Full List

Search

Recent Vulnerabilities

• CVE-2000-0042 • published on April 25, 2000 Buffer overflow in CSM mail server allows remote attackers to cause a denial of service or execute commands via a long HELO command.
• CVE-2000-0012 • published on April 25, 2000 Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands.
• CVE-2000-0020 • published on April 25, 2000 DNS PRO allows remote attackers to conduct a denial of service via a large number of connections.
• CVE-2000-0024 • published on April 25, 2000 IIS does not properly canonicalize URLs, potentially allowing remote attackers to bypass access restrictions in third-party software via escape characters, aka the "Escape Character Parsing" vulnerability.
• CVE-2000-0050 • published on April 25, 2000 The Allaire Spectra Webtop allows authenticated users to access other Webtop sections by specifying explicit URLs.
• CVE-2000-0033 • published on April 25, 2000 InterScan VirusWall SMTP scanner does not properly scan messages with malformed attachments.
• CVE-2000-0051 • published on April 25, 2000 The Allaire Spectra Configuration Wizard allows remote attackers to cause a denial of service by repeatedly resubmitting data collections for indexing via a URL.
• CVE-2000-0043 • published on April 25, 2000 Buffer overflow in CamShot WebCam HTTP server allows remote attackers to execute commands via a long GET request.
• CVE-2000-0014 • published on April 25, 2000 Denial of service in Savant web server via a null character in the requested URL.
• CVE-2000-0070 • published on April 25, 2000 NtImpersonateClientOfPort local procedure call in Windows NT 4.0 allows local users to gain privileges, aka "Spoofed LPC Port Request."
• CVE-2000-0112 • published on April 25, 2000 The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the installation.
• CVE-2000-0181 • published on April 25, 2000 Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection.
• CVE-2000-0165 • published on April 25, 2000 The Delegate application proxy has several buffer overflows which allow a remote attacker to execute commands.
• CVE-2000-0184 • published on April 25, 2000 Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords.
• CVE-2000-0185 • published on April 25, 2000 RealMedia RealServer reveals the real IP address of a Real Server, even if the address is supposed to be private.
• CVE-2000-0192 • published on April 25, 2000 The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.
• CVE-2000-0223 • published on April 25, 2000 Buffer overflow in the wmcdplay CD player program for the WindowMaker desktop allows local users to gain root privileges via a long parameter.
• CVE-2000-0206 • published on April 25, 2000 The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges.
• CVE-1999-0720 • published on April 18, 2000 The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users.
• CVE-1999-0676 • published on April 18, 2000 sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack.