CVE Database

Search and browse vulnerability records from NVD

Filter: All 🔴 Critical 🟠 High 🟡 Medium 🟢 Low | ⚠️ KEV Only | Sort: Date CVSS EPSS

Showing 20 of 24570 CVEs

CVE ID	Severity	Description	EPSS	Published
CVE-2000-0342	7.5 HIGH	Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."	2.4%	2000-04-28
CVE-2000-0258	7.5 HIGH	IIS 4.0 and 5.0 allows remote attackers to cause a denial of service by sending many URLs with a large number of escaped characters, aka the "Myriad Escaped Characters" Vulnerability.	20.3%	2000-04-12
CVE-1999-1127	7.5 HIGH	Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote attackers to cause a denial of service (resource exhaustion) via a series of connections containing malformed data, aka the "Named Pipes Over RPC" vulnerability.	30.0%	1999-12-31
CVE-1999-1549	7.8 HIGH	Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a "secure" hidden form value from a temporary file and craft a LYNXOPTIONS: URL that causes Lynx to modify the user's configuration file and execute commands.	0.2%	1999-11-16
CVE-1999-0468	8.2 HIGH	Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component.	1.9%	1999-04-09
CVE-1999-1568	7.5 HIGH	Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command.	1.7%	1999-01-01
CVE-1999-0052	7.5 HIGH	IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash.	1.1%	1998-11-04
CVE-1999-1152	7.5 HIGH	Compaq/Microcom 6000 Access Integrator does not disconnect a client after a certain number of failed login attempts, which allows remote attackers to guess usernames or passwords via a brute force attack.	0.7%	1998-06-03
CVE-1999-0069	8.4 HIGH	Solaris ufsrestore buffer overflow.	0.7%	1998-04-29
CVE-1999-0012	7.0 HIGH	Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.	0.7%	1998-02-06
CVE-1999-0013	8.4 HIGH	Stolen credentials from SSH clients via ssh-agent program, allowing other local users to access remote accounts belonging to the ssh-agent user.	0.7%	1998-01-22
CVE-1999-0239	7.5 HIGH	Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.	3.7%	1998-01-01
CVE-1999-0029	8.4 HIGH	root privileges via buffer overflow in ordist command on SGI IRIX systems.	0.4%	1997-07-16
CVE-1999-0059	7.3 HIGH	IRIX fam service allows an attacker to obtain a list of all files on the server.	0.7%	1997-07-14
CVE-1999-0036	8.4 HIGH	IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files.	0.8%	1997-05-26
CVE-1999-0039	7.3 HIGH	webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter.	20.7%	1997-05-06
CVE-1999-0038	8.4 HIGH	Buffer overflow in xlock program allows local users to execute commands as root.	0.1%	1997-04-26
CVE-1999-0236	7.5 HIGH	ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs.	17.6%	1997-01-01
CVE-1999-0022	7.8 HIGH	Local user gains root privileges via buffer overflow in rdist, via expstr() function.	0.2%	1996-07-03
CVE-1999-0084	8.4 HIGH	Certain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0.	0.1%	1990-05-01

1 ... 490 491 492