CVE List

Id CVE No. Status Description Phase Votes Comments Actions
5361  CVE-2002-0973  Candidate  Integer signedness error in several system calls for FreeBSD 4.6.1 RELEASE-p10 and earlier may allow attackers to access sensitive kernel memory via large negative values to the (1) accept, (2) getsockname, and (3) getpeername system calls, and the (4) vesa FBIO_GETPALETTE ioctl.  Modified (20050529)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(4) Christey, Cox, Foat, Wall  Christey> BID:5493 | URL:http://online.securityfocus.com/bid/5493 | Frech> XF:freebsd-negative-system-call-bo(9903)  View
5371  CVE-2002-0983  Candidate  IRC client irssi in irssi-text before 0.8.4 allows remote attackers to cause a denial of service (crash) via an IRC channel that has a long topic followed by a certain string, possibly triggering a buffer overflow.  Modified (20050528)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(4) Christey, Cox, Foat, Wall  Christey> BUGTRAQ:20020619 DoS on irssi 0.8.4 | URL:http://online.securityfocus.com/archive/1/277686 | XF:irssi-long-topic-dos(9395) | URL:http://www.iss.net/security_center/static/9395.php | Frech> XF:irssi-long-topic-dos(9395)  View
5420  CVE-2002-1032  Candidate  Buffer overflow in KeyFocus (KF) web server 1.0.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed HTTP header.  Proposed (20020830)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(3) Cox, Foat, Wall  Frech> XF:kfwebserver-http-header-bo(10461)  View
4935  CVE-2002-0544  Candidate  Aprelium Abyss Web Server (abyssws) before 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges.  Proposed (20020611)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(3) Cox, Foat, Wall  Frech> XF:abyss-unicode-directory-traversal(8805)  View
3698  CVE-2001-0892  Candidate  Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.  Proposed (20020131)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(3) Christey, Foat, Wall  Frech> XF:httpd-bypass-permissions(7541) | Christey> CONECTIVA:CLA-2003:777  View

Page 20048 of 20943, showing 5 records out of 104715 total, starting on record 100236, ending on 100240

Actions