Search
Total
25555 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-1141 | 1 Recourse Technologies | 1 Mantrap | 2017-10-10 | 2.1 LOW | N/A |
| Recourse ManTrap 1.6 modifies the kernel so that ".." does not appear in the /proc listing, which allows attackers to determine that they are in a honeypot system. | |||||
| CVE-2000-1142 | 1 Recourse Technologies | 1 Mantrap | 2017-10-10 | 2.1 LOW | N/A |
| Recourse ManTrap 1.6 generates an error when an attacker cd's to /proc/self/cwd and executes the pwd command, which allows attackers to determine that they are in a honeypot system. | |||||
| CVE-2000-1143 | 1 Recourse Technologies | 1 Mantrap | 2017-10-10 | 2.1 LOW | N/A |
| Recourse ManTrap 1.6 hides the first 4 processes that run on a Solaris system, which allows attackers to determine that they are in a honeypot system. | |||||
| CVE-2000-1144 | 1 Recourse Technologies | 1 Mantrap | 2017-10-10 | 2.1 LOW | N/A |
| Recourse ManTrap 1.6 sets up a chroot environment to hide the fact that it is running, but the inode number for the resulting "/" file system is higher than normal, which allows attackers to determine that they are in a chroot environment. | |||||
| CVE-2000-1145 | 1 Recourse Technologies | 1 Mantrap | 2017-10-10 | 4.6 MEDIUM | N/A |
| Recourse ManTrap 1.6 allows attackers who have gained root access to use utilities such as crash or fsdb to read /dev/mem and raw disk devices to identify ManTrap processes or modify arbitrary data files. | |||||
| CVE-2000-1146 | 1 Recourse Technologies | 1 Mantrap | 2017-10-10 | 2.1 LOW | N/A |
| Recourse ManTrap 1.6 allows attackers to cause a denial of service via a sequence of commands that navigate into and out of the /proc/self directory and executing various commands such as ls or pwd. | |||||
| CVE-2000-1148 | 1 Volano Llc | 1 Volanochatpro | 2017-10-10 | 4.6 MEDIUM | N/A |
| The installation of VolanoChatPro chat server sets world-readable permissions for its configuration file and stores the server administrator passwords in plaintext, which allows local users to gain privileges on the server. | |||||
| CVE-2000-1162 | 1 Aladdin Enterprises | 1 Ghostscript | 2017-10-10 | 3.7 LOW | N/A |
| ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack. | |||||
| CVE-2000-1163 | 1 Aladdin Enterprises | 1 Ghostscript | 2017-10-10 | 4.6 MEDIUM | N/A |
| ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which another user executes ghostscript. | |||||
| CVE-2000-1164 | 1 Att | 1 Winvnc | 2017-10-10 | 9.0 HIGH | N/A |
| WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system. | |||||
| CVE-2000-1167 | 1 Freebsd | 1 Freebsd | 2017-10-10 | 7.5 HIGH | N/A |
| ppp utility in FreeBSD 4.1.1 and earlier does not properly restrict access as specified by the "nat deny_incoming" command, which allows remote attackers to connect to the target system. | |||||
| CVE-2000-1169 | 1 Openbsd | 1 Openssh | 2017-10-10 | 7.5 HIGH | N/A |
| OpenSSH SSH client before 2.3.0 does not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access to the X11 display and sniff X11 events, or gain access to the ssh-agent. | |||||
| CVE-2000-1170 | 1 Pelesoft | 1 Netsnap | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in Netsnap webcam HTTP server before 1.2.9 allows remote attackers to execute arbitrary commands via a long GET request. | |||||
| CVE-2000-1171 | 1 Markus Triska | 1 Cgiforum | 2017-10-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in cgiforum.pl script in CGIForum 1.0 allows remote attackers to ready arbitrary files via a .. (dot dot) attack in the "thesection" parameter. | |||||
| CVE-2000-1174 | 1 Ethereal Group | 1 Ethereal | 2017-10-10 | 7.5 HIGH | N/A |
| Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username. | |||||
| CVE-2000-1179 | 1 Netopia | 1 650-st Isdn Router | 2017-10-10 | 5.0 MEDIUM | N/A |
| Netopia ISDN Router 650-ST before 4.3.5 allows remote attackers to read system logs without authentication by directly connecting to the login screen and typing certain control characters. | |||||
| CVE-2000-1181 | 1 Realnetworks | 1 Realserver | 2017-10-10 | 5.0 MEDIUM | N/A |
| Real Networks RealServer 7 and earlier allows remote attackers to obtain portions of RealServer's memory contents, possibly including sensitive information, by accessing the /admin/includes/ URL. | |||||
| CVE-2000-1182 | 1 Watchguard | 1 Firebox Ii | 2017-10-10 | 5.0 MEDIUM | N/A |
| WatchGuard Firebox II allows remote attackers to cause a denial of service by flooding the Firebox with a large number of FTP or SMTP requests, which disables proxy handling. | |||||
| CVE-2000-1184 | 1 Freebsd | 1 Freebsd | 2017-10-10 | 5.0 MEDIUM | N/A |
| telnetd in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service by specifying an arbitrary large file in the TERMCAP environmental variable, which consumes resources as the server processes the file. | |||||
| CVE-2000-1189 | 1 Redhat | 1 Linux | 2017-10-10 | 7.2 HIGH | N/A |
| Buffer overflow in pam_localuser PAM module in Red Hat Linux 7.x and 6.x allows attackers to gain privileges. | |||||
| CVE-2000-1193 | 1 Sgi | 1 Irix | 2017-10-10 | 5.0 MEDIUM | N/A |
| Performance Metrics Collector Daemon (PMCD) in Performance Copilot in IRIX 6.x allows remote attackers to cause a denial of service (resource exhaustion) via an extremely long string to the PMCD port. | |||||
| CVE-2000-1212 | 1 Zope | 1 Zope | 2017-10-10 | 5.0 MEDIUM | N/A |
| Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects. | |||||
| CVE-2000-1195 | 1 Caldera | 2 Openlinux Edesktop, Openlinux Eserver | 2017-10-10 | 7.5 HIGH | N/A |
| telnet daemon (telnetd) from the Linux netkit package before netkit-telnet-0.16 allows remote attackers to bypass authentication when telnetd is running with the -L command line option. | |||||
| CVE-2000-1196 | 1 Netscape | 1 Publishingxpert | 2017-10-10 | 5.0 MEDIUM | N/A |
| PSCOErrPage.htm in Netscape PublishingXpert 2.5 before SP2 allows remote attackers to read arbitrary files by specifying the target file in the errPagePath parameter. | |||||
| CVE-2000-1200 | 1 Microsoft | 1 Windows Nt | 2017-10-10 | 5.0 MEDIUM | N/A |
| Windows NT allows remote attackers to list all users in a domain by obtaining the domain SID with the LsaQueryInformationPolicy policy function via a null session and using the SID to list the users. | |||||
| CVE-2000-1203 | 1 Lotus | 1 Domino | 2017-10-10 | 5.0 MEDIUM | N/A |
| Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop. | |||||
| CVE-2001-0007 | 1 Netscreen | 1 Screen Os | 2017-10-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in NetScreen Firewall WebUI allows remote attackers to cause a denial of service via a long URL request to the web administration interface. | |||||
| CVE-2001-0008 | 2 Borland Software, Firebirdsql | 2 Interbase, Firebird | 2017-10-10 | 10.0 HIGH | N/A |
| Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures. | |||||
| CVE-2001-0009 | 1 Lotus | 1 Domino Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in Lotus Domino 5.0.5 web server allows remote attackers to read arbitrary files via a .. attack. | |||||
| CVE-2001-0230 | 1 Freebsd | 1 Freebsd | 2017-10-10 | 4.6 MEDIUM | N/A |
| Buffer overflow in dc20ctrl before 0.4_1 in FreeBSD, and possibly other operating systems, allows local users to gain privileges. | |||||
| CVE-2001-0020 | 1 Cisco | 2 Arrowpoint, Content Services Switch | 2017-10-10 | 2.1 LOW | N/A |
| Directory traversal vulnerability in Arrowpoint (aka Cisco Content Services, or CSS) allows local unprivileged users to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-2001-0021 | 1 Endymion | 1 Mailman Webmail | 2017-10-10 | 10.0 HIGH | N/A |
| MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate_template parameter. | |||||
| CVE-2001-0028 | 1 Igor Khasilev | 1 Oops Proxy Server | 2017-10-10 | 10.0 HIGH | N/A |
| Buffer overflow in the HTML parsing code in oops WWW proxy server 1.5.2 and earlier allows remote attackers to execute arbitrary commands via a large number of " (quotation) characters. | |||||
| CVE-2001-0033 | 2 Kth, Netbsd | 2 Kth Kerberos, Netbsd | 2017-10-10 | 7.2 HIGH | N/A |
| KTH Kerberos IV allows local users to change the configuration of a Kerberos server running at an elevated privilege by specifying an alternate directory using with the KRBCONFDIR environmental variable, which allows the user to gain additional privileges. | |||||
| CVE-2001-0034 | 1 Kth | 1 Kth Kerberos | 2017-10-10 | 7.2 HIGH | N/A |
| KTH Kerberos IV allows local users to specify an alternate proxy using the krb4_proxy variable, which allows the user to generate false proxy responses and possibly gain privileges. | |||||
| CVE-2001-0035 | 1 Kth | 1 Kth Kerberos | 2017-10-10 | 7.2 HIGH | N/A |
| Buffer overflow in the kdc_reply_cipher function in KTH Kerberos IV allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long authentication request. | |||||
| CVE-2001-0036 | 1 Kth | 1 Kth Kerberos | 2017-10-10 | 1.2 LOW | N/A |
| KTH Kerberos IV allows local users to overwrite arbitrary files via a symlink attack on a ticket file. | |||||
| CVE-2001-0039 | 1 Ipswitch | 1 Imail | 2017-10-10 | 5.0 MEDIUM | N/A |
| IPSwitch IMail 6.0.5 allows remote attackers to cause a denial of service using the SMTP AUTH command by sending a base64-encoded user password whose length is between 80 and 136 bytes. | |||||
| CVE-2001-0040 | 1 Apc | 1 Apcupsd | 2017-10-10 | 2.1 LOW | N/A |
| APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to kill an arbitrary process by specifying the target process ID in the apcupsd.pid file. | |||||
| CVE-2001-0042 | 1 Apache | 1 Http Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| PHP 3.x (PHP3) on Apache 1.3.6 allows remote attackers to read arbitrary files via a modified .. (dot dot) attack containing "%5c" (encoded backslash) sequences. | |||||
| CVE-2001-0043 | 1 Phpgroupware | 1 Phpgroupware | 2017-10-10 | 10.0 HIGH | N/A |
| phpGroupWare before 0.9.7 allows remote attackers to execute arbitrary PHP commands by specifying a malicious include file in the phpgw_info parameter of the phpgw.inc.php program. | |||||
| CVE-2001-0053 | 3 David Madore, Netbsd, Openbsd | 3 Ftpd-bsd, Netbsd, Openbsd | 2017-10-10 | 10.0 HIGH | N/A |
| One-byte buffer overflow in replydirname function in BSD-based ftpd allows remote attackers to gain root privileges. | |||||
| CVE-2001-0055 | 1 Cisco | 2 Broadband Operating System, Cisco 6xx Routers | 2017-10-10 | 5.0 MEDIUM | N/A |
| CBOS 2.4.1 and earlier in Cisco 600 routers allows remote attackers to cause a denial of service via a slow stream of TCP SYN packets. | |||||
| CVE-2001-0056 | 1 Cisco | 1 Broadband Operating System | 2017-10-10 | 7.5 HIGH | N/A |
| The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid logins, which allows remote attackers to guess passwords without detection. | |||||
| CVE-2001-0430 | 1 Debian | 1 Debian Linux | 2017-10-10 | 3.6 LOW | N/A |
| Vulnerability in exuberant-ctags before 3.2.4-0.1 insecurely creates temporary files. | |||||
| CVE-2001-0057 | 1 Cisco | 2 Broadband Operating System, Cisco 6xx Routers | 2017-10-10 | 5.0 MEDIUM | N/A |
| Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attackers to cause a denial of service via a large ICMP echo (ping) packet. | |||||
| CVE-2001-0058 | 1 Cisco | 2 Broadband Operating System, Cisco 6xx Routers | 2017-10-10 | 5.0 MEDIUM | N/A |
| The Web interface to Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attackers to cause a denial of service via a URL that does not end in a space character. | |||||
| CVE-2001-0061 | 1 Freebsd | 1 Freebsd | 2017-10-10 | 7.2 HIGH | N/A |
| procfs in FreeBSD and possibly other operating systems does not properly restrict access to per-process mem and ctl files, which allows local users to gain root privileges by forking a child process and executing a privileged process from the child, while the parent retains access to the child's address space. | |||||
| CVE-2001-0062 | 1 Freebsd | 1 Freebsd | 2017-10-10 | 2.1 LOW | N/A |
| procfs in FreeBSD and possibly other operating systems allows local users to cause a denial of service by calling mmap on the process' own mem file, which causes the kernel to hang. | |||||
| CVE-2001-0063 | 1 Freebsd | 1 Freebsd | 2017-10-10 | 7.2 HIGH | N/A |
| procfs in FreeBSD and possibly other operating systems allows local users to bypass access control restrictions for a jail environment and gain additional privileges. | |||||