CVSS:4.6(Medium)
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.
CVSS:5.0(Medium)
The "download behavior" in Internet Explorer 5 allows remote attackers to read arbitrary files via a server-side redirect.
CVSS:4.6(Medium)
dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script.
CVSS:5.0(Medium)
FTGate web interface server allows remote attackers to read files via a .. (dot dot) attack.
CVSS:5.0(Medium)
The Zeus web server administrative interface uses weak encryption for its passwords.
CVSS:5.0(Medium)
Falcon web server allows remote attackers to determine the absolute path of the web root via long file names.
CVSS:5.0(Medium)
Falcon web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVSS:5.0(Medium)
Denial of service in WU-FTPD via the SITE NEWER command, which does not free memory properly.
CVSS:4.3(Medium)
Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME.
CVSS:5.0(Medium)
Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers.
CVSS:5.0(Medium)
Buffer overflow in CommuniGatePro via a long string to the HTTP configuration port.
CVSS:4.6(Medium)
Buffer overflow in FreeBSD seyon via HOME environmental variable, -emulator argument, -modems argument, or the GUI.
CVSS:5.0(Medium)
Internet Explorer 5 allows a remote attacker to modify the IE client's proxy configuration via a malicious Web Proxy Auto-Discovery (WPAD) server.
CVSS:5.0(Medium)
login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist.
CVSS:5.0(Medium)
Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file.
CVSS:5.0(Medium)
Denial of service in BIND named via maxdname.
CVSS:5.0(Medium)
Denial of service in BIND named via consuming more than "fdmax" file descriptors.
CVSS:5.0(Medium)
Buffer overflow in free internet chess server (FICS) program, xboard.
CVSS:5.0(Medium)
Denial of service in MDaemon 2.7 via a large number of connection attempts.
CVSS:5.0(Medium)
Denial of service in MDaemon WorldClient and WebConfig services via a long URL.
CVSS:5.0(Medium)
Denial of service in Cisco routers running NAT via a PORT command from an FTP client to a Telnet port.
CVSS:5.0(Medium)
Symantec Mail-Gear 1.0 web interface server allows remote users to read arbitrary files via a .. (dot dot) attack.
CVSS:5.0(Medium)
Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command.
CVSS:5.0(Medium)
Denial of service in Linux syslogd via a large number of connections.