Full List

Search

Recent Vulnerabilities

• CVE-1999-0856 • published on June 2, 2000 login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist.
• CVE-1999-0859 • published on June 2, 2000 Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse properly.
• CVE-1999-0864 • published on June 2, 2000 UnixWare programs that dump core allow a local user to modify files via a symlink attack on the ./core.pid file.
• CVE-1999-0874 • published on June 2, 2000 Buffer overflow in IIS 4.0 allows remote attackers to cause a denial of service via a malformed request for files with .HTR, .IDC, or .STM extensions.
• CVE-1999-0976 • published on June 2, 2000 Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail.
• CVE-1999-1011 • published on June 2, 2000 The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands.
• CVE-2000-0004 • published on June 2, 2000 ZBServer Pro allows remote attackers to read source code for executable files by inserting a . (dot) into the URL.
• CVE-2000-0113 • published on June 2, 2000 The SyGate Remote Management program does not properly restrict access to its administration service, which allows remote attackers to cause a denial of service, or access network traffic statistics.
• CVE-2000-0171 • published on June 2, 2000 atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges.
• CVE-2000-0169 • published on June 2, 2000 Batch files in the Oracle web listener ows-bin directory allow remote attackers to execute commands via a malformed URL that includes '?&'.
• CVE-2000-0268 • published on June 2, 2000 Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot.
• CVE-2000-0274 • published on June 2, 2000 The Linux trustees kernel patch allows attackers to cause a denial of service by accessing a file or directory with a long name.
• CVE-2000-0231 • published on June 2, 2000 Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges.
• CVE-2000-0232 • published on June 2, 2000 Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request.
• CVE-2000-0233 • published on June 2, 2000 SuSE Linux IMAP server allows remote attackers to bypass IMAP authentication and gain privileges.
• CVE-2000-0234 • published on June 2, 2000 The default configuration of Cobalt RaQ2 and RaQ3 as specified in access.conf allows remote attackers to view sensitive contents of a .htaccess file.
• CVE-2000-0246 • published on June 2, 2000 IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability.
• CVE-2000-0260 • published on June 2, 2000 Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute commands, aka the "Link View Server-Side Component" vulnerability.
• CVE-2000-0277 • published on June 2, 2000 Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which could allow an attacker to execute a macro virus, aka the "XLM Text Macro" vulnerability.
• CVE-2000-0226 • published on June 2, 2000 IIS 4.0 allows attackers to cause a denial of service by requesting a large buffer in a POST or PUT command which consumes memory, aka the "Chunked Transfer Encoding Buffer Overflow Vulnerability."