| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| A network intrusion detection system (IDS) does not properly handle data within TCP handshake packets. |
| A network intrusion detection system (IDS) does not properly reassemble fragmented packets. |
| In Windows NT, an inappropriate user is a member of a group, e.g. Administrator, Backup Operators, Domain Admins, Domain Guests, Power Users, Print Operators, Replicators, System Operators, etc. |
| An incorrect configuration of the WebStore 1.0 shopping cart CGI program "web_store.cgi" could disclose private information. |
| An incorrect configuration of the Order Form 1.0 shopping cart CGI program could disclose private information. |
| An incorrect configuration of the EZMall 2000 shopping cart CGI program "mall2000.cgi" could disclose private information. |
| quikstore.cgi in QuikStore shopping cart stores quikstore.cfg under the web document root with insufficient access control, which allows remote attackers to obtain the cleartext administrator password and gain privileges. |
| An incorrect configuration of the PDG Shopping Cart CGI program "shopper.cgi" could disclose private information. |
| An incorrect configuration of the SoftCart CGI program "SoftCart.exe" could disclose private information. |
| An incorrect configuration of the Webcart CGI program could disclose private information. |
| A system-critical Windows NT registry key has an inappropriate value. |
| A version of finger is running that exposes valid user information to any entity on the network. |
| The rpc.sprayd service is running. |
| The rexec service is running. |
| The rstat/rstatd service is running. |
| The rpc.rquotad service is running. |
| A version of rusers is running that exposes valid user information to any entity on the network. |
| The rexd service is running, which uses weak authentication that can allow an attacker to execute commands. |
| The rwho/rwhod service is running, which exposes machine status and user information. |
| The ident/identd service is running. |