server Zone Spoofing vulnerability in Internet Explorer 5.5 and 5.01 HTTP Request Encoding Vulnerability in Internet Explorer 6 and Earlier Denial of Service Vulnerability in Outlook Web Access (OWA) in Microsoft Exchange 2000 Telnet Invocation Vulnerability in Internet Explorer 6 and Earlier with SFU 2.0 Remote Code Execution Vulnerability in HP-UX Line Printer Daemon (rlpdaemon) Unicode Encoding Evasion Vulnerability in Multiple Intrusion Detection Systems Remote Code Execution Vulnerability in BSD Line Printer Daemon (in.lpd or lpd) Remote Code Execution Vulnerabilities in lpd on AIX 4.3 and 5.1 RobTex Viking Web Server Directory Traversal Vulnerability Denial of Service Vulnerability in The Bat! 1.51 for Windows Arbitrary File Creation Vulnerability in The Bat! 1.48f and Earlier Arbitrary File Read Vulnerability in Eudora 5.0.2 Buffer Overflow Vulnerability in Trend Micro InterScan VirusWall and InterScan WebManager Remote Code Execution Vulnerability in InterScan VirusWall 3.23 and 3.3 via Buffer Overflow in HELO Command QPC QVT/Net 4.0 and AVT/Term 5.0 FTP Server Directory Traversal Vulnerability Buffer Overflow Vulnerability in QPC QVT/Net 5.0 and QVT/Term 5.0 FTP Server ZoneAlarm Local Denial of Service Vulnerability Memory Exhaustion Vulnerability in Netscape Collabra Server 3.5.4 and Earlier Denial of Service Vulnerability in Netscape Collabra Server 3.5.4 and Earlier FCron Prior to 1.1.1 Local User Symlink Attack Vulnerability Buffer Overflow in SunOS 5.8 Mail: Privilege Escalation via Long HOME Environment Variable Information Disclosure Vulnerability in Broker FTP Server 5.9.5 for Windows NT and 9x Denial of Service Vulnerability in Broker FTP Server 5.9.5.0 Remote Code Execution Vulnerability in TrendMicro Virus Control System 1.8 Exim Batched SMTP Mode Format String Vulnerability Local Privilege Escalation Vulnerability in Washington University imapd 2000a through 2000c SMTP Proxy Bypass Vulnerability in WatchGuard Firebox (2500 and 4500) 4.5 and 4.6 WebTrends HTTP Server 3.1c and 3.5 Script Source Code Disclosure Vulnerability WFTPD 3.00 R5 Directory Traversal Vulnerability Denial of Service Vulnerability in WFTPD 3.00 R5 Denial of Service Vulnerability in NetWin SurgeFTP 2.0a and 1.0b via CD Command Denial of Service Vulnerability in NetWin SurgeFTP Prior to 1.1h NetWin SurgeFTP 2.0a and 1.0b Directory Traversal Vulnerability Buffer Overflow in cb_reset in SunOS 5.8 SSP Package Allows Local Code Execution Buffer Overflow in w3m 0.2.1 and Earlier: Remote Code Execution via Long Base64 Encoded MIME Header Buffer Overflow Vulnerability in ptexec in Sun Validation Test Suite 4.3 and Earlier Cerberus FTP Denial of Service and Arbitrary Code Execution Vulnerability Denial of Service Vulnerability in tradecli.dll of Arcadia Internet Store 1.0 Path Disclosure Vulnerability in tradecli.dll of Arcadia Internet Store 1.0 Arcadia Internet Store 1.0 - Directory Traversal Vulnerability Denial of Service Vulnerability in Maximum Rumpus FTP Server 2.0.3 and Earlier Denicomp RSHD 2.18 and Earlier Denial of Service Vulnerability Denicomp REXECD 1.05 and Earlier Denial of Service Vulnerability Remote Code Disclosure Vulnerability in Microsoft IIS 4.0 and Earlier Denial of Service Vulnerability in NetBSD and FreeBSD: Exhaustion of mbuf Pool by IP Fragment Flood Denial of Service Vulnerability in Cisco IOS 11.x and 12.0 with ATM Support via Undocumented ILMI SNMP Community String Cross-Site Scripting (XSS) Vulnerability in Internet Explorer's Rendering Engine Privilege Escalation via Malformed Arguments in Sendmail Configuration Files Denial of Service Vulnerability in Sendmail 8.12.1 and Earlier Information Disclosure Vulnerability in Sendmail Denial of Service Vulnerability in Citrix MetaFrame 1.8 Server ToolTalk Database Server rpc.ttdbserverd Format String Vulnerability Macro Bypass Vulnerability in Microsoft Excel and PowerPoint 2002 and Earlier Remote Code Execution Vulnerability in Microsoft Windows Media Player 6.4 via Malformed ASF File Arbitrary Command Execution Vulnerability in Internet Explorer 5.1 for Macintosh on Mac OS X Denial of Service Vulnerability in Universal Plug and Play (UPnP) in Windows 98, 98SE, ME, and XP First Cookie Handling Vulnerability in Internet Explorer 5.5 and 6.0 Second Cookie Handling Vulnerability in Internet Explorer 5.5 and 6.0 Zone Spoofing Vulnerability in Internet Explorer 5.5 Arbitrary Action Vulnerability in Outlook Web Access (OWA) for Microsoft Exchange 5.5 Server File Execution Vulnerability in Internet Explorer 6.0 Privilege Escalation via Buffer Overflow in Compaq Management Agents Directory Listing Vulnerability in Apache 1.3.20 on Windows Servers Arbitrary File Overwrite Vulnerability in Apache 1.3.20 Directory Listing Vulnerability in Apache 1.3.20 with Multiviews Enabled Remote Code Execution via #sinclude Directive in ePerl Privilege Escalation via Modified Status Register Contents in Hitachi Super-H Architecture Buffer Overflow Vulnerability in cfingerd 1.4.3 and Earlier with ALLOW_LINE_PARSING Option Local File Overwrite Vulnerability in Pine and Pico Editor Man-in-the-Middle Attack Exploiting Logitech Wireless Mice and Keyboard Receivers' Synch Delay Vulnerability Denial of Service Vulnerability in LogLine Function of sysklogd 1.3 Privilege Escalation via Inherited Environmental Variables in Guardian Digital WebTool Denial of Service Vulnerability in 3COM OfficeConnect 812 and 840 ADSL Router 4.2 HSRP Packet Spoofing Vulnerability Arbitrary Code Execution Vulnerability in Computalynx CMail POP3 Mail Server 2.4.9 Denial of Service Vulnerability in O'Reilly WebBoard Pager 4.10 Local File Overwrite Vulnerability in Horde IMP 2.2.4 and Earlier Information Disclosure Vulnerability in Netscape 4.7x via Javascript Buffer Overflow Vulnerability in iPlanet Web Server Enterprise Edition 4.1 and Earlier Buffer Overflow Vulnerability in iPlanet Web Server (iWS) Enterprise Edition 4.1 Arbitrary File Read Vulnerability in Acme.Serve 1.7 Arbitrary File Read Vulnerability in Beck IPC GmbH IPC@CHIP Embedded-Webserver Denial of Service Vulnerability in Cisco IOS 12.1(2)T and 12.1(3)T Predictable TCP Initial Sequence Numbers (ISN) in Cisco CBOS 2.3.8 and earlier: Remote Spoofing and Hijacking Vulnerability Denial of Service Vulnerability in Cisco CBOS 2.3.8 and Earlier Clear-text Password Storage Vulnerability in Cisco CBOS 2.3.8 and Earlier Denial of Service Vulnerability in Cisco CBOS 2.3.8 and Earlier Buffer Overflow Vulnerability in Debian GNU/Linux FTP Daemon (ftpd) 6.2 Arbitrary Code Execution in CatalogMgr.pl of VirtualCatalog Vulnerability: Unauthorized Access via Telnet in Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) 12.1DC Card Shambala 4.5 Directory Traversal Vulnerability Buffer Overflow Vulnerability in Jetico BestCrypt 0.8.1 and Earlier: Arbitrary Code Execution via Long Pathname during Unmount Information Disclosure Vulnerability in Citrix Nfuse 1.51 Buffer Overflow in HttpSave.dll in Trend Micro InterScan WebManager 1.2: Remote Code Execution Vulnerability Buffer Overflow Vulnerability in su-wrapper 1.1.1: Arbitrary Code Execution via Long First Argument Buffer Overflow in Linux xinetd 2.1.8.9pre11-1 and Earlier: Remote Code Execution via Long Ident Response Buffer Overflow Vulnerability in ntping in Scotty 2.1.0 Local Directory Traversal Vulnerability in BisonFTP V4R1 Case Insensitive URL Bypass Vulnerability in Apache on MacOS X Client 10.0.3 GuildFTPd 0.9.7 Directory Traversal Vulnerability Plaintext Storage of User Credentials in GuildFTPd 0.9.7 Null Character Denial of Service Vulnerability in GuildFTPd Server 0.97 Remote Code Execution Vulnerability in GuildFTPd Server 0.97 via Long SITE Command Remote Code Execution Vulnerability in Spytech SpyAnywhere 1.50 Multiple Buffer Overflows and Privilege Escalation Vulnerabilities in HP-UX Common Desktop Environment (CDE) Modules Cayman 3220-H DSL Router 1.0 Denial of Service Vulnerability Local Privilege Escalation via Symbolic Link Attack in Tripwire 1.3.1, 2.2.1, and 2.3.0 Buffer Overflow in xloadimage 4.1 (xli 1.16 and 1.17) in Linux via FACES Format Image Buffer Overflow Vulnerability in DynFX MailServer 2.10: Remote Denial of Service via Long POP3 Username Denial of Service Vulnerability in Omnicron OmniHTTPd 2.0.8 Source Code Disclosure Vulnerability in OmniHTTPd 2.0.8 and Earlier Buffer Overflow Vulnerability in rpc.yppasswdd Allows Remote Root Access Cosmicperl Directory Pro 2.0 - Directory Traversal Vulnerability Remote Code Execution Vulnerability in SpoonFTP 1.0.0.12 via Buffer Overflow in CWD and LIST Commands Root Privilege Escalation via Symlink Attack in KDE ktvision 0.1.1-271 and Earlier Arbitrary File Read Vulnerability in Cisco TFTP Server 1.1 Icecast 1.3.10 and Earlier Directory Traversal Vulnerability Directory Traversal Vulnerability in Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 Plaintext Password Storage Vulnerability in Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 Privilege Escalation Vulnerability in LPRng on Red Hat Linux 7.0 and 7.1 Path Disclosure Vulnerability in Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 Format String Vulnerability in avpkeeper in Kaspersky KAV 3.5.135.2 for Sendmail Remote Denial of Service (CPU Exhaustion) Vulnerability in Specter IDS 4.5 and 5.0 Remote Configuration Changes in Trend Micro InterScan VirusWall for Windows NT Remote Code Execution Vulnerability in XChat 1.2.x via Malformed Nickname A-FTP Anonymous FTP Server Buffer Overflow Vulnerability Perception LiteServe 1.25 Source Code Disclosure Vulnerability Denial of Service Vulnerability in SGI IRIX and FreeBSD via Malformed IGMP Multicast Packet Buffer Overflow Vulnerability in System V Based Operating Systems' Login Service Buffer Overflow Vulnerability in lpsched in IRIX 6.5.13f and Earlier Arbitrary Command Execution Vulnerability in lpsched on IRIX 6.5.13f and Earlier Local Privilege Escalation in lpstat on IRIX 6.5.13f and Earlier Remote Code Execution Vulnerability in CDE Subprocess Control Service (dtspcd) Interactive Story 1.3 - Remote File Read Vulnerability Directory Traversal Vulnerability in Tarantella Enterprise 3.00 and 3.01 Insecure Default Permissions in MacOS X 10.0 and 10.1 Allow Unauthorized Access to User's Desktop Folder Remote File Disclosure Vulnerability in Internet Explorer 5.0 and Other Versions Arbitrary Command Execution in GNATS GnatsWeb 2.7 through 3.95 via help_file Parameter Arbitrary File Overwrite Vulnerability in CIFS/9000 Server (SAMBA) A.01.06 and earlier Remote Code Execution Vulnerability in ActivePerl 5.6.1.629 and Earlier Bypassing Authorized Keys2 Command Restrictions in OpenSSH SFTP Server Remote Code Execution and Privilege Escalation Vulnerability in HP-UX Line Printer Daemon (rlpdaemon) Buffer Overflow Vulnerability in MDBMS 0.99b9 and Earlier Allows Remote Command Execution Buffer Overflow Vulnerability in Linux Fetchmail 5.8.6: Remote Code Execution via Large 'To:' Field Remote Code Execution Vulnerability in GazTek ghttpd 1.4 via Buffer Overflow Sensitive File Exposure in Default Configuration of DCShop 1.002 Beta Denial of Service Vulnerability in FPF Kernel Module 1.0 via Fragmented Packets Privilege Escalation via Symlink Attack on PCP Log Directory Cross-Site Scripting Vulnerability in IBM WebSphere 3.02 and 3.5 FP2 Buffer Overflow in xinetd Internal String Handling Routines Remote Command Execution Vulnerability in CesarFTPD 0.98b Denial of Service Vulnerability in Cerberus FTP Server 1.0 - 1.5 Unquoted Javascript Injection in Caucho Technology Resin before 1.2.4 Cross-Site Scripting Vulnerability in Apache Tomcat 3.2.1 Allows Injection of Javascript in Error Messages Denial of Service Vulnerability in 6tunnel 0.08 and Earlier Oracle Label Security Local Privilege Escalation Vulnerability Oracle File Overwrite Security Vulnerability Oracle Trace Collection Buffer Overflow Vulnerability Remote Code Execution and Arbitrary File Read Vulnerability in htsearch CGI Program Cross-Site Scripting Vulnerability in Webalizer 2.01-06 and Other Versions Buffer Overflow Vulnerability in Oracle9iAS Web Cache 2.0.0.1 Sensitive Data Exposure in DeltaThree Pc-To-Phone 3.0.3 Format String Vulnerability in Network Solutions Rwhoisd 1.5.x Weak Password Generation in iBill Password Management System Allows Remote Account Modification Remote Code Execution Vulnerability in Compaq Insight Manager XE 2.1b and Earlier Directory Traversal Vulnerability in Ikonboard ib219 and Earlier via amembernamecookie Cookie Directory Traversal Vulnerability in Search.cgi Allows Remote File Overwrite and Privilege Escalation Denial of Service Vulnerability in Squid Proxy Server 2.4 and Earlier Remote Code Execution Vulnerability in Book of Guests and Post it! Unauthorized Resource Access Vulnerability in DECwindows Motif Server on OpenVMS VAX or Alpha 6.2 through 7.3, and SEVMS VAX or Alpha 6.2 Remote Code Execution in Lotus Domino 5.x via Web Administrator Template File (webadmin.ntf) Information Disclosure in Lotus Domino Web Server 5.x via Default Navigator and ReplicaID Arbitrary SQL Code Execution Vulnerability in e-Zone Media Fuse Talk Arbitrary Code Execution in Viralator 0.9pre1 and Earlier via Insecure wget Call Buffer Overflow Vulnerability in libdb1 Package in OpenLinux 3.1 Vulnerability: Brute Force Bypass of Firewall Rules in Linux Kernel 2.0, 2.2, and 2.4 with Syncookies Enabled Denial of Service Vulnerability in TUX HTTP Server 2.1.0-2 Directory Traversal Vulnerability in Entrust GetAccess: Arbitrary File Read Arbitrary File Copy and Deletion Vulnerability in PHP-Nuke 5.2 Buffer Overflow Vulnerability in ClearCase db_loader Physical Access Vulnerability in IBM 4758: Brute Force Attack on CCA Allows Theft of DES and 3DES Keys Cross-Site Scripting Vulnerability in Imp Webmail 2.2.6 and Earlier Allows Session Hijacking Local Privilege Escalation via Buffer Overflow in Caldera Open Unix and UnixWare PPP Utilities World-Writeable Permissions Vulnerability in Red Hat Linux 7.1 Korean Installation Program IP Address Spoofing Vulnerability in Terminal Services Manager MMC Denial of Service Vulnerability in Cisco 12000 with IOS 12.0 and Engine 2 Line Cards Fragmented Packet Bypass Vulnerability in Cisco 12000 with IOS 12.0 and Engine 2 Line Cards Denial of Service Vulnerability in Cisco 12000 with IOS 12.0 and Engine 2 Line Cards Outgoing ACL Bypass Vulnerability in Cisco 12000 with IOS 12.0 and Engine 2 Line Cards Vulnerability: Fragmented Packets Bypass Outgoing ACL on Cisco 12000 with IOS 12.0 and Engine 2 Line Cards Bypassing Access Controls on Cisco 12000 with IOS 12.0 and Engine 2 Line Card Cisco 12000 with IOS 12.0 and Engine 2-based Line Cards Fragment Filtering Bypass Vulnerability Information Disclosure Vulnerability in Red Hat Stronghold 2.3 to 3.0 Format String Vulnerability in _sasl_syslog Function in Cyrus SASL Library Default Authentication Bypass in Alchemy Eye and Alchemy Network Monitor Directory Traversal Vulnerability in Alchemy Eye and Alchemy Network Monitor HTTP Server Privilege Escalation via OpenSSH UseLogin Vulnerability Privilege Escalation via uuxqt in Taylor UUCP Package Frame Domain Verification Vulnerability in Internet Explorer 5.5 and 6.0 Misrepresentation of File Type in Internet Explorer File Download Dialogue Buffer Overflow Vulnerability in Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP Denial of Service Vulnerability in Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP C Runtime Format String Vulnerability in SQL Server 7.0 and 2000 Mailman Email Archiver XSS Vulnerability Buffer Overflow Vulnerability in glibc's glob Function Allows for Denial of Service and Arbitrary Code Execution Symlink Attack Vulnerability in xSANE 0.81 and Earlier Denial of Service Vulnerability in Atmel Firmware 1.3 Wireless Access Point (WAP) Arbitrary Command Execution Vulnerability in Exim 3.22 and Earlier Symlink Attack Vulnerability in SANE Library 1.0.3 and Earlier Format String Vulnerability in NQS Daemon (nqsdaemon) in NQE 3.3.0.16 for CRAY UNICOS and SGI IRIX Sensitive File Disclosure in Acme Thttpd Secure Webserver Sensitive File Disclosure Vulnerability in Acme mini_httpd Denial of Service Vulnerability in Postfix SMTP Server ARP Spoofing Vulnerability in Cisco Networking Products Denial of Service Vulnerability in Inetd of OpenServer 5.0.5 Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e Remote Information Disclosure Vulnerability in Opera 6.0 and Earlier Remote Command Execution in Network Tools 0.2 for PHP-Nuke Directory Traversal Vulnerability in Gallery 1.2.3: Arbitrary File Read Arbitrary Command Execution via Hypermail Attachment with .shtml Extension Remote Log Entry Spoofing Vulnerability in Microsoft IIS 5.0 Vulnerability: Linear Key Exchange in HDCP System Enables Unauthorized Access and Device Cloning UserAgent Information Disclosure Vulnerability Race Condition in Signal Handling of Procmail 3.20 and Earlier: Local Privilege Escalation Vulnerability Local Privilege Escalation via Symlink Attack in teTeX Filter Denial of Service via Deeply Nested Symlinks in Linux Kernel CITRIX Metaframe 1.8 Vulnerability: IP Address Spoofing through Client Address Logging Remote Code Execution Vulnerability in Microsoft Help Center for Windows XP Vulnerability: Access Restriction Bypass and Privilege Escalation in Legato Networker Base-64 Encoded Cookie Vulnerability in PHP-Nuke 5.1 Local Privilege Escalation Vulnerability in Expect 8.3.3 Packaging for Mandrake Linux 8.1 Format String Vulnerability in Network Solutions Rwhoisd 1.5.7.2 and Earlier: Remote Code Execution via Rwhois Request Denial of Service Vulnerability in Linux Kernel ELF Loading Format String Vulnerability in Berkeley Parallel Make (pmake) 2.1.33 and Earlier Buffer Overflow Vulnerability in Berkeley Parallel Make (pmake) 2.1.33 and Earlier Information Disclosure Vulnerability in Jakarta Tomcat 4.0.1 Remote Code Execution in Susehelp CGI Scripts Cookie Vulnerability in Internet Explorer 5.50.4134.0100 on Windows ME Format String Vulnerability in Auto Nice Daemon (AND) 1.0.4 and Earlier Password Extraction Vulnerability in Netscape 4.79 and Earlier for MacOS Session Hijacking Vulnerability in Netdynamics 4.x through 5.x Arbitrary Code Execution Vulnerability in RPM Package Manager 4.0.x through 4.0.2.x Informix Web DataBlade ifx CGI Program Directory Traversal Vulnerability Directory Listing Vulnerability in Apache Server Remote Code Disclosure Vulnerability in Allaire JRun Format String Vulnerability in GNOME libgtop_daemon's permitted Function Buffer Overflow Vulnerability in GNOME gtop Daemon Allows Remote Code Execution Cisco IOS Firewall Feature Set Vulnerability: IP Protocol Type Bypass Arbitrary Command Execution in Sendpage.pl Cooolsoft PowerFTP Server 2.03 Directory Traversal Vulnerability Cooolsoft PowerFTP Server 2.03 Buffer Overflow Vulnerability Arbitrary Drive Listing Vulnerability in Cooolsoft PowerFTP Server 2.03 Information Disclosure Vulnerability in Cooolsoft PowerFTP Server 2.03 Unrelated Vulnerability in wu-ftpd 2.6.0 and Earlier Versions Arbitrary Code Execution via Buffer Overflow in Frox Transparent FTP Proxy Arbitrary Command Execution in PGPMail.pl 1.31 AspUpload 2.1 Directory Traversal Vulnerability Denial of Service Vulnerability in Lotus Domino 5.08 and Earlier Buffer Overflow in Check Point VPN-1/FireWall-1 Management Server 4.0 and 4.1 GUI Authentication Buffer Overflow in dbsnmp: Arbitrary Code Execution via ORACLE_HOME Environment Variable Arbitrary Code Execution via ORACLE_HOME Manipulation in Oracle 8.1.6 and 8.1.7 Vulnerability: Arbitrary Code Execution via PATH Manipulation in Oracle DBSNMP DDE Exploit in mIRC: Unauthorized Application Execution via Local User Account Outlook Express 5.0-5.02 for Macintosh Buffer Overflow Denial of Service Vulnerability Symlink Attack Vulnerability in Apmd in Red Hat 7.2 Enigma Information Disclosure Vulnerability in Forms.exe CGI Program in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 Arbitrary Code Execution and False Information Display Vulnerability in ValiCert Enterprise Validation Authority (EVA) Buffer Overflow Vulnerability in ValiCert Enterprise Validation Authority (EVA) Administration Server Insufficiently Random Data Generation in ValiCert Enterprise Validation Authority (EVA) Administration Server Denial of Service Vulnerability in Windows 2000 via IKE UDP Port 500 Flooding Remote Denial of Service Vulnerability in THQ Volition Red Faction Game Remote Privilege Escalation in Kebi WebMail via Hidden Directory Denial of Service Vulnerability in Lotus Domino 5.0.5 and 5.0.8 Buffer Overflow Vulnerability in XFree86 Allows Denial of Service and Possible Privilege Escalation Arbitrary Command Execution in speechd 0.54 and Earlier Remote Code Execution Vulnerabilities in Trend Micro InterScan VirusWall eManager Plugin Hidden Share Vulnerability in Computer Associates ARCserve Cleartext Storage of Credentials in Computer Associates ARCserve Buffer Overflow Vulnerability in Most Program's Tab Expansion Capability Predictable Session ID Generation in IBM WebSphere Application Server SpoonFTP 1.1 Directory Traversal Vulnerability Buffer Overflow Vulnerability in Half-Life 1.1.0.8 and Earlier: Remote Code Execution via Long Console Command Denial of Service Vulnerability in glFTPD 1.23 via LIST Command Nudester 1.10 and Earlier Directory Traversal Vulnerability Weak Password Encryption in Knox Arkeia Server 4.2 Default Null Password Vulnerability in Knox Arkeia Server 4.2 Arbitrary Remote Host Connections Allowed in FreeBSD's ipfw due to me Rule Handling Vulnerability Cross-Site Scripting (XSS) Vulnerability in TDForum 1.2 CGI Script ACI 4d Webserver Directory Traversal Vulnerability Easily Guessable Cookies in Surf-Net ASP Forum before 2.30 Allow Remote Administrative Privilege Escalation Arbitrary File Access and Modification via Symlink in BSCW Groupware System Remote Code Execution Vulnerability in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 Remote Code Execution Vulnerability in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 Privilege Escalation Vulnerability in HP Process Resource Manager (PRM) C.01.08.2 and Earlier Denial of Service Vulnerability in OpenLDAP 1.x and 2.x Unrecorded Failed Login Attempts Vulnerability in HP-UX 10.26 Buffer Overflow Vulnerability in swverify in HP-UX 11.0 and Other Programs Arbitrary Command Execution in DocView before 1.0-15 Privilege Escalation Vulnerability in HP CIFS/9000 Server (SAMBA) A.01.07 and Earlier IBM Tivoli WebSEAL Policy Director Directory Traversal Vulnerability Weak Encryption of FTP Passwords in UltraEdit Cleartext Password Exposure in Password Safe 1.7(1) Arbitrary Command Execution in Hassan Consulting Shopping Cart 1.23 via page Parameter Sensitive Information Disclosure in Microsoft Index Server 2.0 via SQLQHit.asp Arbitrary Javascript Execution via CGIWrap Error Messages World-writable permissions in Arkeia backup server 4.2.8-2 and earlier allow unauthorized access and data manipulation Pileup Buffer Overflow Vulnerability Cleartext Authentication Information Exposure in Inter7 vpopmail 4.10.35 and Earlier Cross-Site Scripting Vulnerability in Proxomitron Naoko-4 BetaFour and Earlier Arbitrary Command Execution in ShopPlus Shopping Cart via file Parameter Denial of Service Vulnerability in NetBSD's sendmsg Function Denial of Service Vulnerability in Marconi ForeThought 7.1 ID Number Manipulation Vulnerability in PHProjekt before 2.4a Arbitrary Text Injection Vulnerability in POP3Lite Arbitrary Command Execution Vulnerability in Textor Webmasters Ltd listrec.pl CGI Program Denial of Service Vulnerability in IBM HACMP 4.4 Arbitrary Script Execution in Outlook Express 6.00 via MIME Content Type Vulnerability Arbitrary File Read Vulnerability in rlmadmin RADIUS Management Utility Privilege Escalation via DVI Print Filter in Red Hat Linux 7.0 and Earlier Weak Encryption in Respondus 1.1.2 for WebCT Allows Password Decryption and Privilege Escalation Arbitrary Script Execution via File Sharing in gnut Gnutella Client Weak Encryption of User Password in Starfish Truesync Desktop 2.0b on REX 5000 PDA Allows Privilege Escalation Insecure File Encryption in Starfish Truesync Desktop 2.0b on REX 5000 PDA Insecure Key Handling in Starfish Truesync Desktop 2.0b on REX 5000 PDA Java Plugin 1.4 for JRE 1.3 Expired Certificate Execution Vulnerability Arbitrary Memory Overwrite Vulnerability in Fetchmail Directory Traversal Vulnerability in Sambar Server's pagecount CGI Script Remote Code Execution Vulnerability in Mambo Site Server 3.0.0 through 3.0.5 Local Privilege Escalation Vulnerability in Screen Before 3.9.10 Apache UserDir Vulnerability: Username Enumeration via Error Codes Arbitrary Command Execution Vulnerability in eShop.pl WebDiscount(e)shop Buffer Overflow Vulnerability in Snes9x 1.37 Allows Local Privilege Escalation PGP Key Validity Vulnerability World-readable master.passwd file vulnerability in rmuser utility in FreeBSD 4.2 and 4.3 Information Disclosure Vulnerability in Lotus Domino Web Server 5.08 Arbitrary File Read Vulnerability in sglMerchant 1.0's view_item CGI Program Arbitrary Command Execution in Vibechild Directory Manager (edit_image.php) Remote Code Execution Vulnerability in WS_FTP 2.02 via Long Arguments Format String Vulnerability in pic Utility in Groff Information Disclosure Vulnerability in Xcache 2.1 Remote Code Execution in Entrust getAccess CGI Scripts Arbitrary SQL Operations Vulnerability in PHP-Nuke 5.x URL Filtering Vulnerability in Trend Micro InterScan AppletTrap 2.0 Buffer Overflow Vulnerability in WindowMaker (wmaker) 0.64 and Earlier via Long Window Title Buffer Overflow Vulnerability in ultimate_source Function of man 1.5 and Earlier Allows Local Privilege Escalation Privilege Escalation Vulnerability in OpenSSH on FreeBSD 4.4 and Earlier Bypassing Access Control Lists in Squid HTTP Accelerator Mode Meteor FTP 1.0 Directory Traversal Vulnerability Arbitrary File Upload and Configuration File Disclosure in PHP-Nuke 5.2 and Earlier Denial of Service Vulnerability in Compaq TruCluster 1.5 Format String Vulnerability in Hylafax on FreeBSD Allows Arbitrary Code Execution Remote Code Execution via Binary Decoding in slrn 0.9 and Earlier Arbitrary Memory Write Vulnerability in GNU Locate Unauthenticated Local Access to Developer's Shell in Cisco SN 5420 Storage Router Denial of Service Vulnerability in Cisco SN 5420 Storage Router 1.1(3) and Earlier Unsecured Telnet Interface in HP JetAdmin Web Interface Allows Remote Access Vulnerability: Password Reset on Power Off in HP LaserJet and JetDirect Devices Symlink Attack Vulnerability in Oracle Program Arbitrary File Read Vulnerability in Transsoft Broker 5.9.5.0 ArGoSoft FTP Server 1.2.2.2 Arbitrary File Read Vulnerability Insecure File Storage in Basilix Webmail 0.9.7beta and Other Versions Basilix Webmail 1.0.3beta Directory Traversal Vulnerability Buffer Overflow Vulnerability in qpopper 4.0 through 4.0.2: Remote Privilege Escalation via Long Username Race condition vulnerability in OpenBSD VFS allows local users to cause denial of service (kernel panic) Remote File Inclusion Vulnerability in AWOL PHP Script Arbitrary File Inclusion Vulnerability in Phorecast PHP Script Arbitrary File Inclusion Vulnerability in CCCSoftware CCC PHP Script Arbitrary File Inclusion Vulnerability in Dark Hart Portal (darkportal) PHP Script Arbitrary File Inclusion Vulnerability in Empris PHP Script SQL Injection Vulnerability in AdLogin.pm in AdCycle 1.15 and Earlier Arbitrary File Inclusion Vulnerability in PHPAdsNew PHP Script Denial of Service Vulnerability in Microsoft Windows Network Stack via Malformed ARP Request Packets IP Masquerading Module 2.2 Vulnerability: Bypassing Firewall Restrictions via IRC DCC Helper Denial of Service Vulnerability in Mathematica License Manager (mathlm) Mathematica License Manager Remote Access Control Bypass Vulnerability Insecure Permissions in VMWare Log File Expose License Information Arbitrary Command Execution in phpMyAdmin 2.2.0rc3 and Earlier Unidentified AIX lsmcode Vulnerability: Potential Usage Error Exploitation Buffer Overflow Vulnerability in mana in OpenServer 5.0.6a and Earlier: Local Code Execution Buffer Overflow Vulnerability in uidadmin in Caldera Open Unix 8.0.0 and UnixWare 7 Denial of Service Vulnerability in Cisco 600 Series Routers Cisco 600 Series Routers: Vulnerability in Web-based Configuration Utility Symlink Attack Vulnerability in ns6install Installation Script Buffer Overflow Vulnerability in AOLserver 3.0: Remote Code Execution and Denial of Service Information Disclosure Vulnerability in qpopper 4.01 with PAM-based Authentication on Red Hat Systems World-writable permissions in libCoolType library of Adobe Acrobat on Linux Remote Denial of Service Vulnerability in Sage Software MAS 200 Cisco IOS CDP Denial of Service Vulnerability Apache mod_rewrite Vulnerability: Bypassing RewriteRules via Extra Slash Characters Information Disclosure Vulnerability in Webridge PX Application Suite Webmin Authentication Information Leakage Vulnerability Authentication Bypass Vulnerability in poprelayd Script of Cobalt RaQ3 Servers Buffer Overflow Vulnerability in whodo in Solaris SunOS 5.5.1 through 5.8 Buffer Overflow in tt_printf Function of rxvt 2.6.2 Allows Local Privilege Escalation Format String Vulnerability in eXtremail 1.1.9 and Earlier: Remote Root Privilege Escalation World-writable Keyfile Directories Vulnerability in PSSP 3.2 with DCE 3.1 Authentication on AIX Privilege Escalation via DIAGDATADIR Environment Variable in AIX 4.3.x and 5.1 Format String Vulnerability in Livingston/Lucent RADIUS before 2.1.va.1 Directory Traversal Vulnerability in Livingston/Lucent RADIUS Icecast 1.3.7 Denial of Service Vulnerability Cross-Site Scripting Vulnerability in Allaire JRun 3.0 and 2.3.3 Local Privilege Escalation via Symlink Attack in Lmail 2.7 and Earlier XDM in XFree86 3.3 and 3.3.3 Vulnerability: Easily Guessable Cookies Arbitrary Port Access Vulnerability in NetCache Devices Email Spoofing Vulnerability in Microsoft Outlook and Outlook Express Arbitrary SQL Query Execution in libnss-pgsql Remote Code Execution via SQL Injection in nss_postgresql 0.6.1 and Earlier Privilege Escalation via RCMD_CMD Environment Variable in NetBSD 1.4.x through 1.5.1 Symlink Attack Vulnerability in Digital UNIX 4.0G and Earlier Buffer Overflow Vulnerability in msgchk in Digital UNIX 4.0G and Earlier Bypassing Access Restrictions in NetOp School 1.5 Administration Version Buffer Overflow Vulnerability in uuq in AIX 4 Buffer Overflow Vulnerability in muxatmd in AIX 4: Core Dump and Code Execution Denial of Service Vulnerability in Cisco Routers and Switches Running IOS 12.0 through 12.2.1 Cisco PIX Firewall Manager (PFM) 4.3(2)g Local Password Disclosure Vulnerability Norton AntiVirus for Microsoft Exchange 2000 2.x Path Disclosure Vulnerability Arbitrary Command Execution in sendmessage.cgi of W3Mail 1.0.2 and Other CGI Programs Arbitrary File Overwrite Vulnerability in Check Point FireWall-1 Log Viewer Local Privilege Escalation via Symlink Attack in Check Point FireWall-1 for Solaris Arbitrary Command Execution in FTP Voyager ActiveX Control Predictable TCP Sequence Numbers in SonicWALL SOHO: A Gateway to Session Spoofing and Hijacking Session ID Caching Vulnerability in RSA BSAFE SSL-J 3.0, 3.0.1, and 3.1 Default Symmetric Key Vulnerability in Sambar Server 5 and Earlier Plaintext Password Storage in SnapStream PVS 1.2a's SSD.ini File Vulnerability SnapStream PVS 1.2a Directory Traversal Vulnerability Directory Traversal Vulnerability in EFTP 2.0.7.337 EFTP 2.0.7.337 Remote Credential Sniffing Vulnerability EFTP 2.0.7.337 Plaintext Password Storage Vulnerability Remote Code Execution via Buffer Overflow in EFTP 2.0.7.337 Arbitrary Code Execution via Buffer Overflow in TrollFTPD 1.26 and Earlier Arbitrary Command Execution in book.cgi of NetCode NC Book 0.2b Arbitrary File Read Vulnerability in SIX-webboard 2.01 and Earlier Secondary Display Bypass Vulnerability in Identix BioLogon 2.03 and Earlier Vulnerability: Password Disclosure in LinkSys EtherFast BEFSR41 Cable/DSL Routers URL Encoding Vulnerability in Roxen 2.0 and 2.1 Symlink Attack Vulnerability in cda in xmcd 3.0.2 and 2.6 in SuSE Linux Arbitrary File Access and Template Overwrite Vulnerabilities in ColdFusion 2.0 through 4.5.1 SP 2 Denial of Service Vulnerability in Windows NT 4.0 SP 6a Buffer Overflow Vulnerability in HP OpenView Network Node Manager (NNM) 6.2 and Earlier Denial of Service Vulnerability in rpcbind on HP-UX 11.00, 11.04, and 11.11 Unauthenticated Remote Code Execution via DNS Spoofing in Symantec LiveUpdate Denial of Service Vulnerability in Symantec LiveUpdate Buffer Overflow Vulnerability in Progress Database 8.3D and 9.1C Buffer Overflow Vulnerability in Progress Database 8.3D and 9.1C Format String Vulnerabilities in Progress Database 9.1C Components Arbitrary Command Execution in Sdbsearch.cgi in SuSE Linux 6.0-7.2 Directory Traversal Vulnerability in WhitSoft Development SlimFTPd 2.2 Mailman 2.0.x Empty Password Authentication Bypass Vulnerability Denial of Service Vulnerability in BSDI 3.0 and 3.1 System Call Remote Denial of Service Vulnerability in Xerox DocuPrint N40 Printers Unfiltered Telnet and FTP Ports on ZyXEL Prestige 642R and 642R-I Routers Allow Unauthorized Internal Access Denial of Service Vulnerability in HP-UX 11.04 (VVOS) libsecurity Library D-Link DI-704 Internet Gateway Firmware Denial of Service Vulnerability Directory Traversal Vulnerability in Randy Parker Power Up HTML 0.8033beta's r.pl (aka r.cgi) Allows Remote File Read and Possible Code Execution Directory Traversal Vulnerability in ASCII NT WinWrapper Professional Remote Code Disclosure in BadBlue Personal Edition v1.02 beta Predictable Output Vulnerability in SSLeay and OpenSSL Weak Encryption in ArGoSoft FTP Server 1.2.2.2 Allows Privilege Escalation Remote Denial of Service Vulnerability in IBM DB2 7.0 Directory Traversal Vulnerability in McAfee ASaP VirusScan Agent 1.0 Directory Traversal Vulnerability in BSD Operating Systems Symlink Attack Vulnerability in AllCommerce with Debugging Enabled in EnGarde Secure Linux 1.0.1 PAM Implementation in util-linux Package Allows Credential Leakage Buffer overflow vulnerabilities in SCO OpenServer 5.0.6a and earlier: Privilege escalation via long TERM environment variable Denial of Service Vulnerability in Panda Antivirus Platinum Arbitrary File Read Vulnerability in Trend Micro OfficeScan Corporate Edition Unauthenticated Remote Access to Sensitive Information in Trend Micro OfficeScan Corporate Edition Baltimore Technologies WEBsweeper 4.02 URL Blacklist Bypass Vulnerability Denial of Service and Arbitrary Code Execution Vulnerability in lpsystem of OpenUnix 8.0.0 Denial of Service Vulnerability in Cyrus IMAP Server TCP Wrappers in FreeBSD with PARANOID ACL option allows bypassing access restrictions via DNS spoofing Denial of Service Vulnerability in TYPSoft FTP 0.95 Baltimore Technologies WEBsweeper 4.0 and 4.02 HTML Filtering Bypass Vulnerability Remote Code Execution Vulnerability in Check Point VPN-1/FireWall-1 4.1 Remote Code Execution and File Disclosure Vulnerability in SquirrelMail 1.0.4 and Earlier Arbitrary Command Execution in Microburst Technologies uDirectory 2.0 and Earlier Lotus Domino 5.0.6 Cross-Site Scripting (XSS) Vulnerability Directory Traversal Vulnerability in Samba's smb.conf Configuration File Buffer Overflow in Munica Corporation NetSQL 1.0: Remote Code Execution via Long CONNECT Argument Buffer Overflow Vulnerability in uucp Utilities in UnixWare 7 Weak Encryption in Intego FileGuard 4.0 Allows Privilege Escalation via Disengage Tool Kernel Memory Access Vulnerability in FreeBSD 4.3 and Earlier Directory Traversal Vulnerability in PhpMyExplorer 1.2.1 Unauthenticated Keyinit Vulnerability in S/Key Remote Code Execution Vulnerability in AmTote International Homebet Program Vulnerability: Privilege Escalation and Firewall Policy Modification via Symlink Exploitation in Check Point Firewall-1 3.0b through 4.0 SP1 Vulnerability: Unauthorized File Modification via Symbolic Link in OmniSecure HTTProtect 1.1.1 Privilege Escalation Vulnerability in MasqMail before 0.1.15 via Piped Aliases Remote Code Execution Vulnerability in Elm 2.5.5 and Earlier via Long Message-ID Header World-Readable /etc/shadow Vulnerability in vipw (util-linux package) Check Point VPN-1/FireWall-1 4.1 Format String Vulnerability Symlink Attack Vulnerability in Samsung ML-85G GDI Printer Driver Buffer Overflow in xman Allows Local Privilege Escalation via Long MANPATH Environment Variable Local Privilege Escalation in Xman via Manipulated MANPATH Privilege Escalation via Shared Signal Handlers in FreeBSD 4.3 Privilege Escalation via Misconfigured dlkm Static Kernel Symbol Table in HP-UX 11.11 Privilege Escalation Vulnerability in HP-UX Login Denial of Service Vulnerability in Cisco IOS PPTP Implementation Denial of Service Vulnerability in Denicomp Winsock RSHD/NT 2.21.00 and Earlier Privilege Escalation Vulnerability in FreeBSD 4.4 AIO Operations Denial of Service Vulnerability in Microsoft IIS 5.0 Arbitrary Command Execution in csvform.pl 0.1 Remote Code Execution Vulnerability in MAILTO 1.0.9 and Earlier Cleartext Password Storage Vulnerability in IBM Websphere Application Server 3.5.3 and Earlier Lack of MD5 Password Support in Default PAM Files in Mandrake Linux 8.1 Denial of Service Vulnerability in WebSeal of IBM Tivoli SecureWay Policy Director 3.8 Arbitrary Code Execution via Citrix ICA Client for Windows 6.1 EFTP 2.0.8.346 Directory Traversal Vulnerability Denial of Service Vulnerability in Zyxel Prestige 681 and 1600 SDSL Routers Default Username and Password Vulnerability in Novell Groupwise 5.5 and 6.0 Servlet Gateway Webmin Directory 0.91 edit_action.cgi Directory Traversal Vulnerability Arbitrary File Overwrite Vulnerability in klprfax_filter in KDE2 KDEUtils Privilege Escalation via RLPDaemon in HP-UX 10.20 and 11.0 Cross-Site Scripting Vulnerability in Agora.cgi with Debug Mode Enabled Hot Key Bypass Vulnerability in Microsoft Windows XP Arbitrary Code Execution Vulnerability in wmcube-gdk for WMCube/GDK 0.98 Unquoted Scripting Commands in DeleGate 7.7.0 and 7.7.1 403 Forbidden Error Page Vulnerability Title: Local Privilege Escalation via Format String Vulnerability in gpm-root Directory Traversal Vulnerability in Total PC Solutions PHP Rocket Add-in for FrontPage 1.0 Arbitrary File Read Vulnerability in Last Lines 2.0 Arbitrary Command Execution in Matrix CGI Vault Last Lines 2.0 Remote Code Execution Vulnerability in DayDream BBS 2.9 through 2.13 DayDream BBS Format String Vulnerability Directory Traversal Vulnerability in zml.cgi Allows Remote File Read Unrestricted SNMP Access in Cisco UBR900 Series Routers Privilege Escalation Vulnerability in Ipswitch IMail 7.0.4 and Earlier Cross-Site Scripting Vulnerability in catgy.cgi for Aktivate 1.03 Default Username and Password in DataWizard FtpXQ 2.0 and 2.1 Allows Unauthorized File Access Arbitrary Code Execution Vulnerability in Marcus S. Xenakis Unix Manual 1.0 PFinger 0.7.5-0.7.7 Format String Vulnerability Remote Code Execution Vulnerability in Oracle 9i Application Server via Buffer Overflow in PL/SQL Apache Module PL/SQL Apache Module Directory Traversal Vulnerability Denial of Service Vulnerability in Microsoft Internet Explorer for Unix 5.0SP1 Denial of Service Vulnerability in Microsoft Internet Explorer 6.0 and Earlier Plaintext Password Storage in D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point Default SNMP Community String Vulnerability in D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point Plesk Server Administrator (PSA) 1.0 Remote PHP Source Code Disclosure Vulnerability Unauthenticated Remote Access Vulnerability in ELSA Lancom 1100 Office Web Administration Server SQL Code Injection Vulnerability in AdRotate Pro 2.0 Denial of Service Vulnerability in Hughes Technology Mini SQL 2.0.10-2.0.12 SQL Injection Vulnerability in AdCycle 1.17 and Earlier Bypassing Security Controls in Zope through dtml-var fmt Attribute Remote Code Execution Vulnerability in gzip 1.3x, 1.2.4, and other versions via Long File Name Buffer Overflow Vulnerabilities in Icecast and libshout Icecast Buffer Overflow Vulnerability Remote Mailbox Access Vulnerability in GroupWise 5.5 and 6 Arbitrary Directory Content Disclosure in GroupWise WebAccess 5.5 Information Disclosure Vulnerability in Netware Enterprise Web Server 5.1 with GroupWise WebAccess 5.5 Remote Code Execution in Bharat Mediratta Gallery PHP Script Remote Code Execution in pSlash PHP Script Arbitrary Code Execution via Remote File Inclusion in myphpPagetool PHP Script Remote Code Execution in Phormation PHP Script Vulnerability: Inability to End Processes with Uppercase Letters in Windows 2000 Task Manager PowerNet IX Denial of Service Vulnerability Privilege Escalation Vulnerability in Engarde Secure Linux 1.0.1 Un-CGI Remote Command Execution Vulnerability Un-CGI 1.9 Directory Traversal Arbitrary Code Execution Vulnerability Denial of Service Vulnerability in Scripting.FileSystemObject for Microsoft IIS 4.0 and 5.0 TCP MSS Amplification Vulnerability Denial of Service Vulnerability in Opera 5.0 for Linux Arbitrary Command Execution Vulnerability in PHP 4.0.5 - 4.1.0 Remote File Access and Modification Vulnerability in PHP 4.0.4pl1 and 4.0.5 Arbitrary ASP Script Viewing Vulnerability in vWebServer 1.2.0 Denial of Service Vulnerability in vWebServer 1.2.0 via MS-DOS Device Names in URLs Denial of Service Vulnerability in vWebServer 1.2.0 Denial of Service Vulnerability in SmallHTTP 1.204 through 3.00 beta 8 Authentication Bypass Vulnerability in Network Associates PGP Keyserver 7.0 Plain Text Storage of Voicemail Passwords in COM2001 InternetPBX Clear-text Transmission of User Credentials in Web Access Component of COM2001 Alexis 2.0 and 2.1 Plain Text Storage of MySQL Password in WinMySQLadmin 1.1 Allows Unauthorized Access Arbitrary World-Writeable File Creation Vulnerability in HP-UX 11.11, 11.04, and 11.00 Arbitrary Javascript Execution Vulnerability in Horde IMP Local File Inclusion Vulnerability in Horde IMP 2.2.6 and earlier Denial of Service Vulnerability in Avaya Argent Office Weak Encryption in Avaya Argent Office Allows Remote Attackers to Gain Administrator Privileges Remote Spoofing Vulnerability in Avaya Argent Office 2.1 Allows Unauthorized Hold Music Modification Avaya Argent Office 2.1 SNMP Authentication Bypass Vulnerability Denial of Service Vulnerability in Pragma InterAccess 4.0 build 5 Privilege Escalation Vulnerability in mkacct in HP-UX 11.04 with Virtualvault Operating System (VVOS) 4.0 and 4.5 IBM alphaWorks Java TFTP Server 1.21 Directory Traversal Vulnerability Directory Traversal Vulnerability in DNHTTPD 0.4.1 and Earlier Directory Traversal Vulnerability in GNU tar 1.13.19 and Earlier Arbitrary File Overwrite Vulnerability in Info-ZIP UnZip 5.42 and Earlier Arbitrary File Overwrite Vulnerability in Info-ZIP UnZip 5.42 and Earlier Directory Traversal Vulnerability in PKZipc 4.00 and Earlier Allows Arbitrary File Overwrite Directory Traversal Vulnerability in RAR 2.02 and Earlier: Arbitrary File Overwrite via Dot Dot Attack Privilege Escalation Vulnerability in wmtv 0.6.5 and Earlier mxcsr P4 Denial of Service Vulnerability in Linux Kernel MySQL Buffer Overflow Vulnerability MySQL SHOW GRANTS Command Vulnerability Symlink Attack Vulnerability in ispell before 3.1.20 Arbitrary File Overwrite Vulnerability in makewhatis (man package) Bypassing Security Controls in Zope through dtml-var fmt Attribute Buffer Overflow in print-rx.c of tcpdump 3.x: Remote Code Execution and Denial of Service Vulnerability User Enumeration Vulnerability in Ipswitch IMail 7.04 and Earlier User Information Modification Vulnerability in Ipswitch IMail Web Messaging Server Information Disclosure Vulnerability in Ipswitch IMail 7.04 and Earlier Remote Code Execution Vulnerability in Ipswitch IMail Webmail Interface Predictable Session IDs in Ipswitch IMail 7.04 and Earlier: Remote Session Hijacking Vulnerability Directory Traversal Vulnerability in Ipswitch IMail 7.04 and Earlier: Unauthorized Access to User Mailboxes Session Hijacking Vulnerability in Ipswitch IMail 7.04 and Earlier Remote Code Execution Vulnerability in Ipswitch IMail Web Calendar Denial of Service Vulnerability in Windows 2000 and Windows NT via Command Prompt and F7 Key Denial of Service Vulnerability in Quake 3 Arena 1.29f and 1.29g Arbitrary Code Execution and Privilege Escalation in Active Classifieds Free Edition 1.0 3Com PS40 SuperStack II Telnet Server Vulnerability: Lack of Delay or Disconnect for Incorrect Credentials Sambar Telnet Proxy/Server Long Password Denial of Service and Arbitrary Code Execution Vulnerability Buffer Overflow Vulnerability in 3Com HomeConnect Cable Modem External with USB (3CR29223) Web Server Buffer Overflow Vulnerability in A-V Tronics Inetserv 3.2.1 and Earlier Webmail Interface Cerberus FTP Server Directory Traversal Vulnerability Arbitrary File Inclusion Vulnerability in More.groupware PHP Script Actionpoll PHP Script 1.1.2 - Remote File Inclusion Vulnerability Arbitrary File Inclusion Vulnerability in Webodex PHP Script 1.0 and Earlier Arbitrary File Inclusion Vulnerability in Zorbat Zorbstats PHP Script Directory Traversal Vulnerability in Dynu FTP Server 1.05 and Earlier Symlink Attack Vulnerability in rcs2log Windows 2000 Change Password Vulnerability Default Configuration of SecuRemote Allows Unauthorized Access to Sensitive Network Information Buffer Overflow Vulnerability in SHOUTcast Server 1.8.2 Arbitrary UIN Addition Vulnerability in ICQ 2001a Alpha and Earlier iPlanet Directory Server Remote Code Execution and Denial of Service Vulnerability Buffer Overflow Vulnerability in iPlanet Directory Server 4.1.4 and Earlier (LDAP) iPlanet Directory Server Format String Vulnerability Buffer Overflow Vulnerability in IBM SecureWay 3.2.1: Remote Code Execution and Denial of Service Remote Code Execution and Denial of Service Vulnerability in IBM SecureWay 3.2.1 Buffer Overflow Vulnerability in Lotus Domino R5 Allows Remote Code Execution Lotus Domino R5 Format String Vulnerability Lotus Domino R5 Denial of Service and Arbitrary Code Execution Vulnerability Remote Code Execution Vulnerability in Critical Path Directory Servers Remote Code Execution and Denial of Service Vulnerability in InJoin and LiveContent Directory Servers Buffer Overflow Vulnerability in Teamware Office Enterprise Directory Remote Code Execution and Denial of Service Vulnerability in Teamware Office Enterprise Directory Remote Code Execution and Denial of Service Vulnerabilities in Qualcomm Eudora WorldMail Server Denial of Service Vulnerability in Microsoft Exchange 5.5 2000 Remote Code Execution and Denial of Service Vulnerability in Network Associates PGP Keyserver 7.0 Denial of Service and Arbitrary Code Execution in Oracle Internet Directory Server Default Umask Vulnerability in xinetd 2.1.8 and Earlier Buffer Overflow Vulnerability in MIT Kerberos 5 (krb5) 1.2.2 and Earlier Privilege Escalation Vulnerability in Paul Jarc idtools Remote Code Execution via XML Stylesheets in Internet Explorer and Outlook Express Remote Code Execution in Eudora 5.1 via Spoofed Image Link Privilege Escalation Vulnerability in pmake before 2.1.35 in Turbolinux 6.05 and Earlier Remote Code Execution Vulnerability in Solaris ypbind Daemon Buffer Overflow Vulnerability in rsh on AIX 4.2.0.0 Buffer Overflow Vulnerability in rsh on AIX 4.2.0.0 Local Privilege Escalation via Command Line Options in mandb Remote Code Execution Vulnerability in Linux CUPS before 1.1.6 Symlink Vulnerability in Linux CUPS before 1.1.6 Allows Local File Overwrite Arbitrary File Read Vulnerability in PHPSlash 0.6.1 CesarFTP 0.98b Directory Traversal Vulnerability Plaintext Storage of Usernames and Passwords in CesarFTP 0.98b and Earlier Denial of Service Vulnerability in Beck IPC GmbH IPC@CHIP Embedded-Webserver IPC@CHIP TelnetD Server Account Enumeration Vulnerability Weak Password Protection in Beck IPC GmbH IPC@CHIP Telnet Service Remote Lockout Vulnerability in Beck GmbH IPC@Chip TelnetD Service Default Installation of Beck GmbH IPC@Chip Embedded Web Server Allows Remote Information Disclosure Denial of Service Vulnerability in Apache Web Server (Windows and OS/2) Arbitrary Code Execution in WebStore 400/400CS 4.14 via ws_mail.cgi Remote Authentication Bypass in WSSecurity.pl of WebStore Privilege Escalation via PATH Manipulation in Jetico BestCrypt Local Privilege Escalation via Symlink Attack in Computer Associates ARCserveIT Windows 2000 Local Privilege Escalation and Denial of Service Vulnerability SQL Injection Vulnerability in TWIG 2.6.2 and Earlier Race condition vulnerability in Sendmail Arbitrary Javascript Execution Vulnerability in Namazu 2.0.7 and Earlier Arbitrary Javascript Execution Vulnerability in Namazu 2.0.8 and Earlier Cross-Site Scripting Vulnerability in Namazu 2.0.9 and Earlier Arbitrary File Read and Write Vulnerability in Ghostscript Weak Password Hashing Vulnerability in NetWin Authentication Module Buffer Overflow Vulnerabilities in NetWin Authentication Module (NWAuth) 3.0b and Earlier Weak Password Encryption in NetWin SurgeFTP 2.0f and Earlier Allows Brute Force Attacks on Administrator Account Multiple vulnerabilities in phpMyChat before 0.14.5: User Spoofing and Variable Initialization Issues Privilege Escalation in phpMyChat before 0.14.4 via Alternate Library File Vulnerability: Remote Code Execution via Trojan Horse Volution Server Potential Exploitation of SANE Versions Prior to 1.0.5: PNM and saned Vulnerability Security Vulnerability in TWIG 2.7.1: Incorrect Security Rights and Mailto Link Generation Critical Server Vulnerability in nPULSE (before 0.53p4) Multiple Instance Vulnerability in phpWebSite before 0.7.9 Allows for Administrative Privilege Escalation Unqualified Domain Name Vulnerability in AutoDNS Critical Security Vulnerability in IntraGnat 1.4 and Earlier Versions Dynamic Variable Parsing Vulnerability in netscript before 1.6.3 Improper Verification of Administrative Access Level in PHPSlice 0.1.1 - 0.1.6 Data Corruption Vulnerability in iPlanet Web Server 4 on VVOS 4.0 SQL Injection Vulnerability in pam-pgsql before 0.5.2 Arbitrary Code Execution via prepend.php3 in PHPLib Default Configuration of Oracle Application Server 9iAS 1.0.2.2 Allows Anonymous Deployment of Applications via SOAP Path Disclosure Vulnerability in Oracle 9i Application Server 1.0.2 Vulnerability: File Type Bypass in ZoneAlarm 2.6 and Earlier Privilege Escalation Vulnerability in expect before 5.32 Arbitrary Code Execution Vulnerability in Tcl/Tk Package (tcltk) 8.3.1 Buffer Overflow Vulnerability in RADIUS Digest Calculation Function Denial of Service Vulnerability in Multiple RADIUS Implementations Symlink Attack Vulnerability in fetchmailconf SQL Injection Vulnerability in PostgreSQL Authentication Modules Improper Handling of from Option in OpenSSH Key Authentication OpenSSH Echo Simulation Traffic Analysis Countermeasure Vulnerability Predictable Temporary File Names in setserial 2.17-4 and Earlier: Local Unauthorized Operations Vulnerability Privilege Escalation via ptrace Vulnerability Virtual Host Misconfiguration Vulnerability in Apache PHP Module Arbitrary File Read Vulnerability in WFTPD 3.00 Inconsistent Response Generation Vulnerability in iptables Inaccurate Rate Limit Conversion in iptables 1.2.4 and Earlier Multiple Remote Code Execution Vulnerabilities in xinetd 2.3.0 and Earlier User Page Vulnerability in binfmt_misc in Linux Kernel CPIA Driver Off-by-One Vulnerability in Linux Kernel Unregistered CPUID and MSR Drivers Vulnerability in Linux Kernel Denial of Service Vulnerability in Linux Kernel Classifier Code Signedness Error in getsockopt and setsockopt for Linux Kernel before 2.2.19: Local Denial of Service Vulnerability Boundary Cases Vulnerability in sockfilter for Linux Kernel before 2.2.19: Unveiling the Unknown Impact Unidentified Vulnerability in strnlen_user for Linux Kernel Pre-2.2.19 with Undetermined Impact Shared Memory Vulnerability in Linux Kernel 2.2.19 and Earlier Packet Length Validation Vulnerability in Linux Kernel (Versions before 2.2.19) User access asm bug on x86: Memory Modification Vulnerability UDP Port Allocation Vulnerability in Linux Kernel Bugzilla Confidential Bug Access Vulnerability Unescaped Parameters Vulnerability in Bugzilla before 2.14 Insecure URL Handling in Bugzilla before 2.14 Plaintext Password Storage and Email Vulnerability in Bugzilla Unrestricted Access to sanitycheck.cgi in Bugzilla before 2.14 Inadequate Group Restriction Update in process_bug.cgi Bugzilla Group Security Bypass Vulnerability Arbitrary File Read Vulnerability in WebMail 2.0.1 in Cobalt Qube 3 Insecure Permissions in dexconf of XFree86 Xserver 4.1.0-2 Allows Unauthorized File Manipulation Remote Code Execution via Chromeless Windows in Internet Explorer 6 and Earlier Privilege Escalation via Format String Vulnerability in gm4 on Mac OS X Local Privilege Escalation: Password File Disclosure via nidump on MacOS X Remote Code Execution Vulnerability in ncompress 4.2.4 and Earlier Unlogged Anonymous FTP Access Vulnerability in Solaris BSM Arbitrary Zero-Byte File Removal Vulnerability in vi.recover in OpenBSD Cross-Site Scripting (XSS) Vulnerabilities in AOL Instant Messenger (AIM) 4.4 Denial of Service Vulnerability in AOL Instant Messenger (AIM) 4.7 Denial of Service Vulnerability in AOL Instant Messenger (AIM) 4.7 Denial of Service Vulnerability in AOL Instant Messenger (AIM) 4.7.2480 and Earlier Buffer Overflow Vulnerability in AOL Instant Messenger (AIM) 4.7 Denial of Service Vulnerability in AOL Instant Messenger (AIM) 4.7 and Earlier VNC Authentication Bypass Vulnerability Privilege Escalation via Logged_in Parameter in Advanced Poll (before 1.61) Blank Default Password Vulnerability in Alcatel Speed Touch ADSL Modem Firmware Privilege Escalation via Challenge-Response Authentication in Alcatel Speed Touch Firmware KHDSAA.108 - KHDSAA.134 Unauthenticated Remote Access to Alcatel Speed Touch TFTP Server Remote Code Execution Vulnerability in ColdFusion Server 2.0 through 4.5.1 SP2 Default Password Vulnerability in Beck GmbH IPC@Chip FTP and Telnet Services Buffer Overflow Vulnerability in mcedit in Midnight Commander 4.5.1 Unsecured Default Access in Cayman 3220-H DSL Router 1.0 Nokia Firewall Appliances SYN Defender Active Gateway Mode TCP Handshake Vulnerability Cherokee Web Server Directory Traversal Vulnerability Improper Privilege Dropping in Cherokee Web Server Cisco IOS SNMP Information Disclosure Vulnerability Denial of Service Vulnerability in inetd on Compaq Tru64 UNIX 5.1 Predictable Password Response Vulnerability in Dallas Semiconductor iButton DS1991 Path Disclosure Vulnerability in easyScripts easyNews 1.5 Denial of Service Vulnerability in Handspring VisorPhone Springboard Module Buffer Overflow Vulnerability in HP-UX Text Editors Remote Access Vulnerability in AIX 5.1L Login with Loadable Authentication Modules VisualAge for Java 3.5 Professional Cross-Site Scripting (XSS) Vulnerability Buffer Overflow Vulnerability in innfeed for ISC InterNetNews (INN) before 2.3.0 Unencrypted Communication Vulnerability in KTH Kerberos IV and Kerberos V (Heimdal) for Telnet Clients Kerberos Telnet Protocol Downgrade Vulnerability SMTP Server Mail Relaying Bypass Vulnerability in Lotus Domino 5.0-5.7 World-readable index files in Mac OS X 10.0 through 10.0.4 disclose sensitive information Privilege Escalation via NetInfo Manager in Mac OS X 10.0-10.1 Arbitrary File Overwrite and Code Execution Vulnerability in Magic eDeveloper Enterprise Edition 8.30-5 and Earlier Directory Index Listing Vulnerability in Apache Server Denial of Service Vulnerability in Microsoft Internet Explorer 5.0 through 6.0 via Crafted FTP URL Memory Leak Vulnerability in SNMP LAN Manager MIB Extension for Microsoft Windows 2000 DNS Cache Poisoning Vulnerability in Windows NT 4.0 and Windows 2000 Server Remote Code Execution Vulnerability in MySQL 3.23.33 and Earlier via Buffer Overflow in libmysqlclient.so Remote Code Execution Vulnerability in MySQL 3.23.33 and earlier via Long Drop Database Request Unicode Character Bypass Vulnerability in Netegrity SiteMinder 3.6 through 4.5.1 Remote Code Execution Vulnerability in Gauntlet Firewall's smap/smapd and CSMAP Daemons Buffer Overflow in CrazyWWWBoard 2000p4 and 2000LEp5: Remote Code Execution via HTTP_USER_AGENT Novell GroupWise Directory Traversal Vulnerability Bypassing Resource Limits in OpenSSH 2.9 and Earlier PostNuke 0.62-0.64 Article.php SQL Injection Vulnerability WebID Directory Traversal Vulnerability in RSA Security SecurID 5.0 WebID Debug Mode Vulnerability in RSA Security SecurID 5.0 Plaintext Password Transmission Vulnerability in RhinoSoft Serv-U 3.0 Clear-text Password Exposure in Crystal Reports HTML Pages Fragmented Packets Bypass SurfControl SuperScout Filtering Buffer Overflow Vulnerability in VanDyke SecureCRT: Remote Code Execution Weak Random Number Generation in mkpasswd in expect 5.2.8 Remote File Inclusion Vulnerability in phpSecurePages 0.24 and Earlier: Arbitrary PHP Code Execution RC4 Stream Cipher Vulnerability in SSH1: Undetectable Message Modification via CRC XOR Vulnerability: Modification of Final Block in IDEA Cipher Implementation by SSH1 Arbitrary PHP Code Execution in phpBB 1.4.0 and Earlier via Invalid Language Value SQL Injection Vulnerability in prefs.php in phpBB 1.4.0 and 1.4.1 SSH-1 Protocol Vulnerability: Man-in-the-Middle Attack and Session ID Replay Exploit Vulnerability: SSH 2.0 Allows Silent Connection Redirection via DNS Cache Poisoning Replay Attack Vulnerability in SSH 2.0 with RC4 and Password Authentication Replay Attack Vulnerability in SSH 2.0 with RC4 Encryption and Disallowed NULL Passwords Remote Domain Authorization Bypass in BEA Tuxedo 7.1 Buffer Overflow Vulnerability in xlock in UnixWare 7.1.0 and 7.1.1 and Open Unix 8.0.0 Arbitrary File Deletion Vulnerability in Sun SMC 2.0 Untrusted Applets Exploit System Clipboard Access in Java Runtime Environment (JRE) and SDK 1.2 through 1.3.0_04 Plaintext Password Storage in Xitami 2.4 through 2.5 b4 SQL Injection Vulnerability in bb_memberlist.php for phpBB 1.4.2 User Account Enumeration in One-Time Passwords In Everything (OPIE) 2.32 and 2.4 Remote Access Vulnerability in Alcatel ADSL Modems: Unauthorized Firmware and Configuration Modification via TFTP Bounce Attack Symlink Attack Vulnerability in Qualcomm Qpopper's popauth Utility Vulnerability: Lack of Double-Reverse DNS Lookup in Open Projects Network IRC Daemon u2.10.05.18 Denial of Service Vulnerability in Microsoft Internet Explorer 6 Denial of Service Vulnerability in Mozilla 0.9.6 Denial of Service Vulnerability in Opera 5.11 Local Privilege Escalation: Arbitrary File Overwrite via Hardlink in script Command Arbitrary Command Execution in Network Query Tool 1.0 Acme Labs thttpd 1.95 through 2.20 Basic Authentication Off-by-One Buffer Overflow Vulnerability Vulnerability: Password Differentiation in Microsoft Internet Explorer 4.0-6.0 Buffer Overflow Vulnerability in mod_bf 0.2 Allows Arbitrary Command Execution Inconsistent Error Messages in Check Point VPN-1 4.1SP4 Allows Brute Force Attacks Inadequate Hostname Verification in ProFTPD 1.2.2rc2 and Possibly Other Versions Denial of Service Vulnerability in ProFTPD 1.2.1 and Possibly Other Versions Arbitrary Command Execution in Mountain Network Systems WebCart 8.4 via NEXTPAGE Parameter Remote Account Enumeration Vulnerability in Sun Solaris and SunOS Arbitrary Command Execution Vulnerability in Lotus Notes R5 Client 4.6 Session Data Injection Vulnerability in Tinc 1.0pre3 and 1.0pre4 Privilege Escalation Vulnerability in HP Secure OS Software for Linux 1.0 Unauthenticated Remote Login Vulnerability in OpenSSH with Kerberos V Buffer Overflow Vulnerability in lpstat in SCO OpenServer 5.0 through 5.0.6a Privilege Escalation Vulnerability in geteuid on HP-UX 11.20 Itanium Architecture Arbitrary File and Directory Disclosure Vulnerability in Allaire JRun Arbitrary JSP Source Code Disclosure in JRun Web Server and IIS Remote Code Execution in Allaire JRun 3.1 via Direct Access to WEB-INF and META-INF Directories Session Hijacking Vulnerability in Macromedia JRun 3.0 and 3.1 Privilege Escalation via Insecure Security Context Passing in ColdFusion 4.5 and 5 Inherited NTFS Permissions Vulnerability on Macintosh Clients with Windows 2000 SP1 Arbitrary Web Script Injection Vulnerability in phpReview 0.9.0 rc2 and Earlier Cleartext Authentication Information Storage Vulnerability in Windows 2000 RunAs Denial of Service Vulnerability in RunAs (runas.exe) in Windows 2000 Spoofed Named Pipe Vulnerability in Windows 2000 RunAs Service Xircom REX 6000 Cleartext PIN Vulnerability Arbitrary Web Script Injection Vulnerability in PostNuke 0.64 Arbitrary Web Script Injection Vulnerability in IMessenger for PHP-Nuke Arbitrary Code Injection through DMOZGateway Module in PHP-Nuke Arbitrary Web Script Injection in PHP-Nuke 5.3.1 and Earlier Directory Traversal Vulnerability in easyNews 1.5 and Earlier: Remote File Modification Arbitrary Web Script Injection in easyNews 1.5 and Earlier Cleartext Storage of Administration Passwords in easyNews 1.5 and Earlier Information Disclosure Vulnerability in AmTote International Homebet Program Buffer Overflow in rpc.yppasswdd (AIX yppasswd Server) Allows Unauthorized Access World-writable temporary file vulnerability in Webmin 0.80 and 0.88 Buffer Overflow Vulnerability in Claris Emailer 2.0v2: Remote Code Execution and Denial of Service Session Hijacking Vulnerability in WebX Bulletin Board Denial of Service Vulnerability in Microsoft ISA Server 2000 Predictable Session ID Generation in Apache 1.3.11 through 1.3.20 Insecure Account Creation in Slashcode 2.0 Allows Unauthorized Access via Brute Force Attack Cleartext Storage of User Credentials in Autogalaxy Cookies Cleartext Storage of Usernames and Passwords in Cookies Vulnerability Default Administrative Password Vulnerability in SpeedXess HA-120 DSL Router Stack Consumption Vulnerability in Internet Explorer's settimeout Function Denial of Service Vulnerability in IPRoute 0.973, 0.974, and 1.18 Buffer Overflow Vulnerability in UUCP in BSDI BSD/OS 3.0 through 4.2 Improper MIME Encoding Vulnerability in NAI WebShield SMTP 4.5 and 4.5 MR1a Default Administration Password Vulnerability in Axis Network Cameras Macromedia JRun Web Server Directory Traversal Vulnerability Session Hijacking via JRun URL Rewriting Weak Encryption of User Credentials in Pathways Homecare 6.5 Allows Privilege Escalation Vulnerability: Outlook Express 6.0 Allows Execution of Arbitrary Code via Forwarded Email Attachments ZoneAlarm Firewall Bypass Vulnerability Bypassing Filtering in Tiny Personal Firewall 1.0 and 2.0 via Non-Standard TCP Packets World-writable Base64 Encoded Log Files in CentraOne 5.2 and Centra ASP with Basic Authentication Disk Quota Bypass Vulnerability in Linux Kernel 2.2.19 Denial of Service Vulnerability in ssdpsrv.exe in Windows ME Buffer Overflow in SETI@home 3.03 Allows Arbitrary Code Execution via Long Command Line Options Denial of Service Vulnerability in IBM AIX 430 Insecure Terminal Privilege Management in Solaris 8 Apache Web Server Log Spoofing Vulnerability Privilege Escalation via Buffer Overflow in IBM AIX FTPD Denial of Service Vulnerability in Snort IP Defragmenter (frag2) User Mode Return Vulnerability in uipc_syscalls.c Denial of Service Vulnerability in Win32k.sys Buffer Overflow Vulnerability in Xvt 2.1 in Debian Linux 2.2 Privilege Escalation via Format String Vulnerability in nvi Unspecified Vulnerability Allowing Unauthorized Access to Servlet Resources in Tomcat 3.2.1 on HP Secure OS for Linux 1.0 Denial of Service Vulnerability in setrlimit in HP-UX Command Line Authentication Vulnerability in MacOS X PPPD Remote Code Execution via Format String Vulnerability in libvanessa_logger 0.0.1 in Perdition 0.1.8 Lotus Domino Server Vulnerability: Bypassing Security Restrictions and Unauthorized Access to Notes Database Files Unverified FQDN URL Verification Vulnerability in CMG WAP Gateway Openwave WAP Gateway SSL Certificate Spoofing Vulnerability Account Lockout Denial of Service Vulnerability in Windows XP with Fast User Switching Cleartext Transmission of User Account Names in Windows XP Remote Desktop Client Bypassing Packet Filters via Small Packets in Netfilter MAC Module Remote Code Execution Vulnerability in Trend Micro InterScan VirusWall 3.51 for Windows NT Remote Code Execution Vulnerability in Trend Micro InterScan VirusWall 3.5.1 Apple Personal Web Sharing (PWS) Denial of Service Vulnerability Buffer Overflow Vulnerability in Cron on Caldera UnixWare 7 Privilege Escalation Vulnerability in CDE in Caldera OpenUnix 7.1.0, 7.1.1, and 8.0 Local Privilege Escalation Vulnerability in SCO OpenServer 5.0.6 and Earlier Null Termination Vulnerability in UnixWare 7 and OpenUnix 8.0.0 Timed Program Directory Traversal Vulnerability in ScriptEase viewcode.jse for Netware 5.1 SP2 and Earlier Bypassing E-mail Attachment Filtering Policies in Clearswift MAILsweeper for SMTP 4.2 Buffer Overflow in Sun Solaris 8 LDAP Naming Services Library (libsldap) Allows Arbitrary Code Execution Remote Code Execution via Crafted Control File in Solaris LPD Daemon Arbitrary Command Execution in CardBoard 2.4 Greeting Card CGI OpenSSH 2.3.1 Development Snapshot Vulnerability: Bypassing Authentication via SSH-2 Public Key SimpleServer:WWW 1.13 Directory Traversal Vulnerability Denial of Service Vulnerability in NWFTPD.nlm FTP Server Arbitrary File Modification Vulnerability in a2ps 4.14 and Earlier Multiple Default/Hardcoded Password Vulnerabilities in GE Healthcare eNTEGRA P&R