267401
|
10.0 |
HIGH
|
sgi
|
irix
|
Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-…
|
NVD-CWE-Other
|
CVE-2000-0733
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267402
|
5.0 |
MEDIUM
|
rimarts_inc.
|
becky_internet_mail
|
Buffer overflow in Becky! Internet Mail client 1.26.03 and earlier allows remote attackers to cause a denial of service via a long Content-type: MIME header when the user replies to a message.
|
NVD-CWE-Other
|
CVE-2000-0735
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267403
|
5.0 |
MEDIUM
|
rimarts_inc.
|
becky_internet_mail
|
Buffer overflow in Becky! Internet Mail client 1.26.04 and earlier allows remote attackers to cause a denial of service via a long Content-type: MIME header when the user forwards a message.
|
NVD-CWE-Other
|
CVE-2000-0736
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267404
|
7.5 |
HIGH
|
network_associates
|
net_tools_pki_server
|
Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary code via format strings in a URL with a .XUDA extension.
|
NVD-CWE-Other
|
CVE-2000-0741
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267405
|
10.0 |
HIGH
|
university_of_minnesota
|
gopherd
|
Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value.
|
NVD-CWE-Other
|
CVE-2000-0743
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267406
|
7.5 |
HIGH
|
francisco_burzi
|
php-nuke
|
admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd paramete…
|
NVD-CWE-Other
|
CVE-2000-0745
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267407
|
4.6 |
MEDIUM
|
openldap
|
openldap
|
OpenLDAP 1.2.11 and earlier improperly installs the ud binary with group write permissions, which could allow any user in that group to replace the binary with a Trojan horse.
|
NVD-CWE-Other
|
CVE-2000-0748
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267408
|
7.5 |
HIGH
|
netbsd openbsd redhat
|
netbsd openbsd linux
|
mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands.
|
NVD-CWE-Other
|
CVE-2000-0751
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267409
|
7.2 |
HIGH
|
freebsd
|
freebsd
|
Buffer overflows in brouted in FreeBSD and possibly other OSes allows local users to gain root privileges via long command line arguments.
|
NVD-CWE-Other
|
CVE-2000-0752
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267410
|
2.1 |
LOW
|
hp
|
openview_network_node_manager
|
Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords.
|
NVD-CWE-Other
|
CVE-2000-0754
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267411
|
4.6 |
MEDIUM
|
hp
|
openview_network_node_manager
|
Vulnerability in the newgrp command in HP-UX 11.00 allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2000-0755
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267412
|
10.0 |
HIGH
|
aptis_software
|
totalbill
|
The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed.
|
NVD-CWE-Other
|
CVE-2000-0757
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267413
|
4.6 |
MEDIUM
|
lyris
|
list_manager
|
The web interface for Lyris List Manager 3 and 4 allows list subscribers to obtain administrative access by modifying the value of the list_admin hidden form field.
|
NVD-CWE-Other
|
CVE-2000-0758
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267414
|
5.0 |
MEDIUM
|
ibm
|
os2_ftp_server
|
OS2/Warp 4.5 FTP server allows remote attackers to cause a denial of service via a long username.
|
NVD-CWE-Other
|
CVE-2000-0761
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267415
|
5.0 |
MEDIUM
|
bajie
|
java_http_server
|
The sample Java servlet "test" in Bajie HTTP web server 0.30a reveals the real pathname of the web document root.
|
NVD-CWE-Other
|
CVE-2000-0774
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267416
|
10.0 |
HIGH
|
rapidstream
|
rapidstream
|
sshd program in the Rapidstream 2.1 Beta VPN appliance has a hard-coded "rsadmin" account with a null password, which allows remote attackers to execute arbitrary commands via ssh.
|
NVD-CWE-Other
|
CVE-2000-0784
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267417
|
4.6 |
MEDIUM
|
bardon_data_systems
|
winu
|
WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges.
|
NVD-CWE-Other
|
CVE-2000-0789
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267418
|
4.6 |
MEDIUM
|
trustix
|
secure_linux
|
Trustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows local users to replace it with a Trojan horse.
|
NVD-CWE-Other
|
CVE-2000-0791
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267419
|
7.5 |
HIGH
|
alan_cox
|
gnome-lokkit
|
Gnome Lokkit firewall package before 0.41 does not properly restrict access to some ports, even if a user does not make any services available.
|
NVD-CWE-Other
|
CVE-2000-0792
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267420
|
7.2 |
HIGH
|
hp
|
hp-ux
|
Buffer overflow in bdf program in HP-UX 11.00 may allow local users to gain root privileges via a long -t option.
|
NVD-CWE-Other
|
CVE-2000-0801
|
2008-09-6 05:21 |
2000-10-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267421
|
7.5 |
HIGH
|
fastream
|
ftp\+\+_server
|
Buffer overflow in Fastream FTP++ 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long username.
|
NVD-CWE-Other
|
CVE-2000-0831
|
2008-09-6 05:21 |
2000-11-14 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267422
|
2.1 |
LOW
|
sco
|
openserver
|
snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration.
|
NVD-CWE-Other
|
CVE-2000-0147
|
2008-09-6 05:20 |
2000-02-8 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267423
|
2.6 |
LOW
|
realnetworks
|
realplayer
|
Buffer overflow in the RealNetworks RealPlayer client versions 6 and 7 allows remote attackers to cause a denial of service via a long Location URL.
|
NVD-CWE-Other
|
CVE-2000-0280
|
2008-09-6 05:20 |
2000-04-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267424
|
2.1 |
LOW
|
napster
|
napster_client
|
Buffer overflow in the Napster client beta 5 allows remote attackers to cause a denial of service via a long message.
|
NVD-CWE-Other
|
CVE-2000-0281
|
2008-09-6 05:20 |
2000-03-26 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267425
|
5.0 |
MEDIUM
|
sco
|
open_desktop openserver unixware
|
Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.
|
NVD-CWE-Other
|
CVE-2000-0307
|
2008-09-6 05:20 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267426
|
10.0 |
HIGH
|
netscape sco
|
enterprise_server fasttrack_server proxy_server unixware
|
Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges.
|
NVD-CWE-Other
|
CVE-2000-0308
|
2008-09-6 05:20 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267427
|
7.2 |
HIGH
|
openbsd
|
openbsd
|
cron in OpenBSD 2.5 allows local users to gain root privileges via an argv[] that is not NULL terminated, which is passed to cron's fake popen function.
|
NVD-CWE-Other
|
CVE-2000-0312
|
2008-09-6 05:20 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267428
|
10.0 |
HIGH
|
sco
|
unixware
|
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges.
|
NVD-CWE-Other
|
CVE-2000-0348
|
2008-09-6 05:20 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267429
|
5.0 |
MEDIUM
|
sco
|
unixware
|
Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service.
|
NVD-CWE-Other
|
CVE-2000-0349
|
2008-09-6 05:20 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267430
|
10.0 |
HIGH
|
intel
|
netstructure_7110 netstructure_7180
|
NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain …
|
NVD-CWE-Other
|
CVE-2000-0384
|
2008-09-6 05:20 |
2000-05-8 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267431
|
5.0 |
MEDIUM
|
microsoft
|
outlook outlook_express
|
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name.
|
NVD-CWE-Other
|
CVE-2000-0415
|
2008-09-6 05:20 |
2000-05-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267432
|
3.6 |
LOW
|
cray
|
unicos
|
Vulnerability in accton in Cray UNICOS 6.1 and 6.0 allows local users to read arbitrary files and modify system accounting configuration.
|
NVD-CWE-Other
|
CVE-1999-1300
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267433
|
7.5 |
HIGH
|
freebsd
|
freebsd
|
A design flaw in the Z-Modem protocol allows the remote sender of a file to execute arbitrary programs on the client, as implemented in rz in the rzsz module of FreeBSD before 2.1.5, and possibly oth…
|
NVD-CWE-Other
|
CVE-1999-1301
|
2008-09-6 05:19 |
1996-07-16 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267434
|
7.5 |
HIGH
|
cisco
|
ios
|
Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.
|
NVD-CWE-Other
|
CVE-1999-1306
|
2008-09-6 05:19 |
1992-12-10 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267435
|
7.2 |
HIGH
|
novell
|
unixware
|
Vulnerability in urestore in Novell UnixWare 1.1 allows local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-1999-1307
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267436
|
4.6 |
MEDIUM
|
dec
|
dec_openvms
|
Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow local users to gain privileges or cause a denial of service.
|
NVD-CWE-Other
|
CVE-1999-1315
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267437
|
4.6 |
MEDIUM
|
novell
|
netware
|
Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing.
|
NVD-CWE-Other
|
CVE-1999-1320
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267438
|
7.5 |
HIGH
|
mit
|
kerberos
|
Buffer overflow in ssh 1.2.26 client with Kerberos V enabled could allow remote attackers to cause a denial of service or execute arbitrary commands via a long DNS hostname that is not properly handl…
|
NVD-CWE-Other
|
CVE-1999-1321
|
2008-09-6 05:19 |
1998-11-5 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267439
|
4.6 |
MEDIUM
|
microsoft
|
windows_2000 windows_nt
|
When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to b…
|
NVD-CWE-Other
|
CVE-1999-1358
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267440
|
7.5 |
HIGH
|
microsoft
|
windows_nt
|
When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT does not properly enforce policies for global groups, which could allow users to bypass restrictions…
|
NVD-CWE-Other
|
CVE-1999-1359
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267441
|
2.1 |
LOW
|
microsoft
|
windows_nt
|
Windows NT 4.0 allows local users to cause a denial of service via a user mode application that closes a handle that was opened in kernel mode, which causes a crash when the kernel attempts to close …
|
NVD-CWE-Other
|
CVE-1999-1360
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267442
|
2.1 |
LOW
|
microsoft
|
windows_nt
|
Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters.
|
NVD-CWE-Other
|
CVE-1999-1362
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267443
|
2.1 |
LOW
|
microsoft
|
windows_nt
|
Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program that creates a large number of locks on a file, which exhausts the NonPagedPool.
|
NVD-CWE-Other
|
CVE-1999-1363
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267444
|
2.1 |
LOW
|
microsoft
|
windows_nt
|
Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode address to the functions (1) GetThreadContext or (2) SetThreadContext.
|
NVD-CWE-Other
|
CVE-1999-1364
|
2008-09-6 05:19 |
1999-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267445
|
5.0 |
MEDIUM
|
matt_wright
|
download.cgi
|
Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
|
NVD-CWE-Other
|
CVE-1999-1377
|
2008-09-6 05:19 |
1999-09-9 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267446
|
6.2 |
MEDIUM
|
sun
|
sunos
|
passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument.
|
NVD-CWE-Other
|
CVE-1999-1388
|
2008-09-6 05:19 |
1994-05-13 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267447
|
7.2 |
HIGH
|
debian
|
debian_linux
|
suidexec in suidmanager 0.18 on Debian 2.0 allows local users to gain root privileges by specifying a malicious program on the command line.
|
NVD-CWE-Other
|
CVE-1999-1390
|
2008-09-6 05:19 |
1998-04-28 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267448
|
7.2 |
HIGH
|
next
|
next
|
Vulnerability in NeXT 1.0a and 1.0 with publicly accessible printers allows local users to gain privileges via a combination of the npd program and weak directory permissions.
|
NVD-CWE-Other
|
CVE-1999-1391
|
2008-09-6 05:19 |
1990-10-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267449
|
7.2 |
HIGH
|
next
|
nex next
|
Vulnerability in restore0.9 installation script in NeXT 1.0a and 1.0 allows local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-1999-1392
|
2008-09-6 05:19 |
1990-10-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
267450
|
7.2 |
HIGH
|
sun
|
sunos
|
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).
|
NVD-CWE-Other
|
CVE-1999-1396
|
2008-09-6 05:19 |
1992-07-21 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|