CVE List

Id CVE No. Status Description Phase Votes Comments Actions
3733  CVE-2001-0927  Candidate  Format string vulnerability in the permitted function of GNOME libgtop_daemon in libgtop 1.0.12 and earlier allows remote attackers to execute arbitrary code via an argument that contains format specifiers that are passed into the (1) syslog_message and (2) syslog_io_message functions.  Modified (20050309)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(3) Christey, Foat, Wall  Frech> XF:libgtop-format-string(7608) | Christey> BID:3586 | URL:http://www.securityfocus.com/bid/3586 | CONECTIVA:CLA-2002:448 | URL:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000448 | MANDRAKE:MDKSA-2001:094 | URL:http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-094.php3 | DEBIAN:DSA-098 | URL:http://www.debian.org/security/2002/dsa-098  View
3653  CVE-2001-0847  Candidate  Lotus Domino Web Server 5.x allows remote attackers to gain sensitive information by accessing the default navigator $defaultNav via (1) URL encoding the request, or (2) directly requesting the ReplicaID.  Modified (20020226-01)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(3) Bishop, Foat, Wall  Frech> XF:lotus-domino-navigator-access(7423)  View
3699  CVE-2001-0893  Candidate  Acme mini_httpd before 1.16 allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.  Modified (20050703)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(2) Foat, Wall  Frech> XF:httpd-bypass-permissions(7541)  View
3719  CVE-2001-0913  Candidate  Format string vulnerability in Network Solutions Rwhoisd 1.5.7.2 and earlier, when using syslog, allows remote attackers to corrupt memory and possibly execute arbitrary code via a rwhois request that contains format specifiers.  Proposed (20020131)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(2) Foat, Wall  Frech> XF:rwhoisd-syslog-format-string(7597)  View
2693  CVE-2000-1126  Candidate  Vulnerability in auto_parms and set_parms in HP-UX 11.00 and earlier allows remote attackers to execute arbitrary commands or cause a denial of service.  Modified (20090302)  ACCEPT(3) Armstrong, Baker, Cole | MODIFY(1) Frech | NOOP(1) Wall  Frech> XF:hpux-autoparms-execute-commands(5961)  View

Page 20049 of 20943, showing 5 records out of 104715 total, starting on record 100241, ending on 100245

Actions