Full List

Search

Recent Vulnerabilities

• CVE-2000-0194 • published on April 10, 2000 buildxconf in Corel Linux allows local users to modify or create arbitrary files via the -x or -f parameters.
• CVE-2000-0200 • published on April 10, 2000 Buffer overflow in Microsoft Clip Art Gallery allows remote attackers to cause a denial of service or execute commands via a malformed CIL (clip art library) file, aka the "Clip Art Buffer Overrun" vulnerability.
• CVE-2000-0207 • published on April 10, 2000 SGI InfoSearch CGI program infosrch.cgi allows remote attackers to execute commands via shell metacharacters.
• CVE-2000-0211 • published on April 10, 2000 The Windows Media server allows remote attackers to cause a denial of service via a series of client handshake packets that are sent in an improper sequence, aka the "Misordered Windows Media Services Handshake" vulnerability.
• CVE-2000-0218 • published on April 10, 2000 Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
• CVE-2000-0221 • published on April 10, 2000 The Nautica Marlin bridge allows remote attackers to cause a denial of service via a zero length UDP packet to the SNMP port.
• CVE-2000-0222 • published on April 10, 2000 The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote attackers to connect to the ADMIN$ share without a password until the reboot occurs.
• CVE-2000-0209 • published on April 10, 2000 Buffer overflow in Lynx 2.x allows remote attackers to crash Lynx and possibly execute commands via a long URL in a malicious web page.
• CVE-2000-0210 • published on April 10, 2000 The lit program in Sun Flex License Manager (FlexLM) follows symlinks, which allows local users to modify arbitrary files.
• CVE-2000-0212 • published on April 10, 2000 InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information.
• CVE-2000-0215 • published on April 10, 2000 Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges.
• CVE-2000-0196 • published on April 10, 2000 Buffer overflow in mhshow in the Linux nmh package allows remote attackers to execute commands via malformed MIME headers in an email message.
• CVE-2000-0208 • published on April 10, 2000 The htdig (ht://Dig) CGI program htsearch allows remote attackers to read arbitrary files by enclosing the file name with backticks (`) in parameters to htsearch.
• CVE-2000-0217 • published on April 10, 2000 The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program.
• CVE-2000-0201 • published on April 10, 2000 The window.showHelp() method in Internet Explorer 5.x does not restrict HTML help files (.chm) to be executed from the local host, which allows remote attackers to execute arbitrary commands via Microsoft Networking.
• CVE-2000-0202 • published on April 10, 2000 Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0 allow remote attackers to gain privileges via a malformed Select statement in an SQL query.
• CVE-2000-0224 • published on April 10, 2000 ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack.
• CVE-1999-0189 • published on March 22, 2000 Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111.
• CVE-1999-0390 • published on March 22, 2000 Buffer overflow in Dosemu Slang library in Linux.
• CVE-1999-0678 • published on March 22, 2000 A default configuration of Apache on Debian GNU/Linux sets the ServerRoot to /usr/doc, which allows remote users to read documentation files for the entire server.