Latest CVE Feed
-
2.1
LOWCVE-2005-0225
firehol.sh in FireHOL before 1.224 creates temporary files with predictable file names, which could allow local users to overwrite arbitrary files via a symlink attack.... Read more
Affected Products : firehol- EPSS Score: %0.08
- Published: May. 02, 2005
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2004-0299
Buffer overflow in smallftpd 0.99 allows local users to cause a denial of service (crash) via an FTP request with a large number of "/" (slash) characters.... Read more
Affected Products : smallftpd- EPSS Score: %0.23
- Published: Nov. 23, 2004
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2003-1224
Weblogic.admin for BEA WebLogic Server and Express 7.0 and 7.0.0.1 displays the JDBCConnectionPoolRuntimeMBean password to the screen in cleartext, which allows attackers to read a user's password by physically observing ("shoulder surfing") the screen.... Read more
Affected Products : weblogic_server- EPSS Score: %0.06
- Published: Dec. 31, 2003
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2004-0325
TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (CPU consumption) via "//../" arguments to (1) mkd, (2) xmkd, (3) dele, (4) size, (5) retr, (6) stor, (7) appe, (8) rnfr, (9) rnto, (10) rmd, or (11) xrmd, as demonstra... Read more
Affected Products : typsoft_ftp_server- EPSS Score: %1.17
- Published: Dec. 31, 2004
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2006-5397
The Xinput module (modules/im/ximcp/imLcIm.c) in X.Org libX11 1.0.2 and 1.0.3 opens a file for reading twice using the same file descriptor, which causes a file descriptor leak that allows local users to read files specified by the XCOMPOSEFILE environmen... Read more
Affected Products : libx11- EPSS Score: %0.08
- Published: Nov. 03, 2006
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2004-2414
Novell NetWare 6.5 SP 1.1, when installing or upgrading using the Overlay CDs and performing a custom installation with OpenSSH, includes sensitive password information in the (1) NIOUTPUT.TXT and (2) NI.LOG log files, which might allow local users to obt... Read more
Affected Products : netware- EPSS Score: %0.05
- Published: Dec. 31, 2004
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2005-4701
Unspecified vulnerability in Process File System (procfs) in Sun Solaris 10 allows local users to obtain sensitive information such as process working directories via unknown attack vectors, possibly pwdx.... Read more
Affected Products : solaris- EPSS Score: %0.07
- Published: Dec. 31, 2005
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2003-1122
ScriptLogic 4.01, and possibly other versions before 4.14, uses insecure permissions for the LOGS$ share, which allows users to modify log records and possibly execute arbitrary code.... Read more
Affected Products : scriptlogic- EPSS Score: %0.21
- Published: Dec. 31, 2003
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2020-14770
Vulnerability in the Hyperion BI+ product of Oracle Hyperion (component: IQR-Foundation service). The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple proto... Read more
- EPSS Score: %0.21
- Published: Oct. 21, 2020
- Modified: Nov. 21, 2024
-
2.1
LOWCVE-2009-0518
VI Client in VMware VirtualCenter before 2.5 Update 4, VMware ESXi 3.5 before Update 4, and VMware ESX 3.5 before Update 4 retains the VirtualCenter Server password in process memory, which might allow local users to obtain this password.... Read more
- EPSS Score: %0.05
- Published: Apr. 06, 2009
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2004-0423
The log_event function in ssmtp 2.50.6 and earlier allows local users to overwrite arbitrary files via a symlink attack on the ssmtp.log temporary log file.... Read more
Affected Products : ssmtp- EPSS Score: %0.08
- Published: Jul. 07, 2004
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2013-4354
The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image.... Read more
Affected Products : image_registry_and_delivery_service_\(glance\)- EPSS Score: %0.06
- Published: Nov. 23, 2013
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2008-3789
Samba 3.2.0 uses weak permissions (0666) for the (1) group_mapping.tdb and (2) group_mapping.ldb files, which allows local users to modify the membership of Unix groups.... Read more
Affected Products : samba- EPSS Score: %1.10
- Published: Aug. 27, 2008
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2008-3528
The error-reporting functionality in (1) fs/ext2/dir.c, (2) fs/ext3/dir.c, and possibly (3) fs/ext4/dir.c in the Linux kernel 2.6.26.5 does not limit the number of printk console messages that report directory corruption, which allows physically proximate... Read more
Affected Products : linux_kernel- EPSS Score: %0.35
- Published: Sep. 27, 2008
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2006-4187
Unspecified vulnerability in HP-UX B.11.00, B.11.11 and B.11.23, when running in trusted mode, allows local users to cause a denial of service via unspecified vectors.... Read more
Affected Products : hp-ux- EPSS Score: %0.06
- Published: Aug. 17, 2006
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2005-0023
gnome-pty-helper in GNOME libzvt2 and libvte4 allows local users to spoof the logon hostname via a modified DISPLAY environment variable. NOTE: the severity of this issue has been disputed.... Read more
- EPSS Score: %0.15
- Published: Oct. 05, 2005
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2009-0754
PHP 4.4.4, 5.1.6, and other versions, when running on Apache, allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within .htaccess, which causes this setting to be applied to o... Read more
- EPSS Score: %0.27
- Published: Mar. 03, 2009
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2010-3074
SSL_Cipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack.... Read more
Affected Products : encfs- EPSS Score: %0.07
- Published: Sep. 17, 2010
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2007-2797
xterm, including 192-7.el4 in Red Hat Enterprise Linux and 208-3.1 in Debian GNU/Linux, sets the wrong group ownership of tty devices, which allows local users to write data to other users' terminals.... Read more
- EPSS Score: %0.08
- Published: Aug. 27, 2007
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-1999-0424
talkback in Netscape 4.5 allows a local user to overwrite arbitrary files of another user whose Netscape crashes.... Read more
Affected Products : communicator- EPSS Score: %0.12
- Published: Mar. 18, 1999
- Modified: Apr. 03, 2025