|
364201
|
10.0 |
HIGH
|
trend_micro
|
interscan_viruswall
|
Buffer overflow in the SMTP gateway for InterScan Virus Wall 3.32 and earlier allows a remote attacker to execute arbitrary commands via a long filename for a uuencoded attachment.
|
NVD-CWE-Other
|
CVE-2000-0428
|
2008-09-11 04:04 |
2000-05-4 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364202
|
7.5 |
HIGH
|
matt_kruse
|
calendar_script
|
The calender.pl and the calendar_admin.pl calendar scripts by Matt Kruse allow remote attackers to execute arbitrary commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2000-0432
|
2008-09-11 04:04 |
2000-05-16 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364203
|
4.6 |
MEDIUM
|
suse
|
suse_linux
|
The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accounts by creating standard user startup scripts such…
|
NVD-CWE-Other
|
CVE-2000-0433
|
2008-09-11 04:04 |
2000-05-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364204
|
7.5 |
HIGH
|
matthew_redman
|
allmanage
|
The administrative password for the Allmanage web site administration software is stored in plaintext in a file which could be accessed by remote attackers.
|
NVD-CWE-Other
|
CVE-2000-0434
|
2008-09-11 04:04 |
2000-05-13 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364205
|
7.5 |
HIGH
|
matthew_redman
|
allmanage
|
The allmanageup.pl file upload CGI script in the Allmanage Website administration software 2.6 can be called directly by remote attackers, which allows them to modify user accounts or web pages.
|
NVD-CWE-Other
|
CVE-2000-0435
|
2008-09-11 04:04 |
2000-05-13 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364206
|
5.0 |
MEDIUM
|
metaproducts
|
offline_explorer
|
MetaProducts Offline Explorer 1.2 and earlier allows remote attackers to access arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2000-0436
|
2008-09-11 04:04 |
2000-05-19 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364207
|
10.0 |
HIGH
|
network_associates
|
gauntlet_firewall webshield webshield_e-ppliance
|
Buffer overflow in the CyberPatrol daemon "cyberdaemon" used in gauntlet and WebShield allows remote attackers to cause a denial of service or execute arbitrary commands.
|
NVD-CWE-Other
|
CVE-2000-0437
|
2008-09-11 04:04 |
2000-05-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364208
|
7.2 |
HIGH
|
caldera slackware suse turbolinux
|
openlinux slackware_linux suse_linux turbolinux
|
Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.
|
NVD-CWE-Other
|
CVE-2000-0438
|
2008-09-11 04:04 |
2000-05-22 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364209
|
5.0 |
MEDIUM
|
freebsd netbsd
|
freebsd netbsd
|
NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option.
|
NVD-CWE-Other
|
CVE-2000-0440
|
2008-09-11 04:04 |
2000-05-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364210
|
5.0 |
MEDIUM
|
ibm
|
aix
|
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.
|
NVD-CWE-Other
|
CVE-2000-0441
|
2008-09-11 04:04 |
2000-05-24 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364211
|
7.5 |
HIGH
|
qualcomm sun
|
qpopper cobalt_raq_2 cobalt_raq_3i
|
Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command.
|
NVD-CWE-Other
|
CVE-2000-0442
|
2008-09-11 04:04 |
2000-05-24 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364212
|
7.5 |
HIGH
|
hp
|
jetadmin
|
The web interface server in HP Web JetAdmin 5.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2000-0443
|
2008-09-11 04:04 |
2000-05-24 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364213
|
5.0 |
MEDIUM
|
hp
|
jetadmin
|
HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000.
|
NVD-CWE-Other
|
CVE-2000-0444
|
2008-09-11 04:04 |
2000-05-24 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364214
|
2.1 |
LOW
|
pgp
|
pgp
|
The pgpk command in PGP 5.x on Unix systems uses an insufficiently random data source for non-interactive key pair generation, which may produce predictable keys.
|
NVD-CWE-Other
|
CVE-2000-0445
|
2008-09-11 04:04 |
2000-05-24 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364215
|
7.5 |
HIGH
|
marty_bochane
|
mdbms
|
Buffer overflow in MDBMS database server allows remote attackers to execute arbitrary commands via a long string.
|
NVD-CWE-Other
|
CVE-2000-0446
|
2008-09-11 04:04 |
2000-05-24 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364216
|
10.0 |
HIGH
|
omnis
|
studio
|
Omnis Studio 2.4 uses weak encryption (trivial encoding) for encrypting database fields.
|
NVD-CWE-Other
|
CVE-2000-0449
|
2008-09-11 04:04 |
2000-05-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364217
|
7.5 |
HIGH
|
sean_macguire
|
big_brother
|
Vulnerability in bbd server in Big Brother System and Network Monitor allows an attacker to execute arbitrary commands.
|
NVD-CWE-Other
|
CVE-2000-0450
|
2008-09-11 04:04 |
2000-05-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364218
|
5.0 |
MEDIUM
|
intel
|
express_8100
|
The Intel express 8100 ISDN router allows remote attackers to cause a denial of service via oversized or fragmented ICMP packets.
|
NVD-CWE-Other
|
CVE-2000-0451
|
2008-09-11 04:04 |
2000-05-19 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364219
|
5.0 |
MEDIUM
|
lotus
|
domino_enterprise_server domino_mail_server
|
Buffer overflow in the ESMTP service of Lotus Domino Server 5.0.1 allows remote attackers to cause a denial of service via a long MAIL FROM command.
|
NVD-CWE-Other
|
CVE-2000-0452
|
2008-09-11 04:04 |
2000-05-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364220
|
5.0 |
MEDIUM
|
xfree86_project
|
x11r6
|
XFree86 3.3.x and 4.0 allows a user to cause a denial of service via a negative counter value in a malformed TCP packet that is sent to port 6000.
|
NVD-CWE-Other
|
CVE-2000-0453
|
2008-09-11 04:04 |
2000-05-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364221
|
7.2 |
HIGH
|
mandrakesoft
|
mandrake_linux
|
Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter.
|
NVD-CWE-Other
|
CVE-2000-0454
|
2008-09-11 04:04 |
2000-05-29 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364222
|
2.1 |
LOW
|
david_bagley
|
xlock
|
Buffer overflow in xlockmore xlock program version 4.16 and earlier allows local users to read sensitive data from memory via a long -mode option.
|
NVD-CWE-Other
|
CVE-2000-0455
|
2008-09-11 04:04 |
2000-05-29 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364223
|
2.1 |
LOW
|
netbsd
|
netbsd
|
NetBSD 1.4.2 and earlier allows local users to cause a denial of service by repeatedly running certain system calls in the kernel which do not yield the CPU, aka "cpu-hog".
|
NVD-CWE-Other
|
CVE-2000-0456
|
2008-09-11 04:04 |
2000-05-28 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364224
|
7.2 |
HIGH
|
kde
|
kde
|
Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable.
|
NVD-CWE-Other
|
CVE-2000-0460
|
2008-09-11 04:04 |
2000-05-27 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364225
|
2.1 |
LOW
|
freebsd netbsd
|
freebsd netbsd
|
The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.
|
NVD-CWE-Other
|
CVE-2000-0461
|
2008-09-11 04:04 |
2000-05-29 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364226
|
2.1 |
LOW
|
netbsd
|
netbsd
|
ftpd in NetBSD 1.4.2 does not properly parse entries in /etc/ftpchroot and does not chroot the specified users, which allows those users to access other files outside of their home directory.
|
NVD-CWE-Other
|
CVE-2000-0462
|
2008-09-11 04:04 |
2000-05-28 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364227
|
5.0 |
MEDIUM
|
be
|
beos
|
BeOS 5.0 allows remote attackers to cause a denial of service via fragmented TCP packets.
|
NVD-CWE-Other
|
CVE-2000-0463
|
2008-09-11 04:04 |
2000-05-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364228
|
7.2 |
HIGH
|
sam_lantinga
|
splitvt
|
Buffer overflow in Linux splitvt 1.6.3 and earlier allows local users to gain root privileges via a long password in the screen locking function.
|
NVD-CWE-Other
|
CVE-2000-0467
|
2008-09-11 04:04 |
2000-06-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364229
|
7.5 |
HIGH
|
analogx
|
simpleserver_www
|
Buffer overflow in AnalogX SimpleServer 1.05 allows a remote attacker to cause a denial of service via a long GET request for a program in the cgi-bin directory.
|
NVD-CWE-Other
|
CVE-2000-0473
|
2008-09-11 04:04 |
2000-06-15 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364230
|
10.0 |
HIGH
|
gnome caldera suse
|
gdm openlinux suse_linux
|
Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.
|
NVD-CWE-Other
|
CVE-2000-0491
|
2008-09-11 04:04 |
2000-05-24 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364231
|
5.0 |
MEDIUM
|
passwd
|
passwd
|
PassWD 1.2 uses weak encryption (trivial encoding) to store passwords, which allows an attacker who can read the password file to easliy decrypt the passwords.
|
NVD-CWE-Other
|
CVE-2000-0492
|
2008-09-11 04:04 |
2000-06-4 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364232
|
7.2 |
HIGH
|
symantec_veritas
|
volume_manager
|
Veritas Volume Manager creates a world writable .server_pids file, which allows local users to add arbitrary commands into the file, which is then executed by the vmsa_server script.
|
NVD-CWE-Other
|
CVE-2000-0494
|
2008-09-11 04:04 |
2000-06-16 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364233
|
5.0 |
MEDIUM
|
gnome open_group xfree86_project
|
gdm x x11r6
|
libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro.
|
NVD-CWE-Other
|
CVE-2000-0504
|
2008-09-11 04:04 |
2000-06-19 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364234
|
5.0 |
MEDIUM
|
3r_soft
|
mailstudio_2000
|
mailview.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2000-0526
|
2008-09-11 04:04 |
2000-06-9 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364235
|
10.0 |
HIGH
|
3r_soft
|
mailstudio_2000
|
userreg.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2000-0527
|
2008-09-11 04:04 |
2000-06-9 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364236
|
2.6 |
LOW
|
microsoft
|
virtual_machine
|
Microsoft Java Virtual Machine allows remote attackers to read files via the getSystemResourceAsStream function.
|
CWE-200
情報漏えい
|
CVE-2000-0132
|
2008-09-11 04:03 |
2000-01-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364237
|
10.0 |
HIGH
|
h._nomura
|
tiny_ftpdaemon
|
Buffer overflows in Tiny FTPd 0.52 beta3 FTP server allows users to execute commands via the STOR, RNTO, MKD, XMKD, RMD, XRMD, APPE, SIZE, and RNFR commands.
|
NVD-CWE-Other
|
CVE-2000-0133
|
2008-09-11 04:03 |
2000-02-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364238
|
7.5 |
HIGH
|
axis
|
700_network_document_server
|
Axis 700 Network Scanner does not properly restrict access to administrator URLs, which allows users to bypass the password protection via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2000-0144
|
2008-09-11 04:03 |
2000-02-7 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364239
|
5.0 |
MEDIUM
|
novell
|
groupwise
|
The Java Server in the Novell GroupWise Web Access Enhancement Pack allows remote attackers to cause a denial of service via a long URL to the servlet.
|
NVD-CWE-Other
|
CVE-2000-0146
|
2008-09-11 04:03 |
2000-02-7 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364240
|
6.2 |
MEDIUM
|
gnu
|
make
|
GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands.
|
NVD-CWE-Other
|
CVE-2000-0151
|
2008-09-11 04:03 |
2000-02-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364241
|
5.0 |
MEDIUM
|
novell
|
bordermanager
|
Remote attackers can cause a denial of service in Novell BorderManager 3.5 by pressing the enter key in a telnet connection to port 2000.
|
NVD-CWE-Other
|
CVE-2000-0152
|
2008-09-11 04:03 |
2000-03-30 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364242
|
7.2 |
HIGH
|
netbsd
|
netbsd
|
NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process.
|
NVD-CWE-Other
|
CVE-2000-0157
|
2008-09-11 04:03 |
2000-02-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364243
|
4.6 |
MEDIUM
|
freebsd
|
freebsd
|
asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file.
|
NVD-CWE-Other
|
CVE-2000-0163
|
2008-09-11 04:03 |
2000-02-21 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364244
|
2.1 |
LOW
|
microsoft
|
internet_information_server
|
IIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long name and a .txt.eml extension in the pickup directory.
|
NVD-CWE-Other
|
CVE-2000-0167
|
2008-09-11 04:03 |
2000-02-15 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364245
|
7.5 |
HIGH
|
oracle
|
application_server
|
Batch files in the Oracle web listener ows-bin directory allow remote attackers to execute commands via a malformed URL that includes '?&'.
|
NVD-CWE-Other
|
CVE-2000-0169
|
2008-09-11 04:03 |
2000-03-15 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364246
|
7.2 |
HIGH
|
redhat turbolinux
|
linux turbolinux
|
Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable.
|
NVD-CWE-Other
|
CVE-2000-0170
|
2008-09-11 04:03 |
2000-02-26 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364247
|
7.2 |
HIGH
|
at_computing
|
atsar_linux
|
atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-2000-0171
|
2008-09-11 04:03 |
2000-03-11 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364248
|
7.2 |
HIGH
|
matt_kimball_and_roger_wolff turbolinux
|
mtr turbolinux
|
The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-2000-0172
|
2008-09-11 04:03 |
2000-03-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364249
|
5.0 |
MEDIUM
|
sco
|
unixware
|
Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service.
|
NVD-CWE-Other
|
CVE-2000-0173
|
2008-09-11 04:03 |
2000-03-10 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364250
|
5.0 |
MEDIUM
|
sun
|
staroffice
|
StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2000-0174
|
2008-09-11 04:03 |
2000-03-9 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|