| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2004-1675 | 5.0 |
Serv-U FTP server 4.x and 5.x allows remote attackers to cause a denial of service (application crash) via a STORE UNIQUE (STOU) command with an MS-DOS device name argument such as (1) COM1, (2) LPT1, (3) PRN, or (4) AUX.
|
28-07-2020 - 14:34 | 11-09-2004 - 04:00 | |
| CVE-2014-8768 | 5.0 |
Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame.
|
30-10-2018 - 16:27 | 20-11-2014 - 17:50 | |
| CVE-2004-1094 | 10.0 |
Buffer overflow in InnerMedia DynaZip DUNZIP32.dll file version 5.00.03 and earlier allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, as demonstrated using (1) a .rjs (skin) file in RealPlayer 10
|
19-10-2018 - 15:30 | 10-01-2005 - 05:00 | |
| CVE-2006-6027 | 9.3 |
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the LoadFile method in an AcroPDF ActiveX control.
|
17-10-2018 - 21:46 | 21-11-2006 - 23:07 | |
| CVE-2008-4166 | 4.3 |
Integer overflow in the JavaScript engine in Avant Browser 11.7 Build 9 and earlier allows remote attackers to cause a denial of service (application crash) by attempting to URL encode a string containing many instances of an invalid character.
|
11-10-2018 - 20:51 | 22-09-2008 - 18:34 | |
| CVE-2017-11777 | 3.5 |
Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting (XSS) vulnerability by sending a specially crafted request to an affected SharePoint server, due to ho
|
20-10-2017 - 13:27 | 13-10-2017 - 13:29 | |
| CVE-2004-1392 | 5.0 |
PHP 4.0 with cURL functions allows remote attackers to bypass the open_basedir setting and read arbitrary files via a file: URL argument to the curl_init function.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
| CVE-2004-2759 | 2.1 |
Shared Sun StorEdge QFS and SAM-QFS file systems, as used in Utilization Suite 4.0 through 4.1 and Performance Suite 4.0 through 4.1, might allow local users to read portions of deleted files by accessing data within sparse files.
|
08-08-2017 - 01:29 | 31-12-2004 - 05:00 | |
| CVE-2004-2594 | 5.0 |
Absolute path traversal vulnerability in Quake II server before R1Q2 on Windows, as used in multiple products, allows remote attackers to read arbitrary files via a "\/" in a pathname argument, as demonstrated by "download \/server.cfg".
|
11-07-2017 - 01:32 | 31-12-2004 - 05:00 | |
| CVE-2004-2593 | 7.5 |
Buffer overflow in command-packet processing of Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a packet with a long cmd_args buffer.
|
11-07-2017 - 01:32 | 31-12-2004 - 05:00 | |
| CVE-2004-2597 | 5.0 |
Quake II server before R1Q2, as used in multiple products, allows remote attackers to bypass IP-based access control rules via a userinfo string that already contains an "ip" key/value pair but is also long enough to cause a new key/value pair to be
|
11-07-2017 - 01:32 | 31-12-2004 - 05:00 | |
| CVE-2004-2592 | 5.0 |
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a modified client that asks the server to send data stored at a negative array offset, which is not handled when p
|
11-07-2017 - 01:32 | 31-12-2004 - 05:00 | |
| CVE-2004-2596 | 5.0 |
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (exhaustion of connection slots) via a large number of connections from the same IP address.
|
11-07-2017 - 01:32 | 31-12-2004 - 05:00 | |
| CVE-2004-2595 | 5.0 |
Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a download command with a full pathname for a directory in the a
|
11-07-2017 - 01:32 | 31-12-2004 - 05:00 | |
| CVE-2004-1492 | 5.0 |
Master of Orion III 1.2.5 and earlier allows remote attackers to cause a denial of service (game exit) via a data packet that contains a large size specifier, which causes a large memory allocation to fail.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-1493 | 5.0 |
Master of Orion III 1.2.5 and earlier allows remote attackers to cause a denial of service (server crash) via multiple connections with long nicknames, possibly triggering a buffer overflow.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-1095 | 10.0 |
Multiple integer overflows in (1) readbmp.c, (2) readgif.c, (3) readgif.c, (4) readmrf.c, (5) readpcx.c, (6) readpng.c,(7) readpnm.c, (8) readprf.c, (9) readtiff.c, (10) readxbm.c, (11) readxpm.c in zgv 5.8 allow remote attackers to execute arbitrary
|
11-07-2017 - 01:30 | 10-01-2005 - 05:00 | |
| CVE-2000-0340 | 7.2 |
Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via the DISPLAY environmental variable.
|
10-09-2008 - 19:04 | 29-04-2000 - 04:00 | |
| CVE-2004-2598 | 5.0 |
Quake II server before R1Q2, as used in multiple products, allows remote attackers to corrupt the server's client state data structure by exiting a session without a valid disconnect command, then reconnecting, which prevents a mod from being notifie
|
05-09-2008 - 20:44 | 31-12-2004 - 05:00 |