Total
29944 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0303 | 1 Id Software | 1 Quake 3 Arena | 2026-04-16 | N/A |
| Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (..) attack. | ||||
| CVE-2000-0309 | 1 Openbsd | 1 Openbsd | 2026-04-16 | N/A |
| The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service. | ||||
| CVE-1999-0354 | 1 Microsoft | 2 Internet Explorer, Word | 2026-04-16 | N/A |
| Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message. | ||||
| CVE-1999-0382 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | N/A |
| The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with elevated privileges. | ||||
| CVE-2000-0312 | 1 Openbsd | 1 Openbsd | 2026-04-16 | N/A |
| cron in OpenBSD 2.5 allows local users to gain root privileges via an argv[] that is not NULL terminated, which is passed to cron's fake popen function. | ||||
| CVE-2000-0326 | 1 On Technology | 1 Meeting Maker | 2026-04-16 | N/A |
| Meeting Maker uses weak encryption (a polyalphabetic substitution cipher) for passwords, which allows remote attackers to sniff and decrypt passwords for Meeting Maker accounts. | ||||
| CVE-2000-0330 | 1 Microsoft | 2 Windows 95, Windows 98 | 2026-04-16 | N/A |
| The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability. | ||||
| CVE-2005-3982 | 1 Webcalendar | 1 Webcalendar | 2026-04-16 | N/A |
| CRLF injection vulnerability in layers_toggle.php in WebCalendar 1.0.1 might allow remote attackers to modify HTTP headers and conduct HTTP response splitting attacks via the ret parameter, which is used to redirect URL requests. | ||||
| CVE-2000-0333 | 2 Ethereal Group, Lbl | 2 Ethereal, Tcpdump | 2026-04-16 | N/A |
| tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet. | ||||
| CVE-1999-0519 | 1 Microsoft | 4 Outlook, Windows 2000, Windows 95 and 1 more | 2026-04-16 | N/A |
| A NETBIOS/SMB share password is the default, null, or missing. | ||||
| CVE-2005-3989 | 1 Avaya | 1 Tn2602ap Ip Media Resource 320 Circuit Pack | 2026-04-16 | N/A |
| Memory leak in Avaya TN2602AP IP Media Resource 320 circuit pack before vintage 9 firmware allows remote attackers to cause a denial of service (memory consumption) via crafted VoIP packets. | ||||
| CVE-1999-0547 | 2026-04-16 | N/A | ||
| An SSH server allows authentication through the .rhosts file. | ||||
| CVE-2005-4000 | 1 Sitebeater | 1 Sitebeater News | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in archive.asp in SiteBeater News System 4.00 and earlier allows remote attackers to inject arbitrary web script or HTML via the sKeywords parameter. | ||||
| CVE-2006-4231 | 1 Irfanview | 1 Irfanview | 2026-04-16 | N/A |
| IrfanView 3.98 (with plugins) allows remote attackers to cause a denial of service (application crash) via a crafted CUR image file. | ||||
| CVE-2000-0371 | 1 Kde | 1 Kde | 2026-04-16 | N/A |
| The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack. | ||||
| CVE-2005-4025 | 1 Help Desk Reloaded | 1 Free Help Desk | 2026-04-16 | N/A |
| Help Desk Reloaded Free Help Desk does not remove or protect install.php once installation is complete, which allows remote attackers to gain privileges via a direct request to install.php, then navigating to accountsetup.php and creating a new user. | ||||
| CVE-2005-4029 | 1 Esi Products | 1 Webeoc | 2026-04-16 | N/A |
| WebEOC before 6.0.2 allows remote attackers to obtain valid usernames via the HTML source of the WebEOC login webpage, which could be useful in other attacks such as locking out valid users via brute force methods. | ||||
| CVE-1999-0639 | 2026-04-16 | N/A | ||
| The chargen service is running. | ||||
| CVE-2005-4031 | 1 Mediawiki | 1 Mediawiki | 2026-04-16 | N/A |
| Eval injection vulnerability in MediaWiki 1.5.x before 1.5.3 allows remote attackers to execute arbitrary PHP code via the "user language option," which is used as part of a dynamic class name that is processed using the eval function. | ||||
| CVE-1999-0710 | 1 Redhat | 2 Enterprise Linux, Linux | 2026-04-16 | N/A |
| The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems. | ||||