Search
Total
27796 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0490 | 1 Netwin | 1 Dmail | 2017-10-10 | 10.0 HIGH | N/A |
| Buffer overflow in the NetWin DSMTP 2.7q in the NetWin dmail package allows remote attackers to execute arbitrary commands via a long ETRN request. | |||||
| CVE-2000-0493 | 1 Atrius Trivalie Sn | 1 Time Sync | 2017-10-10 | 10.0 HIGH | N/A |
| Buffer overflow in Simple Network Time Sync (SMTS) daemon allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long string. | |||||
| CVE-2000-0498 | 1 Unify | 1 Ewave Servletexec | 2017-10-10 | 5.0 MEDIUM | N/A |
| Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case. | |||||
| CVE-2000-0499 | 1 Bea | 1 Weblogic Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case. | |||||
| CVE-2000-0500 | 1 Bea | 1 Weblogic Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| The default configuration of BEA WebLogic 5.1.0 allows a remote attacker to view source code of programs by requesting a URL beginning with /file/, which causes the default servlet to display the file without further processing. | |||||
| CVE-2000-0501 | 1 Alt-n | 1 Mdaemon | 2017-10-10 | 2.6 LOW | N/A |
| Race condition in MDaemon 2.8.5.0 POP server allows local users to cause a denial of service by entering a UIDL command and quickly exiting the server. | |||||
| CVE-2000-0502 | 1 Mcafee | 1 Virusscan | 2017-10-10 | 2.1 LOW | N/A |
| Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion. | |||||
| CVE-2000-0507 | 1 Concatus | 1 Imate Webmail Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| Imate Webmail Server 2.5 allows remote attackers to cause a denial of service via a long HELO command. | |||||
| CVE-2000-0508 | 3 Debian, Mandrakesoft, Redhat | 3 Debian Linux, Mandrake Linux, Linux | 2017-10-10 | 5.0 MEDIUM | N/A |
| rpc.lockd in Red Hat Linux 6.1 and 6.2 allows remote attackers to cause a denial of service via a malformed request. | |||||
| CVE-2000-0510 | 1 Debian | 1 Debian Linux | 2017-10-10 | 5.0 MEDIUM | N/A |
| CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a malformed IPP request. | |||||
| CVE-2000-0511 | 1 Debian | 1 Debian Linux | 2017-10-10 | 5.0 MEDIUM | N/A |
| CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a CGI POST request. | |||||
| CVE-2000-0512 | 1 Debian | 1 Debian Linux | 2017-10-10 | 5.0 MEDIUM | N/A |
| CUPS (Common Unix Printing System) 1.04 and earlier does not properly delete request files, which allows a remote attacker to cause a denial of service. | |||||
| CVE-2000-0513 | 1 Debian | 1 Debian Linux | 2017-10-10 | 5.0 MEDIUM | N/A |
| CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service by authenticating with a user name that does not exist or does not have a shadow password. | |||||
| CVE-2000-0515 | 1 Hp | 1 Hp-ux | 2017-10-10 | 10.0 HIGH | N/A |
| The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges. | |||||
| CVE-2000-0516 | 1 Intel | 1 Shiva Access Manager | 2017-10-10 | 7.2 HIGH | N/A |
| When configured to store configuration information in an LDAP directory, Shiva Access Manager 5.0.0 stores the root DN (Distinguished Name) name and password in cleartext in a file that is world readable, which allows local users to compromise the LDAP server. | |||||
| CVE-2000-0517 | 1 Netscape | 1 Communicator | 2017-10-10 | 5.0 MEDIUM | N/A |
| Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for a different web site, which could allow remote attackers to spoof a legitimate web site by compromising that site's DNS information. | |||||
| CVE-2000-0521 | 1 Michael Lamont | 1 Savant Webserver | 2017-10-10 | 5.0 MEDIUM | N/A |
| Savant web server allows remote attackers to read source code of CGI scripts via a GET request that does not include the HTTP version number. | |||||
| CVE-2000-0523 | 1 Etype | 1 Eserv | 2017-10-10 | 10.0 HIGH | N/A |
| Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command. | |||||
| CVE-2000-0525 | 1 Openbsd | 1 Openssh | 2017-10-10 | 10.0 HIGH | N/A |
| OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon. | |||||
| CVE-2000-0533 | 1 Sgi | 1 Workshop Debugger And Performance Tools | 2017-10-10 | 7.2 HIGH | N/A |
| Vulnerability in cvconnect in SGI IRIX WorkShop allows local users to overwrite arbitrary files. | |||||
| CVE-2000-0528 | 1 Network Associates | 1 Net Tools Pki Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| Net Tools PKI Server does not properly restrict access to remote attackers when the XUDA template files do not contain absolute pathnames for other files. | |||||
| CVE-2000-0529 | 1 Network Associates | 1 Net Tools Pki Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| Net Tools PKI Server allows remote attackers to cause a denial of service via a long HTTP request. | |||||
| CVE-2000-0530 | 2 Caldera, Kde | 2 Openlinux, Kde | 2017-10-10 | 7.2 HIGH | N/A |
| The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files. | |||||
| CVE-2000-0532 | 1 Freebsd | 1 Freebsd | 2017-10-10 | 7.5 HIGH | N/A |
| A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered. | |||||
| CVE-2000-0536 | 1 Xinetd | 1 Xinetd | 2017-10-10 | 7.5 HIGH | N/A |
| xinetd 2.1.8.x does not properly restrict connections if hostnames are used for access control and the connecting host does not have a reverse DNS entry. | |||||
| CVE-2000-0537 | 1 Tolis Group | 1 Bru | 2017-10-10 | 7.2 HIGH | N/A |
| BRU backup software allows local users to append data to arbitrary files by specifying an alternate configuration file with the BRUEXECLOG environmental variable. | |||||
| CVE-2000-0538 | 1 Allaire | 1 Coldfusion Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password. | |||||
| CVE-2000-0539 | 1 Macromedia | 1 Jrun | 2017-10-10 | 6.4 MEDIUM | N/A |
| Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet. | |||||
| CVE-2000-0540 | 1 Macromedia | 1 Jrun | 2017-10-10 | 5.0 MEDIUM | N/A |
| JSP sample files in Allaire JRun 2.3.x allow remote attackers to access arbitrary files (e.g. via viewsource.jsp) or obtain configuration information. | |||||
| CVE-2000-0541 | 1 Panda | 1 Panda Antivirus | 2017-10-10 | 7.2 HIGH | N/A |
| The Panda Antivirus console on port 2001 allows local users to execute arbitrary commands without authentication via the CMD command. | |||||
| CVE-2000-0542 | 1 Ericsson | 1 Axc Tigris Multiservice Access Platform | 2017-10-10 | 5.0 MEDIUM | N/A |
| Tigris remote access server before 11.5.4.22 does not properly record Radius accounting information when a user fails the initial login authentication but subsequently succeeds. | |||||
| CVE-2000-0551 | 1 Danware Data | 1 Netop | 2017-10-10 | 10.0 HIGH | N/A |
| The file transfer mechanism in Danware NetOp 6.0 does not provide authentication, which allows remote attackers to access and modify arbitrary files. | |||||
| CVE-2000-0552 | 1 Mirabilis | 1 Icq | 2017-10-10 | 2.1 LOW | N/A |
| ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information. | |||||
| CVE-2000-0553 | 1 Darren Reed | 1 Ipfilter | 2017-10-10 | 2.6 LOW | N/A |
| Race condition in IPFilter firewall 3.4.3 and earlier, when configured with overlapping "return-rst" and "keep state" rules, allows remote attackers to bypass access restrictions. | |||||
| CVE-2000-0555 | 1 Lilikoi | 1 Ceilidh | 2017-10-10 | 5.0 MEDIUM | N/A |
| Ceilidh allows remote attackers to cause a denial of service via a large number of POST requests. | |||||
| CVE-2000-0556 | 1 Computalynx | 1 Cmail | 2017-10-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to cause a denial of service by sending a large user name to the user dialog running on port 8002. | |||||
| CVE-2000-0557 | 1 Computalynx | 1 Cmail | 2017-10-10 | 10.0 HIGH | N/A |
| Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to execute arbitrary commands via a long GET request. | |||||
| CVE-2000-0561 | 1 International Telecommunications | 1 International Telecommunications Webbbs | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in WebBBS 1.15 allows remote attackers to execute arbitrary commands via a long HTTP GET request. | |||||
| CVE-2000-0565 | 1 Mindstorm | 1 Smartftp Daemon | 2017-10-10 | 2.1 LOW | N/A |
| SmartFTP Daemon 0.2 allows a local user to access arbitrary files by uploading and specifying an alternate user configuration file via a .. (dot dot) attack. | |||||
| CVE-2000-0569 | 1 Sybergen | 1 Sygate | 2017-10-10 | 5.0 MEDIUM | N/A |
| Sybergen Sygate allows remote attackers to cause a denial of service by sending a malformed DNS UDP packet to its internal interface. | |||||
| CVE-2000-0570 | 1 Centrinity | 1 Firstclass Intranet Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| FirstClass Internet Services server 5.770, and other versions before 6.1, allows remote attackers to cause a denial of service by sending an email with a long To: mail header. | |||||
| CVE-2000-0571 | 1 West Street Software | 1 Localweb Http Server | 2017-10-10 | 6.4 MEDIUM | N/A |
| LocalWEB HTTP server 1.2.0 allows remote attackers to cause a denial of service via a long GET request. | |||||
| CVE-2000-0575 | 1 Ssh | 1 Ssh | 2017-10-10 | 7.2 HIGH | N/A |
| SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is installed on NFS. | |||||
| CVE-2000-0593 | 1 Sapporoworks | 1 Sapporoworks Winproxy | 2017-10-10 | 5.0 MEDIUM | N/A |
| WinProxy 2.0 and 2.0.1 allows remote attackers to cause a denial of service by sending an HTTP GET request without listing an HTTP version number. | |||||
| CVE-2000-0594 | 3 Caldera, Freebsd, Mandrakesoft | 6 Openlinux Desktop, Openlinux Ebuilder, Openlinux Edesktop and 3 more | 2017-10-10 | 5.0 MEDIUM | N/A |
| BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters. | |||||
| CVE-2000-0600 | 2 Netscape, Novell | 2 Enterprise Server, Netware | 2017-10-10 | 7.5 HIGH | N/A |
| Netscape Enterprise Server in NetWare 5.1 allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed URL. | |||||
| CVE-2000-0611 | 1 Netwin | 2 Cwmail, Dmailweb | 2017-10-10 | 5.0 MEDIUM | N/A |
| The default configuration of NetWin dMailWeb and cwMail trusts all POP servers, which allows attackers to bypass normal authentication and cause a denial of service. | |||||
| CVE-2000-0610 | 1 Netwin | 2 Cwmail, Dmailweb | 2017-10-10 | 5.0 MEDIUM | N/A |
| NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to bypass authentication and use the server for mail relay via a username that contains a carriage return. | |||||
| CVE-2000-0613 | 1 Cisco | 1 Pix Firewall | 2017-10-10 | 5.0 MEDIUM | N/A |
| Cisco Secure PIX Firewall does not properly identify forged TCP Reset (RST) packets, which allows remote attackers to force the firewall to close legitimate connections. | |||||
| CVE-2000-0615 | 1 Astart Technologies | 1 Lprng | 2017-10-10 | 2.1 LOW | N/A |
| LPRng 3.6.x improperly installs lpd as setuid root, which can allow local users to append lpd trace and logging messages to files. | |||||