NVD脆弱性情報トップ

検索メニュー表示

ベンダー名
プロダクト・サービス名
タイトル
CRITICAL
HIGH
MEDIUM
LOW
CVE
CWE
公表日降順
更新日降順
表示数

NVD（National Vulnerability Database）で管理されている脆弱性の一覧を検索することが出来ます。
JVN（Japan Vulnerability Note）より先に脆弱性情報が更新される事が多いため、JVNに未記載の脆弱性が更新されている場合があります。

JVN（Japan Vulnerability Note）に関連した脆弱性がある場合は詳細画面で情報を表示します。

CWEで検索する場合は、CWE概要を参照して、CWE番号を確認してください。

CRITICAL
HIGH
MEDIUM
LOW

更新日:2024年11月17日12:17

No	CVSS	レベル攻撃区分	ベンダー名	プロダクト名	タイトル	CWE	CVE	更新日	公表日	影響表示	Exploit PoC 検索
272851	10.0	HIGH	rapidstream	rapidstream	sshd program in the Rapidstream 2.1 Beta VPN appliance has a hard-coded "rsadmin" account with a null password, which allows remote attackers to execute arbitrary commands via ssh.	NVD-CWE-Other	CVE-2000-0784	2008-09-6 05:21	2000-10-20	表示	GitHub Exploit DB Packet Storm

272852	4.6	MEDIUM	bardon_data_systems	winu	WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges.	NVD-CWE-Other	CVE-2000-0789	2008-09-6 05:21	2000-10-20	表示	GitHub Exploit DB Packet Storm

272853	4.6	MEDIUM	trustix	secure_linux	Trustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows local users to replace it with a Trojan horse.	NVD-CWE-Other	CVE-2000-0791	2008-09-6 05:21	2000-10-20	表示	GitHub Exploit DB Packet Storm

272854	7.5	HIGH	alan_cox	gnome-lokkit	Gnome Lokkit firewall package before 0.41 does not properly restrict access to some ports, even if a user does not make any services available.	NVD-CWE-Other	CVE-2000-0792	2008-09-6 05:21	2000-10-20	表示	GitHub Exploit DB Packet Storm

272855	7.2	HIGH	hp	hp-ux	Buffer overflow in bdf program in HP-UX 11.00 may allow local users to gain root privileges via a long -t option.	NVD-CWE-Other	CVE-2000-0801	2008-09-6 05:21	2000-10-20	表示	GitHub Exploit DB Packet Storm

272856	7.5	HIGH	fastream	ftp\+\+_server	Buffer overflow in Fastream FTP++ 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long username.	NVD-CWE-Other	CVE-2000-0831	2008-09-6 05:21	2000-11-14	表示	GitHub Exploit DB Packet Storm

272857	2.1	LOW	sco	openserver	snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration.	NVD-CWE-Other	CVE-2000-0147	2008-09-6 05:20	2000-02-8	表示	GitHub Exploit DB Packet Storm

272858	2.6	LOW	realnetworks	realplayer	Buffer overflow in the RealNetworks RealPlayer client versions 6 and 7 allows remote attackers to cause a denial of service via a long Location URL.	NVD-CWE-Other	CVE-2000-0280	2008-09-6 05:20	2000-04-3	表示	GitHub Exploit DB Packet Storm

272859	2.1	LOW	napster	napster_client	Buffer overflow in the Napster client beta 5 allows remote attackers to cause a denial of service via a long message.	NVD-CWE-Other	CVE-2000-0281	2008-09-6 05:20	2000-03-26	表示	GitHub Exploit DB Packet Storm

272860	5.0	MEDIUM	sco	open_desktop openserver unixware	Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.	NVD-CWE-Other	CVE-2000-0307	2008-09-6 05:20	2001-03-12	表示	GitHub Exploit DB Packet Storm

272861	10.0	HIGH	netscape sco	enterprise_server fasttrack_server proxy_server unixware	Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges.	NVD-CWE-Other	CVE-2000-0308	2008-09-6 05:20	2001-03-12	表示	GitHub Exploit DB Packet Storm

272862	7.2	HIGH	openbsd	openbsd	cron in OpenBSD 2.5 allows local users to gain root privileges via an argv[] that is not NULL terminated, which is passed to cron's fake popen function.	NVD-CWE-Other	CVE-2000-0312	2008-09-6 05:20	2001-03-12	表示	GitHub Exploit DB Packet Storm

272863	10.0	HIGH	sco	unixware	A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges.	NVD-CWE-Other	CVE-2000-0348	2008-09-6 05:20	2001-03-12	表示	GitHub Exploit DB Packet Storm

272864	5.0	MEDIUM	sco	unixware	Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service.	NVD-CWE-Other	CVE-2000-0349	2008-09-6 05:20	2001-03-12	表示	GitHub Exploit DB Packet Storm

272865	10.0	HIGH	intel	netstructure_7110 netstructure_7180	NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain …	NVD-CWE-Other	CVE-2000-0384	2008-09-6 05:20	2000-05-8	表示	GitHub Exploit DB Packet Storm

272866	5.0	MEDIUM	microsoft	outlook outlook_express	Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name.	NVD-CWE-Other	CVE-2000-0415	2008-09-6 05:20	2000-05-12	表示	GitHub Exploit DB Packet Storm

272867	3.6	LOW	cray	unicos	Vulnerability in accton in Cray UNICOS 6.1 and 6.0 allows local users to read arbitrary files and modify system accounting configuration.	NVD-CWE-Other	CVE-1999-1300	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272868	7.5	HIGH	freebsd	freebsd	A design flaw in the Z-Modem protocol allows the remote sender of a file to execute arbitrary programs on the client, as implemented in rz in the rzsz module of FreeBSD before 2.1.5, and possibly oth…	NVD-CWE-Other	CVE-1999-1301	2008-09-6 05:19	1996-07-16	表示	GitHub Exploit DB Packet Storm

272869	7.5	HIGH	cisco	ios	Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.	NVD-CWE-Other	CVE-1999-1306	2008-09-6 05:19	1992-12-10	表示	GitHub Exploit DB Packet Storm

272870	7.2	HIGH	novell	unixware	Vulnerability in urestore in Novell UnixWare 1.1 allows local users to gain root privileges.	NVD-CWE-Other	CVE-1999-1307	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272871	4.6	MEDIUM	dec	dec_openvms	Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow local users to gain privileges or cause a denial of service.	NVD-CWE-Other	CVE-1999-1315	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272872	4.6	MEDIUM	novell	netware	Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing.	NVD-CWE-Other	CVE-1999-1320	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272873	7.5	HIGH	mit	kerberos	Buffer overflow in ssh 1.2.26 client with Kerberos V enabled could allow remote attackers to cause a denial of service or execute arbitrary commands via a long DNS hostname that is not properly handl…	NVD-CWE-Other	CVE-1999-1321	2008-09-6 05:19	1998-11-5	表示	GitHub Exploit DB Packet Storm

272874	4.6	MEDIUM	microsoft	windows_2000 windows_nt	When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to b…	NVD-CWE-Other	CVE-1999-1358	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272875	7.5	HIGH	microsoft	windows_nt	When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT does not properly enforce policies for global groups, which could allow users to bypass restrictions…	NVD-CWE-Other	CVE-1999-1359	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272876	2.1	LOW	microsoft	windows_nt	Windows NT 4.0 allows local users to cause a denial of service via a user mode application that closes a handle that was opened in kernel mode, which causes a crash when the kernel attempts to close …	NVD-CWE-Other	CVE-1999-1360	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272877	2.1	LOW	microsoft	windows_nt	Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters.	NVD-CWE-Other	CVE-1999-1362	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272878	2.1	LOW	microsoft	windows_nt	Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program that creates a large number of locks on a file, which exhausts the NonPagedPool.	NVD-CWE-Other	CVE-1999-1363	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272879	2.1	LOW	microsoft	windows_nt	Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode address to the functions (1) GetThreadContext or (2) SetThreadContext.	NVD-CWE-Other	CVE-1999-1364	2008-09-6 05:19	1999-12-31	表示	GitHub Exploit DB Packet Storm

272880	5.0	MEDIUM	matt_wright	download.cgi	Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.	NVD-CWE-Other	CVE-1999-1377	2008-09-6 05:19	1999-09-9	表示	GitHub Exploit DB Packet Storm

272881	6.2	MEDIUM	sun	sunos	passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument.	NVD-CWE-Other	CVE-1999-1388	2008-09-6 05:19	1994-05-13	表示	GitHub Exploit DB Packet Storm

272882	7.2	HIGH	debian	debian_linux	suidexec in suidmanager 0.18 on Debian 2.0 allows local users to gain root privileges by specifying a malicious program on the command line.	NVD-CWE-Other	CVE-1999-1390	2008-09-6 05:19	1998-04-28	表示	GitHub Exploit DB Packet Storm

272883	7.2	HIGH	next	next	Vulnerability in NeXT 1.0a and 1.0 with publicly accessible printers allows local users to gain privileges via a combination of the npd program and weak directory permissions.	NVD-CWE-Other	CVE-1999-1391	2008-09-6 05:19	1990-10-3	表示	GitHub Exploit DB Packet Storm

272884	7.2	HIGH	next	nex next	Vulnerability in restore0.9 installation script in NeXT 1.0a and 1.0 allows local users to gain root privileges.	NVD-CWE-Other	CVE-1999-1392	2008-09-6 05:19	1990-10-3	表示	GitHub Exploit DB Packet Storm

272885	7.2	HIGH	sun	sunos	Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).	NVD-CWE-Other	CVE-1999-1396	2008-09-6 05:19	1992-07-21	表示	GitHub Exploit DB Packet Storm

272886	4.6	MEDIUM	sgi	irix	Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook).	NVD-CWE-Other	CVE-1999-1401	2008-09-6 05:19	1996-12-5	表示	GitHub Exploit DB Packet Storm

272887	4.6	MEDIUM	digital	ultrix	Vulnerability in /usr/bin/mail in DEC ULTRIX before 4.2 allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1415	2008-09-6 05:19	1991-08-23	表示	GitHub Exploit DB Packet Storm

272888	5.0	MEDIUM	mirabilis	icq_web_front	ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server responses when a file exists ("4…	NVD-CWE-Other	CVE-1999-1418	2008-09-6 05:19	1999-05-1	表示	GitHub Exploit DB Packet Storm

272889	6.2	MEDIUM	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table e…	NVD-CWE-Other	CVE-1999-1424	2008-09-6 05:19	1997-11-10	表示	GitHub Exploit DB Packet Storm

272890	6.2	MEDIUM	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files.	NVD-CWE-Other	CVE-1999-1426	2008-09-6 05:19	1997-11-10	表示	GitHub Exploit DB Packet Storm

272891	6.2	MEDIUM	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges.	NVD-CWE-Other	CVE-1999-1427	2008-09-6 05:19	1997-11-10	表示	GitHub Exploit DB Packet Storm

272892	6.2	MEDIUM	sun	solstice_adminsuite	Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the save option in the Database Manager, which is running with setgid bin privileges.	NVD-CWE-Other	CVE-1999-1428	2008-09-6 05:19	1997-11-10	表示	GitHub Exploit DB Packet Storm

272893	7.2	HIGH	sun	sunos	Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.	NVD-CWE-Other	CVE-1999-1438	2008-09-6 05:19	1991-02-22	表示	GitHub Exploit DB Packet Storm

272894	2.1	LOW	sun	sunos	SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device.	NVD-CWE-Other	CVE-1999-1449	2008-09-6 05:19	1997-05-19	表示	GitHub Exploit DB Packet Storm

272895	7.5	HIGH	cisco	ios	Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enab…	NVD-CWE-Other	CVE-1999-1466	2008-09-6 05:19	1992-12-10	表示	GitHub Exploit DB Packet Storm

272896	7.2	HIGH	bsd	bsd	Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain root privileges by specifying a long shell or GECOS field.	NVD-CWE-Other	CVE-1999-1471	2008-09-6 05:19	1989-01-1	表示	GitHub Exploit DB Packet Storm

272897	4.6	MEDIUM	proftpd_project	proftpd	ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last com…	NVD-CWE-Other	CVE-1999-1475	2008-09-6 05:19	1999-11-19	表示	GitHub Exploit DB Packet Storm

272898	1.2	LOW	ibm	aix	(1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack.	NVD-CWE-Other	CVE-1999-1480	2008-09-6 05:19	1998-06-11	表示	GitHub Exploit DB Packet Storm

272899	4.6	MEDIUM	svgalib	svgalib	Buffer overflow in zgv in svgalib 1.2.10 and earlier allows local users to execute arbitrary code via a long HOME environment variable.	NVD-CWE-Other	CVE-1999-1483	2008-09-6 05:19	1997-06-19	表示	GitHub Exploit DB Packet Storm

272900	7.2	HIGH	ibm	aix	Vulnerability in digest in AIX 4.3 allows printq users to gain root privileges by creating and/or modifing any file on the system.	NVD-CWE-Other	CVE-1999-1487	2008-09-6 05:19	1998-01-21	表示	GitHub Exploit DB Packet Storm