CVE & Exploit Intelligence Database

CVE-2002-0844 7.8 HIGH EPSS 0.00

Off-by-one overflow in the CVS PreservePermissions of rcs.c for CVSD before 1.11.2 allows local users to execute arbitrary code.

CWE-193 Aug 12, 2002

CVE-2002-0653 7.8 HIGH 1 PoC Analysis EPSS 0.01

Off-by-one buffer overflow in the ssl_compat_directive function, as called by the rewrite_command hook for mod_ssl Apache module 2.8.9 and earlier, allows local users to execute arbitrary code as the Apache server user via .htaccess files with long entries.

CWE-193 Jul 11, 2002

CVE-2002-0083 9.8 CRITICAL 1 PoC Analysis EPSS 0.02

Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.

CWE-193 Mar 15, 2002

CVE-2001-1496 9.8 CRITICAL EPSS 0.14

Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.

CWE-193 Dec 31, 2001

CVE-2001-0609 9.8 CRITICAL 2 PoCs Analysis EPSS 0.10

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.

CWE-193 Aug 02, 2001

CVE-2001-1391 5.5 MEDIUM EPSS 0.00

Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory.

CWE-193 Apr 17, 2001

CVE-1999-1568 7.5 HIGH EPSS 0.01

Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command.

CWE-193 Jan 01, 1999