|
313271
|
7.8 |
HIGH
Local
|
distrotech
|
cvs
|
Off-by-one overflow in the CVS PreservePermissions of rcs.c for CVSD before 1.11.2 allows local users to execute arbitrary code.
|
CWE-193
Off-by-one Error
|
CVE-2002-0844
|
2024-02-2 11:49 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313272
|
7.5 |
HIGH
Network
|
ncftp
|
ncftpd_server
|
Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command.
|
CWE-193
Off-by-one Error
|
CVE-1999-1568
|
2024-02-2 11:49 |
1999-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313273
|
7.8 |
HIGH
Local
|
proftpd
|
proftpd
|
Off-by-one buffer overflow in _xlate_ascii_write() in ProFTPD 1.2.7 through 1.2.9rc2p allows local users to gain privileges via a 1024 byte RETR command.
|
CWE-193
Off-by-one Error
|
CVE-2004-0346
|
2024-02-2 11:48 |
2004-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313274
|
7.8 |
HIGH
Local
|
microsoft
|
excel
office_sharepoint_server
office_compatibility_pack
office
office_excel_viewer
open_xml_file_format_converter
|
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack f…
|
CWE-843
Type Confusion
|
CVE-2010-0258
|
2024-02-2 11:38 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313275
|
- |
|
linux
|
linux_kernel
|
nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR privilege before setting access controls (ACL) on files on exported NFS filesystems, which allows remote attackers to bypass ACLs f…
|
CWE-862
Missing Authorization
|
CVE-2005-3623
|
2024-02-2 11:19 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313276
|
7.5 |
HIGH
Network
|
oracle
|
sun_one_application_server
|
Sun ONE Application Server 7.0 for Windows 2000/XP allows remote attackers to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2003-0411
|
2024-02-2 11:18 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313277
|
7.5 |
HIGH
Network
|
symantec
|
norton_antivirus
|
Norton Anti-Virus (NAV) allows remote attackers to bypass content filtering via attachments whose Content-Type and Content-Disposition headers are mixed upper and lower case, which is ignored by some…
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2002-0485
|
2024-02-2 11:17 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313278
|
7.5 |
HIGH
Network
|
netscape
|
fasttrack_server
|
Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-1999-0239
|
2024-02-2 11:16 |
1998-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313279
|
9.8 |
CRITICAL
Network
|
sir
|
gnuboard
|
The file extension check in GNUBoard 3.40 and earlier only verifies extensions that contain all lowercase letters, which allows remote attackers to upload arbitrary files via file extensions that inc…
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2005-0269
|
2024-02-2 11:15 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313280
|
9.8 |
CRITICAL
Network
|
apache
|
http_server
|
Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2001-0766
|
2024-02-2 11:13 |
2001-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
