Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2002-0869 | 7.5 |
Unknown vulnerability in the hosting process (dllhost.exe) for Microsoft Internet Information Server (IIS) 4.0 through 5.1 allows remote attackers to gain privileges by executing an out of process application that acquires LocalSystem privileges, aka
|
23-11-2020 - 19:49 | 12-11-2002 - 05:00 | |
CVE-2002-1182 | 5.0 |
IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (crash) via malformed WebDAV requests that cause a large amount of memory to be assigned.
|
23-11-2020 - 19:49 | 12-11-2002 - 05:00 | |
CVE-2002-1181 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in the administrative web pages for Microsoft Internet Information Server (IIS) 4.0 through 5.1 allow remote attackers to execute HTML script as other users through (1) a certain ASP file in the IIS
|
23-11-2020 - 19:49 | 12-11-2002 - 05:00 | |
CVE-2001-0241 | 10.0 |
Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long print request that is passed to the extension through IIS 5.0.
|
30-04-2019 - 14:27 | 27-06-2001 - 04:00 | |
CVE-2002-1180 | 7.5 |
A typographical error in the script source access permissions for Internet Information Server (IIS) 5.0 does not properly exclude .COM files, which allows attackers with only write permissions to upload malicious .COM files, aka "Script Source Access
|
30-10-2018 - 16:25 | 12-11-2002 - 05:00 | |
CVE-2004-0199 | 5.1 |
Help and Support Center in Microsoft Windows XP and Windows Server 2003 SP1 does not properly validate HCP URLs, which allows remote attackers to execute arbitrary code, as demonstrated using certain hcp:// URLs that access the DVD Upgrade capability
|
12-10-2018 - 21:34 | 14-06-2004 - 04:00 | |
CVE-2001-0333 | 7.5 |
Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.
|
12-10-2018 - 21:30 | 27-06-2001 - 04:00 | |
CVE-2004-0164 | 5.0 |
KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message th
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0010 | 7.2 |
Stack-based buffer overflow in the ncp_lookup function for ncpfs in Linux kernel 2.4.x allows local users to gain privileges.
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0403 | 5.0 |
Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2004-0155 | 7.5 |
The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish unauthorized IP connections or conduct man-in-the-
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2003-0984 | 4.6 |
Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space.
|
11-10-2017 - 01:29 | 05-01-2004 - 05:00 | |
CVE-2004-0003 | 4.6 |
Unknown vulnerability in Linux kernel before 2.4.22 allows local users to gain privileges, related to "R128 DRI limits checking."
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2003-0461 | 2.1 |
/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, which could allow local users to obtain potentially sensitive information such as the length of passwords.
|
11-10-2017 - 01:29 | 27-08-2003 - 04:00 |