|
313391
|
7.5 |
HIGH
Network
|
microsoft
|
internet_information_services
|
Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers to view the source code for files with extensions containing with one additional character after .html,…
|
CWE-193
Off-by-one Error
|
CVE-2002-1745
|
2024-02-16 06:28 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313392
|
9.8 |
CRITICAL
Network
|
redshift
|
atphttpd
|
Off-by-one buffer overflow in the sock_gets function in sockhelp.c for ATPhttpd 0.4b and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.
|
CWE-193
Off-by-one Error
|
CVE-2002-1816
|
2024-02-16 06:28 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313393
|
7.5 |
HIGH
Network
|
sendmail
|
sendmail
|
Use-after-free vulnerability in Sendmail before 8.13.8 allows remote attackers to cause a denial of service (crash) via a long "header line", which causes a previously freed variable to be referenced…
|
CWE-416
Use After Free
|
CVE-2006-4434
|
2024-02-16 06:20 |
2006-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313394
|
- |
|
microsoft
|
windows_2000
windows_xp
windows_98
windows_nt
windows_server_2003
|
A multi-threaded race condition in the Windows RPC DCOM functionality with the MS03-039 patch installed allows remote attackers to cause a denial of service (crash or reboot) by causing two threads t…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2003-0813
|
2024-02-16 06:19 |
2003-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313395
|
9.8 |
CRITICAL
Network
|
ultimate_php_board_project
|
ultimate_php_board
|
register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote attacker to impersonate the administrator by registering an account …
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2002-1820
|
2024-02-16 06:19 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313396
|
- |
|
openpkg
trustix
hp
avaya
debian
php
|
openpkg
secure_linux
hp-ux
converged_communications_server
debian_linux
php
|
The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by …
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2004-0594
|
2024-02-16 06:17 |
2004-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313397
|
7.5 |
HIGH
Network
|
pldaniels
|
altermime
|
Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attackers to cause a denial of service (crash) via an x-header that causes snprintf overwrite the FFGET_FILE variable with a (null) byte.
|
CWE-193
Off-by-one Error
|
CVE-2002-1721
|
2024-02-16 06:13 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313398
|
7.5 |
HIGH
Network
|
hadrons
|
xfstt
|
Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensitive memory via a malformed client request in the connection handshake, which leaks the memory in the se…
|
CWE-193
Off-by-one Error
|
CVE-2003-0625
|
2024-02-16 06:12 |
2003-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313399
|
- |
|
tcpdump
|
tcpdump
|
Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload with a length t…
|
CWE-125
CWE-191
Out-of-bounds Read
Integer Underflow (Wrap or Wraparound)
|
CVE-2004-0184
|
2024-02-16 06:09 |
2004-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313400
|
- |
|
openbsd
|
openbsd
|
isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with a delete payload containing a large number of SPIs, which triggers an out-of-…
|
CWE-125
Out-of-bounds Read
|
CVE-2004-0221
|
2024-02-16 06:09 |
2004-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
