Total
29753 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-1073 | 1 Netscape | 1 Iplanet Ical | 2025-04-03 | N/A |
| csstart program in iCal 2.1 Patch 2 searches for the cshttpd program in the current working directory, which allows local users to gain root privileges by creating a Trojan Horse cshttpd program in a directory and calling csstart from that directory. | ||||
| CVE-2000-1074 | 1 Netscape | 1 Iplanet Ical | 2025-04-03 | N/A |
| csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory. | ||||
| CVE-2000-1105 | 1 Microsoft | 1 Indexing Service | 2025-04-03 | N/A |
| The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the existence of files on visiting Windows 2000 systems that have Indexing Services enabled. | ||||
| CVE-2000-1106 | 1 Trend Micro | 1 Interscan Viruswall | 2025-04-03 | N/A |
| Trend Micro InterScan VirusWall creates an "Intscan" share to the "InterScan" directory with permissions that grant Full Control permissions to the Everyone group, which allows attackers to gain privileges by modifying the VirusWall programs. | ||||
| CVE-2000-1107 | 1 Suse | 1 Suse Linux | 2025-04-03 | N/A |
| in.identd ident server in SuSE Linux 6.x and 7.0 allows remote attackers to cause a denial of service via a long request, which causes the server to access a NULL pointer and crash. | ||||
| CVE-2000-1109 | 1 Midnight Commander | 1 Midnight Commander | 2025-04-03 | N/A |
| Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed. | ||||
| CVE-2000-1110 | 1 Ibm | 1 Net.data | 2025-04-03 | N/A |
| document.d2w CGI program in the IBM Net.Data db2www package allows remote attackers to determine the physical path of the web server by sending a nonexistent command to the program. | ||||
| CVE-2000-1121 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
| Buffer overflow in enq command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long -M argument. | ||||
| CVE-2000-1113 | 1 Microsoft | 1 Windows Media Player | 2025-04-03 | N/A |
| Buffer overflow in Microsoft Windows Media Player allows remote attackers to execute arbitrary commands via a malformed Active Stream Redirector (.ASX) file, aka the ".ASX Buffer Overrun" vulnerability. | ||||
| CVE-2000-1114 | 1 Unify | 1 Ewave Servletexec | 2025-04-03 | N/A |
| Unify ServletExec AS v3.0C allows remote attackers to read source code for JSP pages via an HTTP request that ends with characters such as ".", or "+", or "%20". | ||||
| CVE-2000-1115 | 1 Software602 | 1 602pro Lan Suite | 2025-04-03 | N/A |
| Buffer overflow in remote web administration component (webprox.dll) of 602Pro LAN SUITE before 2000.0.1.33 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request. | ||||
| CVE-2000-1116 | 1 Transsoft | 1 Broker Ftp Server | 2025-04-03 | N/A |
| Buffer overflow in TransSoft Broker FTP Server before 4.3.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long command. | ||||
| CVE-2000-1118 | 1 24link | 1 24link | 2025-04-03 | N/A |
| 24Link 1.06 web server allows remote attackers to bypass access restrictions by prepending strings such as "/+/" or "/." to the HTTP GET request. | ||||
| CVE-2000-1133 | 1 Flicks Software | 1 Authentix | 2025-04-03 | N/A |
| Authentix Authentix100 allows remote attackers to bypass authentication by inserting a . (dot) into the URL for a protected directory. | ||||
| CVE-2000-1135 | 1 Debian | 1 Debian Linux | 2025-04-03 | N/A |
| fshd (fsh daemon) in Debian GNU/Linux allows local users to overwrite files of other users via a symlink attack. | ||||
| CVE-2000-1136 | 1 Debian | 1 Elvis Tiny | 2025-04-03 | N/A |
| elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack. | ||||
| CVE-2000-1137 | 2 Gnu, Redhat | 2 Ed, Linux | 2025-04-03 | N/A |
| GNU ed before 0.2-18.1 allows local users to overwrite the files of other users via a symlink attack. | ||||
| CVE-2000-1138 | 1 Ibm | 1 Lotus Notes | 2025-04-03 | N/A |
| Lotus Notes R5 client R5.0.5 and earlier does not properly warn users when an S/MIME email message has been modified, which could allow an attacker to modify the email in transit without being detected. | ||||
| CVE-2000-1140 | 1 Recourse Technologies | 1 Mantrap | 2025-04-03 | N/A |
| Recourse ManTrap 1.6 does not properly hide processes from attackers, which could allow attackers to determine that they are in a honeypot system by comparing the results from kill commands with the process listing in the /proc filesystem. | ||||
| CVE-2000-1141 | 1 Recourse Technologies | 1 Mantrap | 2025-04-03 | N/A |
| Recourse ManTrap 1.6 modifies the kernel so that ".." does not appear in the /proc listing, which allows attackers to determine that they are in a honeypot system. | ||||