| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges. |
| Csetup under IRIX allows arbitrary file creation or overwriting. |
| TCP RST denial of service in FreeBSD. |
| Sun's ftpd daemon can be subjected to a denial of service. |
| Vacation program allows command execution by remote users through a sendmail command. |
| Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets. |
| Attackers can cause a denial of service in Ascend MAX and Pipeline routers with a malformed packet to the discard port, which is used by the Java Configurator tool. |
| Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port. |
| AnyForm CGI remote execution. |
| test-cgi program allows an attacker to list files on the server. |
| Outlook Express 5.5 and 6.0 on Windows treats a carriage return ("CR") in a message header as if it were a valid carriage return/line feed combination (CR/LF), which could allow remote attackers to bypass virus protection and or other filtering mechanisms via a mail message with headers that only contain the CR, which causes Outlook to create separate headers. |
| wordtrans 1.1pre8 and earlier in the wordtrans-web package allows remote attackers to (1) execute arbitrary code or (2) conduct cross-site scripting attacks via certain parameters (possibly "dict") to the wordtrans.php script. |
| Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access. |
| Certain configurations of wu-ftp FTP server 2.4 use a _PATH_EXECPATH setting to a directory with dangerous commands, such as /bin, which allows remote authenticated users to gain root access via the "site exec" command. |
| Certain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0. |
| Buffer overflow in AIX rcp command allows local users to obtain root access. |
| Remote access in AIX innd 1.5.1, using control messages. |
| Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names. |
| RIP v1 is susceptible to spoofing. |
| Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. |