Full List

Search

Recent Vulnerabilities

• CVE-2000-0346 • published on July 12, 2000 AppleShare IP 6.1 and later allows a remote attacker to read potentially sensitive information via an invalid range request to the web server.
• CVE-2000-0356 • published on July 12, 2000 Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts.
• CVE-2000-0363 • published on July 12, 2000 Linux cdwtools 093 and earlier allows local users to gain root privileges via the /tmp directory.
• CVE-2000-0379 • published on July 12, 2000 The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so.
• CVE-2000-0334 • published on July 12, 2000 The Allaire Spectra container editor preview tool does not properly enforce object security, which allows an attacker to conduct unauthorized activities via an object-method that is added to the container object with a publishing rule.
• CVE-2000-0339 • published on July 12, 2000 ZoneAlarm 2.1.10 and earlier does not filter UDP packets with a source port of 67, which allows remote attackers to bypass the firewall rules.
• CVE-2000-0342 • published on July 12, 2000 Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."
• CVE-2000-0350 • published on July 12, 2000 A debugging feature in NetworkICE ICEcap 2.0.23 and earlier is enabled, which allows a remote attacker to bypass the weak authentication and post unencrypted events.
• CVE-2000-0353 • published on July 12, 2000 Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine.
• CVE-2000-0359 • published on July 12, 2000 Buffer overflow in Trivial HTTP (THTTPd) allows remote attackers to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header.
• CVE-2000-0361 • published on July 12, 2000 The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.
• CVE-2000-0371 • published on July 12, 2000 The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack.
• CVE-2000-0337 • published on July 12, 2000 Buffer overflow in Xsun X server in Solaris 7 allows local users to gain root privileges via a long -dev parameter.
• CVE-2000-0360 • published on July 12, 2000 Buffer overflow in INN 2.2.1 and earlier allows remote attackers to cause a denial of service via a maliciously formatted article.
• CVE-2000-0367 • published on July 12, 2000 Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.
• CVE-2000-0370 • published on July 12, 2000 The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command.
• CVE-2000-0372 • published on July 12, 2000 Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges.
• CVE-2000-0373 • published on July 12, 2000 Vulnerabilities in the KDE kvt terminal program allow local users to gain root privileges.
• CVE-2000-0376 • published on July 12, 2000 Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.
• CVE-2000-0377 • published on July 12, 2000 The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.