|
313381
|
9.8 |
CRITICAL
Network
|
suse
|
suse_linux
|
The default permissions of /dev/kmem in Linux versions before 2.0.36 allows IP spoofing.
|
CWE-276
Incorrect Default Permissions
|
CVE-1999-0426
|
2024-02-9 00:50 |
1999-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313382
|
7.8 |
HIGH
Local
|
isc
|
bind
|
dnskeygen in BIND 8.2.4 and earlier, and dnssec-keygen in BIND 9.1.2 and earlier, set insecure permissions for a HMAC-MD5 shared secret key file used for DNS Transactional Signatures (TSIG), which al…
|
CWE-276
Incorrect Default Permissions
|
CVE-2001-0497
|
2024-02-9 00:49 |
2001-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313383
|
7.5 |
HIGH
Network
|
aol
|
aim
|
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote attackers to cause a denial of service (crash) via a malformed buddy icon that causes an integer under…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2005-1891
|
2024-02-9 00:44 |
2005-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313384
|
9.8 |
CRITICAL
Network
|
barton
|
ngircd
|
Integer underflow in the Lists_MakeMask() function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2005-0199
|
2024-02-9 00:43 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313385
|
7.5 |
HIGH
Network
|
samba
canonical
|
ppp
ubuntu_linux
|
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service (daemon crash) via a CBCP packet with an invalid length value that causes pppd to access an inco…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2004-1002
|
2024-02-9 00:43 |
2005-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313386
|
7.5 |
HIGH
Network
|
linux
|
linux_kernel
|
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a denial of service (application crash) via a malformed IP packet.
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2004-0816
|
2024-02-9 00:28 |
2004-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313387
|
9.8 |
CRITICAL
Network
|
symantec
|
liveupdate
|
Symantec LiveUpdate before 1.6 does not use cryptography to ensure the integrity of download files, which allows remote attackers to execute arbitrary code via DNS spoofing of the update.symantec.com…
|
CWE-494
Download of Code Without Integrity Check
|
CVE-2001-1125
|
2024-02-8 11:28 |
2001-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313388
|
9.8 |
CRITICAL
Network
|
phpgedview
|
phpgedview
|
PHP remote file inclusion vulnerability in (1) functions.php, (2) authentication_index.php, and (3) config_gedcom.php for PHPGEDVIEW 2.61 allows remote attackers to execute arbitrary PHP code by modi…
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2004-0030
|
2024-02-8 11:27 |
2004-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313389
|
9.8 |
CRITICAL
Network
|
acme
|
thttpd
|
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
|
CWE-193
Off-by-one Error
|
CVE-2001-1496
|
2024-02-8 11:19 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313390
|
9.8 |
CRITICAL
Network
|
mbedthis
|
appweb_http_server
|
Mbedthis AppWeb HTTP server before 1.1.3 allows remote attackers to bypass access restrictions via a URI with mixed case characters.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2004-2214
|
2024-02-8 11:12 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
