Total
29739 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0690 | 1 Cgi Script Center | 1 Auction Weaver | 2025-04-03 | N/A |
| Auction Weaver CGI script 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the fromfile parameter. | ||||
| CVE-2000-0696 | 1 Sun | 1 Solaris Answerbook2 | 2025-04-03 | N/A |
| The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts, which allows remote attackers to add user accounts to the interface by directly calling the admin CGI script. | ||||
| CVE-2000-0701 | 3 Conectiva, Gnu, Redhat | 3 Linux, Mailman, Linux | 2025-04-03 | N/A |
| The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges. | ||||
| CVE-2000-0707 | 1 Pccs-linux | 1 Mysqldatabase Admin Tool | 2025-04-03 | N/A |
| PCCS MySQLDatabase Admin Tool Manager 1.2.4 and earlier installs the file dbconnect.inc within the web root, which allows remote attackers to obtain sensitive information such as the administrative password. | ||||
| CVE-2000-0711 | 2 Microsoft, Netscape | 2 Virtual Machine, Communicator | 2025-04-03 | N/A |
| Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstrated by Brown Orifice. | ||||
| CVE-2000-0714 | 1 University Of Massachusetts | 1 Scheme | 2025-04-03 | N/A |
| umb-scheme 3.2-11 for Red Hat Linux is installed with world-writeable files. | ||||
| CVE-2000-0726 | 1 Stalkerlab | 1 Mailers | 2025-04-03 | N/A |
| CGIMail.exe CGI program in Stalkerlab Mailers 1.1.2 allows remote attackers to read arbitrary files by specifying the file in the $Attach$ hidden form variable. | ||||
| CVE-2000-0741 | 1 Network Associates | 1 Net Tools Pki Server | 2025-04-03 | N/A |
| Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary code via format strings in a URL with a .XUDA extension. | ||||
| CVE-2000-0745 | 1 Francisco Burzi | 1 Php-nuke | 2025-04-03 | N/A |
| admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd parameter. | ||||
| CVE-2000-0750 | 3 Netbsd, Openbsd, Redhat | 3 Netbsd, Openbsd, Linux | 2025-04-03 | N/A |
| Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name. | ||||
| CVE-2000-0759 | 1 Apache | 1 Tomcat | 2025-04-03 | N/A |
| Jakarta Tomcat 3.1 under Apache reveals physical path information when a remote attacker requests a URL that does not exist, which generates an error message that includes the physical path. | ||||
| CVE-2000-0782 | 1 Netwin | 1 Netauth | 2025-04-03 | N/A |
| netauth.cgi program in Netwin Netauth 4.2e and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2000-0784 | 1 Rapidstream | 1 Rapidstream | 2025-04-03 | N/A |
| sshd program in the Rapidstream 2.1 Beta VPN appliance has a hard-coded "rsadmin" account with a null password, which allows remote attackers to execute arbitrary commands via ssh. | ||||
| CVE-2000-0791 | 1 Trustix | 1 Secure Linux | 2025-04-03 | N/A |
| Trustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows local users to replace it with a Trojan horse. | ||||
| CVE-2000-0803 | 1 Gnu | 1 Groff | 2025-04-03 | N/A |
| GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff. | ||||
| CVE-2000-0166 | 1 Interaccess | 1 Interaccess Telnetd Server | 2025-04-03 | N/A |
| Buffer overflow in the InterAccess telnet server TelnetD allows remote attackers to execute commands via a long login name. | ||||
| CVE-2000-0829 | 1 Redhat | 2 Linux, Tmpwatch | 2025-04-03 | N/A |
| The tmpwatch utility in Red Hat Linux forks a new process for each directory level, which allows local users to cause a denial of service by creating deeply nested directories in /tmp or /var/tmp/. | ||||
| CVE-2000-0837 | 1 Deerfield | 1 Ftp Serv-u | 2025-04-03 | N/A |
| FTP Serv-U 2.5e allows remote attackers to cause a denial of service by sending a large number of null bytes. | ||||
| CVE-2000-0838 | 1 Fastream | 1 Fur Http Server | 2025-04-03 | N/A |
| Fastream FUR HTTP server 1.0b allows remote attackers to cause a denial of service via a long GET request. | ||||
| CVE-2000-0847 | 1 University Of Washington | 2 Imap, Pine | 2025-04-03 | N/A |
| Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header. | ||||