Search
Total
201818 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0541 | 1 Panda | 1 Panda Antivirus | 2017-10-10 | 7.2 HIGH | N/A |
| The Panda Antivirus console on port 2001 allows local users to execute arbitrary commands without authentication via the CMD command. | |||||
| CVE-2000-0542 | 1 Ericsson | 1 Axc Tigris Multiservice Access Platform | 2017-10-10 | 5.0 MEDIUM | N/A |
| Tigris remote access server before 11.5.4.22 does not properly record Radius accounting information when a user fails the initial login authentication but subsequently succeeds. | |||||
| CVE-2000-0551 | 1 Danware Data | 1 Netop | 2017-10-10 | 10.0 HIGH | N/A |
| The file transfer mechanism in Danware NetOp 6.0 does not provide authentication, which allows remote attackers to access and modify arbitrary files. | |||||
| CVE-2000-0552 | 1 Mirabilis | 1 Icq | 2017-10-10 | 2.1 LOW | N/A |
| ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information. | |||||
| CVE-2000-0553 | 1 Darren Reed | 1 Ipfilter | 2017-10-10 | 2.6 LOW | N/A |
| Race condition in IPFilter firewall 3.4.3 and earlier, when configured with overlapping "return-rst" and "keep state" rules, allows remote attackers to bypass access restrictions. | |||||
| CVE-2000-0555 | 1 Lilikoi | 1 Ceilidh | 2017-10-10 | 5.0 MEDIUM | N/A |
| Ceilidh allows remote attackers to cause a denial of service via a large number of POST requests. | |||||
| CVE-2000-0556 | 1 Computalynx | 1 Cmail | 2017-10-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to cause a denial of service by sending a large user name to the user dialog running on port 8002. | |||||
| CVE-2000-0557 | 1 Computalynx | 1 Cmail | 2017-10-10 | 10.0 HIGH | N/A |
| Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to execute arbitrary commands via a long GET request. | |||||
| CVE-2000-0561 | 1 International Telecommunications | 1 International Telecommunications Webbbs | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in WebBBS 1.15 allows remote attackers to execute arbitrary commands via a long HTTP GET request. | |||||
| CVE-2000-0565 | 1 Mindstorm | 1 Smartftp Daemon | 2017-10-10 | 2.1 LOW | N/A |
| SmartFTP Daemon 0.2 allows a local user to access arbitrary files by uploading and specifying an alternate user configuration file via a .. (dot dot) attack. | |||||
| CVE-2000-0569 | 1 Sybergen | 1 Sygate | 2017-10-10 | 5.0 MEDIUM | N/A |
| Sybergen Sygate allows remote attackers to cause a denial of service by sending a malformed DNS UDP packet to its internal interface. | |||||
| CVE-2000-0570 | 1 Centrinity | 1 Firstclass Intranet Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| FirstClass Internet Services server 5.770, and other versions before 6.1, allows remote attackers to cause a denial of service by sending an email with a long To: mail header. | |||||
| CVE-2000-0571 | 1 West Street Software | 1 Localweb Http Server | 2017-10-10 | 6.4 MEDIUM | N/A |
| LocalWEB HTTP server 1.2.0 allows remote attackers to cause a denial of service via a long GET request. | |||||
| CVE-2000-0575 | 1 Ssh | 1 Ssh | 2017-10-10 | 7.2 HIGH | N/A |
| SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is installed on NFS. | |||||
| CVE-2000-0590 | 1 Cgi-world | 1 Poll It | 2017-10-10 | 7.5 HIGH | N/A |
| Poll It 2.0 CGI script allows remote attackers to read arbitrary files by specifying the file name in the data_dir parameter. | |||||
| CVE-2000-0593 | 1 Sapporoworks | 1 Sapporoworks Winproxy | 2017-10-10 | 5.0 MEDIUM | N/A |
| WinProxy 2.0 and 2.0.1 allows remote attackers to cause a denial of service by sending an HTTP GET request without listing an HTTP version number. | |||||
| CVE-2000-0594 | 3 Caldera, Freebsd, Mandrakesoft | 6 Openlinux Desktop, Openlinux Ebuilder, Openlinux Edesktop and 3 more | 2017-10-10 | 5.0 MEDIUM | N/A |
| BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters. | |||||
| CVE-2000-0600 | 2 Netscape, Novell | 2 Enterprise Server, Netware | 2017-10-10 | 7.5 HIGH | N/A |
| Netscape Enterprise Server in NetWare 5.1 allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed URL. | |||||
| CVE-2000-0610 | 1 Netwin | 2 Cwmail, Dmailweb | 2017-10-10 | 5.0 MEDIUM | N/A |
| NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to bypass authentication and use the server for mail relay via a username that contains a carriage return. | |||||
| CVE-2000-0611 | 1 Netwin | 2 Cwmail, Dmailweb | 2017-10-10 | 5.0 MEDIUM | N/A |
| The default configuration of NetWin dMailWeb and cwMail trusts all POP servers, which allows attackers to bypass normal authentication and cause a denial of service. | |||||
| CVE-2000-0613 | 1 Cisco | 1 Pix Firewall | 2017-10-10 | 5.0 MEDIUM | N/A |
| Cisco Secure PIX Firewall does not properly identify forged TCP Reset (RST) packets, which allows remote attackers to force the firewall to close legitimate connections. | |||||
| CVE-2000-0615 | 1 Astart Technologies | 1 Lprng | 2017-10-10 | 2.1 LOW | N/A |
| LPRng 3.6.x improperly installs lpd as setuid root, which can allow local users to append lpd trace and logging messages to files. | |||||
| CVE-2000-0619 | 1 Toplayer | 1 Appswitch | 2017-10-10 | 5.0 MEDIUM | N/A |
| Top Layer AppSwitch 2500 allows remote attackers to cause a denial of service via malformed ICMP packets. | |||||
| CVE-2000-0620 | 2 Open Group, Xfree86 Project | 2 X, X11r6 | 2017-10-10 | 5.0 MEDIUM | N/A |
| libX11 X library allows remote attackers to cause a denial of service via a resource mask of 0, which causes libX11 to go into an infinite loop. | |||||
| CVE-2000-0622 | 1 Oreilly | 1 Website Professional | 2017-10-10 | 10.0 HIGH | N/A |
| Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote attackers to execute arbitrary commands via a URL containing a long "keywords" parameter. | |||||
| CVE-2000-0624 | 1 Nullsoft | 1 Winamp | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in Winamp 2.64 and earlier allows remote attackers to execute arbitrary commands via a long #EXTINF: extension in the M3U playlist. | |||||
| CVE-2000-0627 | 1 Blackboard | 1 Courseinfo | 2017-10-10 | 7.5 HIGH | N/A |
| BlackBoard CourseInfo 4.0 does not properly authenticate users, which allows local users to modify CourseInfo database information and gain privileges by directly calling the supporting CGI programs such as user_update_passwd.pl and user_update_admin.pl. | |||||
| CVE-2000-0628 | 1 Joshua Chamas | 1 Apache Asp | 2017-10-10 | 7.5 HIGH | N/A |
| The source.asp example script in the Apache ASP module Apache::ASP 1.93 and earlier allows remote attackers to modify files. | |||||
| CVE-2000-0632 | 1 Lsoft | 1 Listserv | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in the web archive component of L-Soft Listserv 1.8d and earlier allows remote attackers to execute arbitrary commands via a long query string. | |||||
| CVE-2000-0633 | 3 Conectiva, Mandrakesoft, Redhat | 3 Linux, Mandrake Linux, Linux | 2017-10-10 | 2.1 LOW | N/A |
| Vulnerability in Mandrake Linux usermode package allows local users to to reboot or halt the system. | |||||
| CVE-2000-0634 | 1 Stalker | 1 Communigate Pro | 2017-10-10 | 5.0 MEDIUM | N/A |
| The web administration interface for CommuniGate Pro 3.2.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-2000-0635 | 1 Akopia | 1 Minivend | 2017-10-10 | 7.5 HIGH | N/A |
| The view_page.html sample page in the MiniVend shopping cart program allows remote attackers to execute arbitrary commands via shell metacharacters. | |||||
| CVE-2000-0636 | 1 Hp | 1 Jetdirect | 2017-10-10 | 5.0 MEDIUM | N/A |
| HP JetDirect printers versions G.08.20 and H.08.20 and earlier allow remote attackers to cause a denial of service via a malformed FTP quote command. | |||||
| CVE-2000-0638 | 1 Sean Macguire | 1 Big Brother | 2017-10-10 | 10.0 HIGH | N/A |
| bb-hostsvc.sh in Big Brother 1.4h1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack on the HOSTSVC parameter. | |||||
| CVE-2000-0639 | 1 Sean Macguire | 1 Big Brother | 2017-10-10 | 7.5 HIGH | N/A |
| The default configuration of Big Brother 1.4h2 and earlier does not include proper access restrictions, which allows remote attackers to execute arbitrary commands by using bbd to upload a file whose extension will cause it to be executed as a CGI script by the web server. | |||||
| CVE-2000-0640 | 1 Steve Poulsen | 1 Guildftpd | 2017-10-10 | 7.5 HIGH | N/A |
| Guild FTPd allows remote attackers to determine the existence of files outside the FTP root via a .. (dot dot) attack, which provides different error messages depending on whether the file exists or not. | |||||
| CVE-2000-0641 | 1 Michael Lamont | 1 Savant Webserver | 2017-10-10 | 7.5 HIGH | N/A |
| Savant web server allows remote attackers to execute arbitrary commands via a long GET request. | |||||
| CVE-2000-0642 | 1 Itafrica | 1 Webactive | 2017-10-10 | 5.0 MEDIUM | N/A |
| The default configuration of WebActive HTTP Server 1.00 stores the web access log active.log in the document root, which allows remote attackers to view the logs by directly requesting the page. | |||||
| CVE-2000-0643 | 1 Itafrica | 1 Webactive | 2017-10-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in WebActive HTTP Server 1.00 allows remote attackers to cause a denial of service via a long URL. | |||||
| CVE-2000-0644 | 1 Texas Imperial Software | 1 Wftpd | 2017-10-10 | 5.0 MEDIUM | N/A |
| WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing a STAT command while the LIST command is still executing. | |||||
| CVE-2000-0650 | 1 Network Associates | 2 Netshield, Virusscan | 2017-10-10 | 2.1 LOW | N/A |
| The default installation of VirusScan 4.5 and NetShield 4.5 has insecure permissions for the registry key that identifies the AutoUpgrade directory, which allows local users to execute arbitrary commands by replacing SETUP.EXE in that directory with a Trojan Horse. | |||||
| CVE-2000-0651 | 1 Novell | 1 Bordermanager | 2017-10-10 | 7.5 HIGH | N/A |
| The ClientTrust program in Novell BorderManager does not properly verify the origin of authentication requests, which could allow remote attackers to impersonate another user by replaying the authentication requests and responses from port 3024 of the victim's machine. | |||||
| CVE-2000-0652 | 1 Ibm | 1 Websphere Application Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string. | |||||
| CVE-2000-0660 | 1 Alt-n | 1 Worldclient | 2017-10-10 | 5.0 MEDIUM | N/A |
| The WDaemon web server for WorldClient 2.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-2000-0661 | 1 Wircsrv | 1 Irc Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| WircSrv IRC Server 5.07s allows remote attackers to cause a denial of service via a long string to the server port. | |||||
| CVE-2000-0664 | 1 Analogx | 1 Simpleserver Www | 2017-10-10 | 5.0 MEDIUM | N/A |
| AnalogX SimpleServer:WWW 1.06 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack that uses the %2E URL encoding for the dots. | |||||
| CVE-2000-0665 | 1 Gamsoft | 1 Telsrv | 2017-10-10 | 5.0 MEDIUM | N/A |
| GAMSoft TelSrv telnet server 1.5 and earlier allows remote attackers to cause a denial of service via a long username. | |||||
| CVE-2000-0668 | 3 Conectiva, Michael K. Johnson, Redhat | 3 Linux, Pam Console, Linux | 2017-10-10 | 5.0 MEDIUM | N/A |
| pam_console PAM module in Linux systems allows a user to access the system console and reboot the system when a display manager such as gdm or kdm has XDMCP enabled. | |||||
| CVE-2000-0671 | 1 Roxen | 1 Webserver | 2017-10-10 | 5.0 MEDIUM | N/A |
| Roxen web server earlier than 2.0.69 allows allows remote attackers to bypass access restrictions, list directory contents, and read source code by inserting a null character (%00) to the URL. | |||||
| CVE-2000-0674 | 1 Virtual Vision | 1 Ftp Browser | 2017-10-10 | 5.0 MEDIUM | N/A |
| ftp.pl CGI program for Virtual Visions FTP browser allows remote attackers to read directories outside of the document root via a .. (dot dot) attack. | |||||