Search
Total
27796 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0360 | 1 Isc | 1 Inn | 2008-09-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in INN 2.2.1 and earlier allows remote attackers to cause a denial of service via a maliciously formatted article. | |||||
| CVE-2000-0359 | 1 Acme Labs | 1 Thttpd | 2008-09-10 | 10.0 HIGH | N/A |
| Buffer overflow in Trivial HTTP (THTTPd) allows remote attackers to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header. | |||||
| CVE-2000-0358 | 1 Redhat | 1 Linux | 2008-09-10 | 5.0 MEDIUM | N/A |
| ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program. | |||||
| CVE-2000-0357 | 1 Redhat | 1 Linux | 2008-09-10 | 7.5 HIGH | N/A |
| ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys. | |||||
| CVE-2000-0356 | 1 Redhat | 1 Linux | 2008-09-10 | 4.6 MEDIUM | N/A |
| Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts. | |||||
| CVE-2000-0319 | 1 Eric Allman | 1 Sendmail | 2008-09-10 | 5.0 MEDIUM | N/A |
| mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n. | |||||
| CVE-2000-0318 | 1 Atrium Software | 1 Mercur Mailserver | 2008-09-10 | 7.5 HIGH | N/A |
| Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot (..) attack. | |||||
| CVE-2000-0313 | 1 Openbsd | 1 Openbsd | 2008-09-10 | 4.6 MEDIUM | N/A |
| Vulnerability in OpenBSD 2.6 allows a local user to change interface media configurations. | |||||
| CVE-2000-0310 | 1 Openbsd | 1 Openbsd | 2008-09-10 | 5.0 MEDIUM | N/A |
| IP fragment assembly in OpenBSD 2.4 allows a remote attacker to cause a denial of service by sending a large number of fragmented packets. | |||||
| CVE-2000-0309 | 1 Openbsd | 1 Openbsd | 2008-09-10 | 2.1 LOW | N/A |
| The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service. | |||||
| CVE-2000-0303 | 1 Id Software | 1 Quake 3 Arena | 2008-09-10 | 6.4 MEDIUM | N/A |
| Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (..) attack. | |||||
| CVE-2000-0300 | 1 Symantec | 1 Pcanywhere | 2008-09-10 | 10.0 HIGH | N/A |
| The default encryption method of PcAnywhere 9.x uses weak encryption, which allows remote attackers to sniff and decrypt PcAnywhere or NT domain accounts. | |||||
| CVE-2000-0299 | 1 Apple | 1 Webobjects | 2008-09-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote attackers to cause a denial of service via an HTTP request with long headers such as Accept. | |||||
| CVE-2000-0297 | 1 Allaire | 1 Forums | 2008-09-10 | 6.4 MEDIUM | N/A |
| Allaire Forums 2.0.5 allows remote attackers to bypass access restrictions to secure conferences via the rightAccessAllForums or rightModerateAllForums variables. | |||||
| CVE-2000-0296 | 1 Michael A. Gumienny | 1 Fcheck | 2008-09-10 | 7.2 HIGH | N/A |
| fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck. | |||||
| CVE-2000-0294 | 1 Jim Housley | 1 Healthd | 2008-09-10 | 7.2 HIGH | N/A |
| Buffer overflow in healthd for FreeBSD allows local users to gain root privileges. | |||||
| CVE-2000-0293 | 1 Suse | 1 Suse Linux | 2008-09-10 | 2.1 LOW | N/A |
| aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory. | |||||
| CVE-2000-0292 | 1 Adtran | 1 Mx2800 | 2008-09-10 | 5.0 MEDIUM | N/A |
| The Adtran MX2800 M13 Multiplexer allows remote attackers to cause a denial of service via a ping flood to the Ethernet interface, which causes the device to crash. | |||||
| CVE-2000-0291 | 1 Sun | 1 Staroffice | 2008-09-10 | 4.6 MEDIUM | N/A |
| Buffer overflow in Star Office 5.1 allows attackers to cause a denial of service by embedding a long URL within a document. | |||||
| CVE-2000-0289 | 3 Debian, Linux, Redhat | 3 Debian Linux, Linux Kernel, Linux | 2008-09-10 | 5.0 MEDIUM | N/A |
| IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection. | |||||
| CVE-2000-0288 | 2008-09-10 | 5.0 MEDIUM | N/A | ||
| Infonautics getdoc.cgi allows remote attackers to bypass the payment phase for accessing documents via a modified form variable. | |||||
| CVE-2000-0287 | 1 Cnc | 1 Technology Bizdb | 2008-09-10 | 10.0 HIGH | N/A |
| The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter. | |||||
| CVE-2000-0286 | 1 Redhat | 1 Linux | 2008-09-10 | 2.1 LOW | N/A |
| X fontserver xfs allows local users to cause a denial of service via malformed input to the server. | |||||
| CVE-2000-0285 | 1 Xfree86 Project | 1 X11r6 | 2008-09-10 | 7.2 HIGH | N/A |
| Buffer overflow in XFree86 3.3.x allows local users to execute arbitrary commands via a long -xkbmap parameter. | |||||
| CVE-2000-0284 | 1 University Of Washington | 1 Imap | 2008-09-10 | 7.5 HIGH | N/A |
| Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands. | |||||
| CVE-2000-0283 | 1 Sgi | 1 Irix | 2008-09-10 | 6.4 MEDIUM | N/A |
| The default installation of IRIX Performance Copilot allows remote attackers to access sensitive system information via the pmcd daemon. | |||||
| CVE-2000-0163 | 1 Freebsd | 1 Freebsd | 2008-09-10 | 4.6 MEDIUM | N/A |
| asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file. | |||||
| CVE-2000-0159 | 1 Hp | 1 Hp-ux | 2008-09-10 | 7.5 HIGH | N/A |
| HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges. | |||||
| CVE-2000-0158 | 1 Sco | 1 Openserver | 2008-09-10 | 7.5 HIGH | N/A |
| Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon. | |||||
| CVE-2000-0157 | 1 Netbsd | 1 Netbsd | 2008-09-10 | 7.2 HIGH | N/A |
| NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process. | |||||
| CVE-2000-0154 | 1 Sco | 1 Unixware | 2008-09-10 | 1.2 LOW | N/A |
| The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack. | |||||
| CVE-2000-0153 | 1 Microsoft | 2 Frontpage, Personal Web Server | 2008-09-10 | 5.0 MEDIUM | N/A |
| FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack. | |||||
| CVE-2000-0152 | 1 Novell | 1 Bordermanager | 2008-09-10 | 5.0 MEDIUM | N/A |
| Remote attackers can cause a denial of service in Novell BorderManager 3.5 by pressing the enter key in a telnet connection to port 2000. | |||||
| CVE-2000-0146 | 1 Novell | 1 Groupwise | 2008-09-10 | 5.0 MEDIUM | N/A |
| The Java Server in the Novell GroupWise Web Access Enhancement Pack allows remote attackers to cause a denial of service via a long URL to the servlet. | |||||
| CVE-2000-0279 | 1 Be | 1 Beos | 2008-09-10 | 5.0 MEDIUM | N/A |
| BeOS allows remote attackers to cause a denial of service via malformed packets whose length field is less than the length of the headers. | |||||
| CVE-2000-0278 | 1 Saleslogix | 1 Corporation Eviewer | 2008-09-10 | 5.0 MEDIUM | N/A |
| The SalesLogix Eviewer allows remote attackers to cause a denial of service by accessing the URL for the slxweb.dll administration program, which does not authenticate the user. | |||||
| CVE-2000-0276 | 1 Be | 1 Beos | 2008-09-10 | 2.1 LOW | N/A |
| BeOS 4.5 and 5.0 allow local users to cause a denial of service via malformed direct system calls using interrupt 37. | |||||
| CVE-2000-0275 | 1 Cryptocard | 1 Cryptoadmin | 2008-09-10 | 2.1 LOW | N/A |
| CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN. | |||||
| CVE-2000-0274 | 1 Bray Systems | 1 Linux Trustees | 2008-09-10 | 2.1 LOW | N/A |
| The Linux trustees kernel patch allows attackers to cause a denial of service by accessing a file or directory with a long name. | |||||
| CVE-2000-0151 | 1 Gnu | 1 Make | 2008-09-10 | 6.2 MEDIUM | N/A |
| GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands. | |||||
| CVE-2000-0133 | 1 H. Nomura | 1 Tiny Ftpdaemon | 2008-09-10 | 10.0 HIGH | N/A |
| Buffer overflows in Tiny FTPd 0.52 beta3 FTP server allows users to execute commands via the STOR, RNTO, MKD, XMKD, RMD, XRMD, APPE, SIZE, and RNFR commands. | |||||
| CVE-2000-0273 | 1 Symantec | 1 Pcanywhere | 2008-09-10 | 5.0 MEDIUM | N/A |
| PCAnywhere allows remote attackers to cause a denial of service by terminating the connection before PCAnywhere provides a login prompt. | |||||
| CVE-2000-0271 | 1 Gnu | 1 Emacs | 2008-09-10 | 4.6 MEDIUM | N/A |
| read-passwd and other Lisp functions in Emacs 20 do not properly clear the history of recently typed keys, which allows an attacker to read unencrypted passwords. | |||||
| CVE-2000-0270 | 1 Gnu | 1 Emacs | 2008-09-10 | 3.6 LOW | N/A |
| The make-temp-name Lisp function in Emacs 20 creates temporary files with predictable names, which allows attackers to conduct a symlink attack. | |||||
| CVE-2000-0269 | 1 Gnu | 1 Emacs | 2008-09-10 | 2.1 LOW | N/A |
| Emacs 20 does not properly set permissions for a slave PTY device when starting a new subprocess, which allows local users to read or modify communications between Emacs and the subprocess. | |||||
| CVE-2000-0134 | 1 Adgrafix Corporation | 1 Check It Out | 2008-09-10 | 7.5 HIGH | N/A |
| The Check It Out shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | |||||
| CVE-2000-0135 | 1 Atretail | 1 Atretail | 2008-09-10 | 7.5 HIGH | N/A |
| The @Retail shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | |||||
| CVE-2000-0268 | 1 Cisco | 12 3660 Router, 7100 Router, 7200 Router and 9 more | 2008-09-10 | 5.0 MEDIUM | N/A |
| Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot. | |||||
| CVE-2000-0267 | 1 Cisco | 1 Catos | 2008-09-10 | 4.6 MEDIUM | N/A |
| Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password. | |||||
| CVE-2000-0265 | 1 Panda | 1 Panda Security | 2008-09-10 | 4.6 MEDIUM | N/A |
| Panda Security 3.0 allows users to uninstall the Panda software via its Add/Remove Programs applet. | |||||