Export limit exceeded: 351143 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (351143 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0166 | 1 Sun | 1 Nfs | 2026-04-16 | N/A |
| NFS allows users to use a "cd .." command to access other directories besides the exported file system. | ||||
| CVE-1999-1281 | 1 Winddance Networks Corporation | 1 Breeze Network Server | 2026-04-16 | N/A |
| Development version of Breeze Network Server allows remote attackers to cause the system to reboot by accessing the configbreeze CGI program. | ||||
| CVE-1999-0167 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system. | ||||
| CVE-1999-1282 | 1 Realnetworks | 1 Realsystem G2 Server | 2026-04-16 | N/A |
| RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privileges. | ||||
| CVE-2000-0191 | 1 Axis | 1 Storpoint Cd | 2026-04-16 | N/A |
| Axis StorPoint CD allows remote attackers to access administrator URLs without authentication via a .. (dot dot) attack. | ||||
| CVE-1999-0168 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the portmapper despite export restrictions. | ||||
| CVE-1999-0169 | 1 Sun | 1 Nfs | 2026-04-16 | N/A |
| NFS allows attackers to read and write any file on the system by specifying a false UID. | ||||
| CVE-1999-1283 | 1 Opera Software | 1 Opera Web Browser | 2026-04-16 | N/A |
| Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag. | ||||
| CVE-1999-0170 | 1 Digital | 1 Ultrix | 2026-04-16 | N/A |
| Remote attackers can mount an NFS file system in Ultrix or OSF, even if it is denied on the access list. | ||||
| CVE-2006-3573 | 1 Milan Mimica | 1 Sparklet | 2026-04-16 | N/A |
| Format string vulnerability in the WriteText function in agl_text.cpp in Milan Mimica Sparklet 0.9.4 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a player nickname. | ||||
| CVE-2000-0067 | 1 Cybercash | 1 Merchant Connection Kit | 2026-04-16 | N/A |
| CyberCash Merchant Connection Kit (MCK) allows local users to modify files via a symlink attack. | ||||
| CVE-2006-3574 | 1 Hitachi | 3 Cosminexus Collaboration Portal, Groupmax Collaboration Portal, Groupmax Collaboration Web Client | 2026-04-16 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Groupmax Collaboration Portal and Web Client before 07-20-/D, and uCosminexus Collaboration Portal and Forum/File Sharing before 06-20-/C, allow remote attackers to "execute malicious scripts" via unknown vectors (aka HS06-014-01). | ||||
| CVE-2000-0157 | 1 Netbsd | 1 Netbsd | 2026-04-16 | N/A |
| NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process. | ||||
| CVE-2006-3575 | 1 Mcafee | 1 Virusscan | 2026-04-16 | N/A |
| Unknown vulnerability in the Buffer Overflow Protection in McAfee VirusScan Enterprise 8.0.0 allows local users to cause a denial of service (unstable operation) via a long string in the (1) "Process name", (2) "Module name", or (3) "API name" fields. | ||||
| CVE-2006-3576 | 1 Sensesites | 1 Commonsense Cms | 2026-04-16 | N/A |
| SQL injection vulnerability in search.php in SenseSites CommonSense CMS 5.0 allows remote attackers to execute arbitrary SQL commands via the Date parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information. | ||||
| CVE-2006-3578 | 1 Fujitsu | 1 Serverview | 2026-04-16 | N/A |
| Directory traversal vulnerability in Fujitsu ServerView 2.50 up to 3.60L98 and 4.10L11 up to 4.11L81 allows remote attackers to read arbitrary files via unspecified vectors. | ||||
| CVE-2006-3595 | 1 Cisco | 1 Router Web Setup | 2026-04-16 | N/A |
| The default configuration of IOS HTTP server in Cisco Router Web Setup (CRWS) before 3.3.0 build 31 does not require credentials, which allows remote attackers to access the server with arbitrary privilege levels, aka bug CSCsa78190. | ||||
| CVE-1999-1048 | 2 Debian, Redhat | 2 Debian Linux, Linux | 2026-04-16 | N/A |
| Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges by creating an extremely large directory name, which is inserted into the password prompt via the \w option in the PS1 environmental variable when another user changes into that directory. | ||||
| CVE-2006-3603 | 1 Seyeon | 1 Flexwatch Network Camera | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in index.php in FlexWATCH Network Camera 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the URL. | ||||
| CVE-1999-1049 | 1 Broadcom | 1 Arcserve Backup | 2026-04-16 | N/A |
| ARCserve NT agents use weak encryption (XOR) for passwords, which allows remote attackers to sniff the authentication request to port 6050 and decrypt the password. | ||||