Page 48 of 289 results (0.018 seconds)

CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 2

Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line argument. • https://www.exploit-db.com/exploits/20556 http://marc.info/?l=bugtraq&m=97958269320974&w=2 http://www.debian.org/security/2001/dsa-014 http://www.securityfocus.com/bid/2210 https://exchange.xforce.ibmcloud.com/vulnerabilities/5948 •

CVSS: 5.0EPSS: 4%CPEs: 4EXPL: 5

Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed. • https://www.exploit-db.com/exploits/244 https://www.exploit-db.com/exploits/241 https://www.exploit-db.com/exploits/20536 http://archives.neohapsis.com/archives/bugtraq/2001-01/0122.html http://archives.neohapsis.com/archives/bugtraq/2001-01/0132.html http://archives.neohapsis.com/archives/bugtraq/2001-02/0267.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000380 http://www.debian.org/security/2001/dsa-029 http://www.linux-mandrake.com/en/security/2001 • CWE-401: Missing Release of Memory after Effective Lifetime •

CVSS: 5.0EPSS: 94%CPEs: 5EXPL: 6

The default installation of Apache before 1.3.19 allows remote attackers to list directories instead of the multiview index.html file via an HTTP request for a path that contains many / (slash) characters, which causes the path to be mishandled by (1) mod_negotiation, (2) mod_dir, or (3) mod_autoindex. • https://www.exploit-db.com/exploits/20692 https://www.exploit-db.com/exploits/20693 https://www.exploit-db.com/exploits/20694 https://www.exploit-db.com/exploits/20695 http://www.apacheweek.com/features/security-13 http://www.debian.org/security/2001/dsa-067 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-077.php3 http://www.linuxsecurity.com/advisories/other_advisory-1452.html http://www.securityfocus.com/archive/1/168497 http://www.securityfocus.com/archive • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0

htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink attack. • http://marc.info/?l=bugtraq&m=97916374410647&w=2 http://www.debian.org/security/2001/dsa-021 http://www.securityfocus.com/bid/2182 https://exchange.xforce.ibmcloud.com/vulnerabilities/5926 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 2

Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary commands. • https://www.exploit-db.com/exploits/260 http://marc.info/?l=bugtraq&m=97958269320974&w=2 http://www.debian.org/security/2001/dsa-014 http://www.securityfocus.com/bid/2210 •