Search
Total
201818 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0582 | 1 Checkpoint | 1 Firewall-1 | 2008-09-10 | 5.0 MEDIUM | N/A |
| Check Point FireWall-1 4.0 and 4.1 allows remote attackers to cause a denial of service by sending a stream of invalid commands (such as binary zeros) to the SMTP Security Server proxy. | |||||
| CVE-2000-0583 | 1 Inter7 | 1 Vpopmail Vchkpw | 2008-09-10 | 5.0 MEDIUM | N/A |
| vchkpw program in vpopmail before version 4.8 does not properly cleanse an untrusted format string used in a call to syslog, which allows remote attackers to cause a denial of service via a USER or PASS command that contains arbitrary formatting directives. | |||||
| CVE-2000-0586 | 1 Dalnet | 1 Ircd | 2008-09-10 | 10.0 HIGH | N/A |
| Buffer overflow in Dalnet IRC server 4.6.5 allows remote attackers to cause a denial of service or execute arbitrary commands via the SUMMON command. | |||||
| CVE-2000-0587 | 1 Glftpd | 1 Glftpd | 2008-09-10 | 10.0 HIGH | N/A |
| The privpath directive in glftpd 1.18 allows remote attackers to bypass access restrictions for directories by using the file name completion capability. | |||||
| CVE-2000-0591 | 1 Novell | 1 Bordermanager | 2008-09-10 | 5.0 MEDIUM | N/A |
| Novell BorderManager 3.0 and 3.5 allows remote attackers to bypass URL filtering by encoding characters in the requested URL. | |||||
| CVE-2000-0592 | 1 Sapporoworks | 1 Sapporoworks Winproxy | 2008-09-10 | 7.5 HIGH | N/A |
| Buffer overflows in POP3 service in WinProxy 2.0 and 2.0.1 allow remote attackers to execute arbitrary commands via long USER, PASS, LIST, RETR, or DELE commands. | |||||
| CVE-2000-0595 | 1 Freebsd | 1 Freebsd | 2008-09-10 | 4.6 MEDIUM | N/A |
| libedit searches for the .editrc file in the current directory instead of the user's home directory, which may allow local users to execute arbitrary commands by installing a modified .editrc in another directory. | |||||
| CVE-2000-0598 | 1 Fortech | 1 Proxy\+ | 2008-09-10 | 5.0 MEDIUM | N/A |
| Fortech Proxy+ allows remote attackers to bypass access restrictions for to the administration service by redirecting their connections through the telnet proxy. | |||||
| CVE-2000-0599 | 1 Imesh.com | 1 Imesh | 2008-09-10 | 7.5 HIGH | N/A |
| Buffer overflow in iMesh 1.02 allows remote attackers to execute arbitrary commands via a long string to the iMesh port. | |||||
| CVE-2000-0601 | 1 Leafdigital | 1 Leafchat | 2008-09-10 | 5.0 MEDIUM | N/A |
| LeafChat 1.7 IRC client allows a remote IRC server to cause a denial of service by rapidly sending a large amount of error messages. | |||||
| CVE-2000-0602 | 1 Kevin Lindsay | 1 Secure Locate | 2008-09-10 | 4.6 MEDIUM | N/A |
| Secure Locate (slocate) in Red Hat Linux allows local users to gain privileges via a malformed configuration file that is specified in the LOCATE_PATH environmental variable. | |||||
| CVE-2000-0604 | 1 Redhat | 1 Linux | 2008-09-10 | 4.6 MEDIUM | N/A |
| gkermit in Red Hat Linux is improperly installed with setgid uucp, which allows local users to modify files owned by uucp. | |||||
| CVE-2000-0605 | 1 Blackboard | 1 Courseinfo | 2008-09-10 | 2.1 LOW | N/A |
| Blackboard CourseInfo 4.0 stores the local and SQL administrator user names and passwords in cleartext in a registry key whose access control allows users to access the passwords. | |||||
| CVE-2000-0606 | 3 Debian, Mandrakesoft, Redhat | 3 Debian Linux, Mandrake Linux, Linux | 2008-09-10 | 7.2 HIGH | N/A |
| Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter. | |||||
| CVE-2000-0607 | 3 Debian, Mandrakesoft, Redhat | 3 Debian Linux, Mandrake Linux, Linux | 2008-09-10 | 7.2 HIGH | N/A |
| Buffer overflow in fld program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via an input file containing long CHARSET_REGISTRY or CHARSET_ENCODING settings. | |||||
| CVE-2000-0608 | 1 Netwin | 2 Cwmail, Dmailweb | 2008-09-10 | 5.0 MEDIUM | N/A |
| NetWin dMailWeb and cwMail 2.6i and earlier allows remote attackers to cause a denial of service via a long POP parameter (pophost). | |||||
| CVE-2000-0609 | 1 Netwin | 2 Cwmail, Dmailweb | 2008-09-10 | 5.0 MEDIUM | N/A |
| NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to cause a denial of service via a long username parameter. | |||||
| CVE-2000-0612 | 1 Microsoft | 2 Windows 95, Windows 98 | 2008-09-10 | 5.0 MEDIUM | N/A |
| Windows 95 and Windows 98 do not properly process spoofed ARP packets, which allows remote attackers to overwrite static entries in the cache table. | |||||
| CVE-2000-0614 | 1 Suse | 1 Suse Linux | 2008-09-10 | 10.0 HIGH | N/A |
| Tnef program in Linux systems allows remote attackers to overwrite arbitrary files via TNEF encoded compressed attachments which specify absolute path names for the decompressed output. | |||||
| CVE-2000-0616 | 1 Hp | 1 Mpe Ix | 2008-09-10 | 4.6 MEDIUM | N/A |
| Vulnerability in HP TurboIMAGE DBUTIL allows local users to gain additional privileges via DBUTIL.PUB.SYS. | |||||
| CVE-2000-0617 | 1 Stanley T. Shebs | 1 Xconq | 2008-09-10 | 4.6 MEDIUM | N/A |
| Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long USER environmental variable. | |||||
| CVE-2000-0618 | 1 Stanley T. Shebs | 1 Xconq | 2008-09-10 | 4.6 MEDIUM | N/A |
| Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long DISPLAY environmental variable. | |||||
| CVE-2000-0623 | 1 Oreilly | 1 Website Professional | 2008-09-10 | 10.0 HIGH | N/A |
| Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header. | |||||
| CVE-2000-0625 | 1 Netzero | 1 Zeroport | 2008-09-10 | 4.6 MEDIUM | N/A |
| NetZero 3.0 and earlier uses weak encryption for storing a user's login information, which allows a local user to decrypt the password. | |||||
| CVE-2000-0626 | 1 Computer Software Manufaktur | 1 Alibaba | 2008-09-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in Alibaba web server allows remote attackers to cause a denial of service via a long GET request. | |||||
| CVE-2000-0629 | 1 Sun | 1 Java System Web Server | 2008-09-10 | 7.5 HIGH | N/A |
| The default configuration of the Sun Java web server 2.0 and earlier allows remote attackers to execute arbitrary commands by uploading Java code to the server via board.html, then directly calling the JSP compiler servlet. | |||||
| CVE-2000-0645 | 1 Texas Imperial Software | 1 Wftpd | 2008-09-10 | 6.4 MEDIUM | N/A |
| WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via commands such as STORE UNIQUE (STOU), STORE (STOR), or APPEND (APPE). | |||||
| CVE-2000-0646 | 1 Texas Imperial Software | 1 Wftpd | 2008-09-10 | 5.0 MEDIUM | N/A |
| WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred. | |||||
| CVE-2000-0647 | 1 Texas Imperial Software | 1 Wftpd | 2008-09-10 | 5.0 MEDIUM | N/A |
| WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server. | |||||
| CVE-2000-0648 | 1 Texas Imperial Software | 1 Wftpd | 2008-09-10 | 5.0 MEDIUM | N/A |
| WFTPD and WFTPD Pro 2.41 allows local users to cause a denial of service by executing the RENAME TO (RNTO) command before a RENAME FROM (RNFR) command. | |||||
| CVE-2000-0655 | 2 Mozilla, Netscape | 2 Mozilla, Communicator | 2008-09-10 | 5.0 MEDIUM | N/A |
| Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1. | |||||
| CVE-2000-0656 | 1 Analogx | 1 Proxy | 2008-09-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long USER command in the FTP protocol. | |||||
| CVE-2000-0658 | 1 Analogx | 1 Proxy | 2008-09-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long USER command in the POP3 protocol. | |||||
| CVE-2000-0659 | 1 Analogx | 1 Proxy | 2008-09-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long user ID in a SOCKS4 CONNECT request. | |||||
| CVE-2000-0667 | 1 Conectiva | 1 Linux | 2008-09-10 | 3.6 LOW | N/A |
| Vulnerability in gpm in Caldera Linux allows local users to delete arbitrary files or conduct a denial of service. | |||||
| CVE-2000-0669 | 1 Novell | 1 Netware | 2008-09-10 | 5.0 MEDIUM | N/A |
| Novell NetWare 5.0 allows remote attackers to cause a denial of service by flooding port 40193 with random data. | |||||
| CVE-2000-0676 | 1 Netscape | 1 Communicator | 2008-09-10 | 5.0 MEDIUM | N/A |
| Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demonstrated by Brown Orifice. | |||||
| CVE-2000-0678 | 1 Pgp | 1 Pgp | 2008-09-10 | 5.0 MEDIUM | N/A |
| PGP 5.5.x through 6.5.3 does not properly check if an Additional Decryption Key (ADK) is stored in the signed portion of a public certificate, which allows an attacker who can modify a victim's public certificate to decrypt any data that has been encrypted with the modified certificate. | |||||
| CVE-2000-0684 | 1 Bea | 1 Weblogic Server | 2008-09-10 | 10.0 HIGH | N/A |
| BEA WebLogic 5.1.x does not properly restrict access to the JSPServlet, which could allow remote attackers to compile and execute Java JSP code by directly invoking the servlet on any source file. | |||||
| CVE-2000-0685 | 1 Bea | 1 Weblogic Server | 2008-09-10 | 10.0 HIGH | N/A |
| BEA WebLogic 5.1.x does not properly restrict access to the PageCompileServlet, which could allow remote attackers to compile and execute Java JHTML code by directly invoking the servlet on any source file. | |||||
| CVE-2000-0690 | 1 Cgi Script Center | 1 Auction Weaver | 2008-09-10 | 10.0 HIGH | N/A |
| Auction Weaver CGI script 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the fromfile parameter. | |||||
| CVE-2000-0701 | 3 Conectiva, Gnu, Redhat | 3 Linux, Mailman, Linux | 2008-09-10 | 4.6 MEDIUM | N/A |
| The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges. | |||||
| CVE-2000-0703 | 1 Larry Wall | 1 Perl | 2008-09-10 | 7.2 HIGH | N/A |
| suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence. | |||||
| CVE-2000-0705 | 1 Luca Deri | 1 Ntop | 2008-09-10 | 5.0 MEDIUM | N/A |
| ntop running in web mode allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-2000-0706 | 1 Luca Deri | 1 Ntop | 2008-09-10 | 10.0 HIGH | N/A |
| Buffer overflows in ntop running in web mode allows remote attackers to execute arbitrary commands. | |||||
| CVE-2000-0714 | 1 University Of Massachusetts | 1 Scheme | 2008-09-10 | 7.2 HIGH | N/A |
| umb-scheme 3.2-11 for Red Hat Linux is installed with world-writeable files. | |||||
| CVE-2000-0715 | 2 Conectiva, Kirk Bauer | 2 Linux, Diskcheck | 2008-09-10 | 2.1 LOW | N/A |
| DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite arbitrary files via a symlink attack on a temporary file. | |||||
| CVE-2000-0725 | 1 Zope | 1 Zope | 2008-09-10 | 7.2 HIGH | N/A |
| Zope before 2.2.1 does not properly restrict access to the getRoles method, which allows users who can edit DTML to add or modify roles by modifying the roles list that is included in a request. | |||||
| CVE-2000-0744 | 1 University Of Minnesota | 1 Gopherd | 2008-09-10 | 10.0 HIGH | N/A |
| DEPRECATED. This entry has been deprecated. It is a duplicate of CVE-2000-0743. | |||||
| CVE-2000-0750 | 3 Netbsd, Openbsd, Redhat | 3 Netbsd, Openbsd, Linux | 2008-09-10 | 7.5 HIGH | N/A |
| Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name. | |||||