CVE Output in CVRF 1.1: 20240326
CVE List
cve@mitre.org
The MITRE Corporation
20240326-102054
Interim
2024.03.26.10
1
2024-03-26T10:20:54
Initial public release
2024-03-26T10:20:54
2024-03-26T10:20:54
MITRE Custom CVE-to-CVRF Converter 2.0
This is a list of CVE Identifiers as published by MITRE.
The MITRE Corporation (MITRE) hereby grants you a non-exclusive, royalty-free license to use Common Vulnerabilities and Exposures (CVE (R)) for research, development, and commercial purposes. Any copy you make for such purposes is authorized provided that you reproduce MITREs copyright designation and this license in any such copy.
ALL DOCUMENTS AND THE INFORMATION CONTAINED THEREIN ARE PROVIDED ON AN "AS IS" BASIS AND THE CONTRIBUTOR, THE ORGANIZATION HE/SHE REPRESENTS OR IS SPONSORED BY (IF ANY), THE MITRE CORPORATION, ITS BOARD OF TRUSTEES, OFFICERS, AGENTS, AND EMPLOYEES, DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION THEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.
CVE-2000-0001
RealMedia server allows remote attackers to cause a denial of service via a long ramgen request.
2000-07-12
2005-11-02
CVE-2000-0001
http://www.securityfocus.com/bid/888
BID:888
BUGTRAQ:19991222 RealMedia Server 5.0 Crasher (rmscrash.c)
XF:realserver-ramgen-dos
CVE-2000-0002
Buffer overflow in ZBServer Pro 1.50 allows remote attackers to execute commands via a long GET request.
2000-10-13
2005-11-02
CVE-2000-0002
http://www.securityfocus.com/bid/889
BID:889
http://marc.info/?l=bugtraq&m=94598388530358&w=2
BUGTRAQ:19991223 Local / Remote GET Buffer Overflow Vulnerability in ZBServer 1.5 Pro Edition for Win98/NT
http://www.securityfocus.com/templates/archive.pike?list=1&msg=36B0596E.8D111D66@teleline.es
BUGTRAQ:20000128 ZBServer 1.50-r1x exploit (WinNT)
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9912&L=NTBUGTRAQ&P=R3556
NTBUGTRAQ:19991223 Local / Remote GET Buffer Overflow Vulnerability in ZBServer 1.5 Pro Edition for Win98/NT
VULNWATCH:20020114 ZBServer Pro DoS Vulnerability
XF:zbserver-get-bo
CVE-2000-0003
Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable.
2000-03-22
2005-11-02
CVE-2000-0003
BUGTRAQ:19991230 UnixWare rtpm exploit + discussion
http://marc.info/?l=bugtraq&m=94908470928258&w=2
BUGTRAQ:20000127 New SCO patches...
CVE-2000-0004
ZBServer Pro allows remote attackers to read source code for executable files by inserting a . (dot) into the URL.
2000-06-02
2005-11-02
CVE-2000-0004
http://marc.info/?l=bugtraq&m=94606572912422&w=2
BUGTRAQ:19991223 Re: Local / Remote GET Buffer Overflow Vulnerability in ZBServer 1.5 Pro Edition for Win98/NT
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9912&L=NTBUGTRAQ&P=R3556
NTBUGTRAQ:19991223 Local / Remote GET Buffer Overflow Vulnerability in ZBServer 1.5 Pro Edition for Win98/NT
XF:zbserver-url-dot
CVE-2000-0005
HP-UX aserver program allows local users to gain privileges via a symlink attack.
2000-02-04
2017-10-18
CVE-2000-0005
BUGTRAQ:19991230 aserver.sh
BUGTRAQ:20000102 HPUX Aserver revisited.
HP:HPSBUX0001-108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5635
OVAL:oval:org.mitre.oval:def:5635
XF:hp-aserver
CVE-2000-0006
strace allows local users to read arbitrary files via memory mapped file names.
2002-03-09
2002-03-01
CVE-2000-0006
http://online.securityfocus.com/archive/1/39831
BUGTRAQ:19991225 strace can lie
https://exchange.xforce.ibmcloud.com/vulnerabilities/4554
XF:linux-strace(4554)
CVE-2000-0007
Trend Micro PC-Cillin does not restrict access to its internal proxy port, allowing remote attackers to conduct a denial of service.
2002-03-09
2002-03-01
CVE-2000-0007
http://www.securityfocus.com/bid/1740
BID:1740
BUGTRAQ:19991230 PC-Cillin 6.x DoS Attack
https://exchange.xforce.ibmcloud.com/vulnerabilities/4491
XF:pccillin-proxy-remote-dos(4491)
CVE-2000-0008
FTPPro allows local users to read sensitive information, which is stored in plain text.
2000-02-04
2022-08-17
CVE-2000-0008
BUGTRAQ:19991227 FTPPro insecuities
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0008
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0008
CVE-2000-0009
The bna_pass program in Optivity NETarchitect uses the PATH environmental variable for finding the "rm" program, which allows local users to execute arbitrary commands.
2000-10-13
2005-11-02
CVE-2000-0009
http://www.securityfocus.com/bid/907
BID:907
BUGTRAQ:19991230 bna,sh
XF:netarchitect-path-vulnerability
CVE-2000-0010
WebWho+ whois.cgi program allows remote attackers to execute commands via shell metacharacters in the TLD parameter.
2000-04-25
2022-08-17
CVE-2000-0010
BUGTRAQ:19991226 WebWho+ ADVISORY
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0010
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0010
XF:http-cgi-webwhoplus
CVE-2000-0011
Buffer overflow in AnalogX SimpleServer:WWW HTTP server allows remote attackers to execute commands via a long GET request.
2000-07-12
2004-09-02
CVE-2000-0011
http://www.securityfocus.com/bid/906
BID:906
BUGTRAQ:19991231 Local / Remote GET Buffer Overflow Vulnerability in AnalogX SimpleServer:WWW HTTP Server v1.1
http://www.analogx.com/contents/download/network/sswww.htm
MISC:http://www.analogx.com/contents/download/network/sswww.htm
http://www.osvdb.org/1184
OSVDB:1184
XF:simpleserver-get-bo
CVE-2000-0012
Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands.
2000-04-25
2005-11-02
CVE-2000-0012
http://www.securityfocus.com/bid/898
BID:898
BUGTRAQ:19991227 remote buffer overflow in miniSQL
XF:w3-msql-scanf-bo
CVE-2000-0013
IRIX soundplayer program allows local users to gain privileges by including shell metacharacters in a .wav file, which is executed via the midikeys program.
2000-07-12
2005-11-02
CVE-2000-0013
http://www.securityfocus.com/bid/909
BID:909
BUGTRAQ:19991231 irix-soundplayer.sh
XF:irix-soundplayer-symlink
CVE-2000-0014
Denial of service in Savant web server via a null character in the requested URL.
2000-04-25
2005-11-02
CVE-2000-0014
http://www.securityfocus.com/bid/897
BID:897
BUGTRAQ:19991228 Local / Remote D.o.S Attack in Savant Web Server V2.0 WIN9X / NT / 2K
XF:savant-server-null-dos
CVE-2000-0015
CascadeView TFTP server allows local users to gain privileges via a symlink attack.
2000-07-12
2005-11-02
CVE-2000-0015
http://www.securityfocus.com/bid/910
BID:910
BUGTRAQ:19991231 tftpserv.sh
XF:cascadeview-tftp-symlink
CVE-2000-0016
Buffer overflow in Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service or execute commands via a long username.
2000-02-04
2003-03-21
CVE-2000-0016
http://www.securityfocus.com/bid/730
BID:730
BUGTRAQ:19991227 Remote DoS/Access Attack in Internet Anywhere Mail Server(POP 3) v2.3.1
NTBUGTRAQ:19991001 Vulnerabilities in the Internet Anywhere Mail Server
CVE-2000-0017
Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter.
2000-02-04
2022-08-17
CVE-2000-0017
BUGTRAQ:19991221 (Possible) Linuxconf Remote Buffer Overflow Vulnerability
https://marc.info/?l=bugtraq&m=94580196627059&w=2
MISC:https://marc.info/?l=bugtraq&m=94580196627059&w=2
CVE-2000-0018
wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file.
2000-07-12
2004-09-02
CVE-2000-0018
http://www.securityfocus.com/bid/885
BID:885
BUGTRAQ:19991221 Wmmon under FreeBSD
http://www.osvdb.org/1169
OSVDB:1169
XF:freebsd-wmmon-root-exploit
CVE-2000-0019
IMail POP3 daemon uses weak encryption, which allows local users to read files.
2000-02-04
2022-08-17
CVE-2000-0019
BUGTRAQ:19991221 [w00giving '99 #11] IMail's password encryption scheme
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0019
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0019
CVE-2000-0020
DNS PRO allows remote attackers to conduct a denial of service via a large number of connections.
2000-04-25
2022-08-17
CVE-2000-0020
BUGTRAQ:19991221 Remote D.o.S Attack in DNS PRO v5.7 WinNT From FBLI Software Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0020
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0020
NTBUGTRAQ:19991221 Remote D.o.S Attack in DNS PRO v5.7 WinNT From FBLI Software Vulnerability
XF:dnspro-flood-dos
CVE-2000-0021
Lotus Domino HTTP server allows remote attackers to determine the real path of the server via a request to a non-existent script in /cgi-bin.
2000-02-04
2006-06-15
CVE-2000-0021
http://www.securityfocus.com/bid/881
BID:881
BUGTRAQ:19991221 serious Lotus Domino HTTP denial of service
BUGTRAQ:19991227 Re: Lotus Domino HTTP denial of service attack
CVE-2000-0022
Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory.
2000-03-22
2005-11-02
CVE-2000-0022
http://www.securityfocus.com/bid/881
BID:881
BUGTRAQ:19991221 serious Lotus Domino HTTP denial of service
BUGTRAQ:19991227 Re: Lotus Domino HTTP denial of service attack
CVE-2000-0023
Buffer overflow in Lotus Domino HTTP server allows remote attackers to cause a denial of service via a long URL.
2000-03-22
2004-09-02
CVE-2000-0023
http://www.securityfocus.com/bid/881
BID:881
BUGTRAQ:19991221 serious Lotus Domino HTTP denial of service
BUGTRAQ:19991222 Lotus Notes HTTP cgi-bin vulnerability: possible workaround
BUGTRAQ:19991227 Re: Lotus Domino HTTP denial of service attack
http://www.osvdb.org/51
OSVDB:51
CVE-2000-0024
IIS does not properly canonicalize URLs, potentially allowing remote attackers to bypass access restrictions in third-party software via escape characters, aka the "Escape Character Parsing" vulnerability.
2000-04-25
2005-11-02
CVE-2000-0024
BUGTRAQ:19991228 Third Party Software Affected by IIS "Escape Character Parsing" Vulnerability
BUGTRAQ:19991229 More info on MS99-061 (IIS escape character vulnerability)
http://www.acrossecurity.com/aspr/ASPR-1999-11-10-1-PUB.txt
MISC:http://www.acrossecurity.com/aspr/ASPR-1999-11-10-1-PUB.txt
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-061
MS:MS99-061
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q246401
MSKB:Q246401
XF:iis-badescapes
CVE-2000-0025
IIS 4.0 and Site Server 3.0 allow remote attackers to read source code for ASP files if the file is in a virtual directory whose name includes extensions such as .com, .exe, .sh, .cgi, or .dll, aka the "Virtual Directory Naming" vulnerability.
2000-03-22
2004-09-02
CVE-2000-0025
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-058
MS:MS99-058
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q238606
MSKB:Q238606
http://www.osvdb.org/8098
OSVDB:8098
CVE-2000-0026
Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.
2000-03-22
2004-09-02
CVE-2000-0026
http://www.securityfocus.com/bid/876
BID:876
BUGTRAQ:19991222 UnixWare i2odialogd remote root exploit
http://marc.info/?l=bugtraq&m=94606167110764&w=2
BUGTRAQ:19991223 FYI, SCO Security patches available.
http://www.osvdb.org/6310
OSVDB:6310
CVE-2000-0027
IBM Network Station Manager NetStation allows local users to gain privileges via a symlink attack.
2002-03-09
2002-02-20
CVE-2000-0027
http://www.securityfocus.com/bid/900
BID:900
http://www.securityfocus.com/archive/1/39962
BUGTRAQ:19991227 IBM NetStation/UnixWare local root exploit
http://www.iss.net/security_center/static/5381.php
XF:ibm-netstat-race-condition(5381)
CVE-2000-0028
Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function.
2000-02-04
2022-08-17
CVE-2000-0028
BUGTRAQ:19991222 IE 5.01 vulnerabilities in external.NavigateAndFind()
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0028
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0028
XF:ie-navigateandfind
CVE-2000-0029
UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.
2000-03-22
2005-11-02
CVE-2000-0029
http://www.securityfocus.com/bid/901
BID:901
BUGTRAQ:19991227 UnixWare local pis exploit
http://marc.info/?l=bugtraq&m=94780294009285&w=2
BUGTRAQ:20000113 Info on some security holes reported against SCO Unixware.
CVE-2000-0030
Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database.
2000-07-12
2005-11-02
CVE-2000-0030
http://www.securityfocus.com/bid/878
BID:878
BUGTRAQ:19991222 Solaris 2.7 dmispd local/remote problems
XF:sol-dmispd-fill-disk
CVE-2000-0031
The initscripts package in Red Hat Linux allows local users to gain privileges via a symlink attack.
2000-03-22
2022-08-17
CVE-2000-0031
L0PHT:19991227 initscripts-4.48-1 RedHat Linux 6.1
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0031
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0031
REDHAT:RHSA-1999:052-04
CVE-2000-0032
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.
2000-07-12
2004-09-02
CVE-2000-0032
http://www.securityfocus.com/bid/878
BID:878
BUGTRAQ:19991222 Solaris 2.7 dmispd local/remote problems
http://www.osvdb.org/7582
OSVDB:7582
XF:sol-dmispd-dos
CVE-2000-0033
InterScan VirusWall SMTP scanner does not properly scan messages with malformed attachments.
2000-04-25
2005-11-02
CVE-2000-0033
http://www.securityfocus.com/bid/899
BID:899
BUGTRAQ:19991227 Trend Micro InterScan VirusWall SMTP bug
XF:interscan-viruswall-bypass
CVE-2000-0034
Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords."
2000-07-12
2022-08-17
CVE-2000-0034
BUGTRAQ:19991222 More Netscape Passwords Available.
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0034
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0034
XF:netscape-password-preferences
CVE-2000-0035
resend command in Majordomo allows local users to gain privileges via shell metacharacters.
2000-02-04
2016-10-17
CVE-2000-0035
http://www.securityfocus.com/bid/902
BID:902
BUGTRAQ:19991228 majordomo local exploit
http://marc.info/?l=bugtraq&m=94780294009285&w=2
BUGTRAQ:20000113 Info on some security holes reported against SCO Unixware.
CVE-2000-0036
Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability.
2000-03-22
2005-11-02
CVE-2000-0036
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-060
MS:MS99-060
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q249082
MSKB:Q249082
CVE-2000-0037
Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file.
2000-03-22
2004-09-02
CVE-2000-0037
http://www.securityfocus.com/bid/903
BID:903
BUGTRAQ:19991228 majordomo local exploit
http://marc.info/?l=bugtraq&m=94780294009285&w=2
BUGTRAQ:20000113 Info on some security holes reported against SCO Unixware.
BUGTRAQ:20000124 majordomo 1.94.5 does not fix all vulnerabilities
http://www.redhat.com/support/errata/RHSA-2000-005.html
REDHAT:RHSA-2000:005
CVE-2000-0038
glFtpD includes a default glftpd user account with a default password and a UID of 0.
2000-02-04
2022-08-17
CVE-2000-0038
BUGTRAQ:19991223 Multiple vulnerabilites in glFtpD (current versions)
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0038
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0038
CVE-2000-0039
AltaVista search engine allows remote attackers to read files above the document root via a .. (dot dot) in the query.cgi CGI program.
2000-03-22
2004-09-02
CVE-2000-0039
http://www.securityfocus.com/bid/896
BID:896
BUGTRAQ:19991229 AltaVista
BUGTRAQ:19991229 AltaVista followup and monitor script
BUGTRAQ:19991230 Follow UP AltaVista
BUGTRAQ:20000103 FW: Patch issued for AltaVista Search Engine Directory TraversalVulnerability
BUGTRAQ:20000109 Altavista followup
http://www.osvdb.org/15
OSVDB:15
CVE-2000-0040
glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command.
2000-03-22
2022-08-17
CVE-2000-0040
BUGTRAQ:19991223 Multiple vulnerabilites in glFtpD (current versions)
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0040
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0040
CVE-2000-0041
Macintosh systems generate large ICMP datagrams in response to malformed datagrams, allowing them to be used as amplifiers in a flood attack.
2000-03-22
2005-11-02
CVE-2000-0041
http://www.securityfocus.com/bid/890
BID:890
BUGTRAQ:19991229 The "Mac DoS Attack," a Scheme for Blocking Internet Connections
CVE-2000-0042
Buffer overflow in CSM mail server allows remote attackers to cause a denial of service or execute commands via a long HELO command.
2000-04-25
2005-11-02
CVE-2000-0042
http://www.securityfocus.com/bid/895
BID:895
BUGTRAQ:19991229 Local / Remote D.o.S Attack in CSM Mail Server for Windows 95/NT v.2000.08.A
XF:csm-server-bo
CVE-2000-0043
Buffer overflow in CamShot WebCam HTTP server allows remote attackers to execute commands via a long GET request.
2000-04-25
2005-11-02
CVE-2000-0043
http://www.securityfocus.com/bid/905
BID:905
BUGTRAQ:19991230 Local / Remote GET Buffer Overflow Vulnerability in CamShot WebCam HTTP Server v2.5 for Win9x/NT
XF:camshot-http-get-overflow
CVE-2000-0044
Macros in War FTP 1.70 and 1.67b2 allow local or remote attackers to read arbitrary files or execute commands.
2000-04-18
2005-11-02
CVE-2000-0044
http://www.securityfocus.com/bid/919
BID:919
BUGTRAQ:20000105 SECURITY ALERT - WAR FTP DAEMON ALL VERSIONS
XF:warftp-macro-access-files
CVE-2000-0045
MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege.
2000-07-12
2005-11-02
CVE-2000-0045
http://www.securityfocus.com/bid/926
BID:926
BUGTRAQ:20000111 Serious bug in MySQL password handling.
BUGTRAQ:20000113 New MySQL Available
XF:mysql-pwd-grant
CVE-2000-0046
Buffer overflow in ICQ 99b 1.1.1.1 client allows remote attackers to execute commands via a malformed URL within an ICQ message.
2000-02-04
2001-12-16
CVE-2000-0046
http://www.securityfocus.com/bid/929
BID:929
BUGTRAQ:20000111 ICQ Buffer Overflow Exploit
XF:icq-url-bo
CVE-2000-0047
Buffer overflow in Yahoo Pager/Messenger client allows remote attackers to cause a denial of service via a long URL within a message.
2000-02-04
2022-08-17
CVE-2000-0047
BUGTRAQ:20000117 Yahoo Pager/Messanger Buffer Overflow
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0047
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0047
XF:yahoo-messenger-pager-dos
CVE-2000-0048
get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program.
2001-01-22
2005-11-02
CVE-2000-0048
http://www.securityfocus.com/bid/928
BID:928
BUGTRAQ:20000112 Serious Bug in Corel Linux.(Local root exploit)
http://linux.corel.com/support/clos_patch1.htm
CONFIRM:http://linux.corel.com/support/clos_patch1.htm
XF:linux-corel-update
CVE-2000-0049
Buffer overflow in Winamp client allows remote attackers to execute commands via a long entry in a .pls file.
2000-02-04
2007-11-14
CVE-2000-0049
http://www.securityfocus.com/bid/925
BID:925
BUGTRAQ:20000109 Buffer overflow with WinAmp 2.10
NTBUGTRAQ:20000107 Winamp buffer overflow advisory
http://www.osvdb.org/12022
OSVDB:12022
XF:winamp-playlist-bo
CVE-2000-0050
The Allaire Spectra Webtop allows authenticated users to access other Webtop sections by specifying explicit URLs.
2000-04-25
2005-11-02
CVE-2000-0050
http://www.allaire.com/handlers/index.cfm?ID=13976&Method=Full
ALLAIRE:ASB00-01
http://www.securityfocus.com/bid/915
BID:915
XF:allaire-webtop-access
CVE-2000-0051
The Allaire Spectra Configuration Wizard allows remote attackers to cause a denial of service by repeatedly resubmitting data collections for indexing via a URL.
2000-04-25
2005-11-02
CVE-2000-0051
http://www.allaire.com/handlers/index.cfm?ID=13977&Method=Full
ALLAIRE:ASB00-02
http://www.securityfocus.com/bid/916
BID:916
XF:allaire-spectra-config-dos
CVE-2000-0052
Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.
2000-04-18
2004-09-02
CVE-2000-0052
http://www.securityfocus.com/bid/913
BID:913
http://www.l0pht.com/advisories/pam_advisory
L0PHT:20000104 PamSlam
http://www.redhat.com/support/errata/RHSA-2000-001.html
REDHAT:RHSA-2000:001
http://xforce.iss.net/search.php3?type=2&pattern=linux-pam-userhelper
XF:linux-pam-userhelper
CVE-2000-0053
Microsoft Commercial Internet System (MCIS) IMAP server allows remote attackers to cause a denial of service via a malformed IMAP request.
2000-04-18
2005-11-02
CVE-2000-0053
http://www.securityfocus.com/bid/912
BID:912
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-001
MS:MS00-001
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q246731
MSKB:Q246731
XF:mcis-malformed-imap
CVE-2000-0054
search.cgi in the SolutionScripts Home Free package allows remote attackers to view directories via a .. (dot dot) attack.
2000-02-04
2005-11-02
CVE-2000-0054
http://www.securityfocus.com/bid/921
BID:921
BUGTRAQ:20000104 Another search.cgi vulnerability
CVE-2000-0055
Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option.
2000-02-04
2004-04-06
CVE-2000-0055
http://www.securityfocus.com/bid/918
BID:918
BUGTRAQ:20000106 [Hackerslab bug_paper] Solaris chkperm buffer overflow
CVE-2000-0056
IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi.
2000-10-13
2005-11-02
CVE-2000-0056
http://www.securityfocus.com/bid/914
BID:914
BUGTRAQ:20000105 Local / Remote D.o.S Attack in IMail IMONITOR Server for WinNT Version 5.08
XF:imail-imonitor-status-dos
CVE-2000-0057
Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information.
2000-04-18
2005-11-02
CVE-2000-0057
http://www.allaire.com/handlers/index.cfm?ID=13978&Method=Full
ALLAIRE:ASB00-03
http://www.securityfocus.com/bid/917
BID:917
XF:coldfusion-cfcache
CVE-2000-0058
Network HotSync program in Handspring Visor does not have authentication, which allows remote attackers to retrieve email and files.
2000-02-04
2004-04-06
CVE-2000-0058
http://www.securityfocus.com/bid/920
BID:920
http://www.security-express.com/archives/bugtraq/2000-01/0085.html
BUGTRAQ:20000105 Handspring Visor Network HotSync Security Hole
CVE-2000-0059
PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands.
2000-02-04
2004-04-06
CVE-2000-0059
http://www.securityfocus.com/bid/911
BID:911
BUGTRAQ:20000103 PHP3 safe_mode and popen()
CVE-2000-0060
Buffer overflow in aVirt Rover POP3 server 1.1 allows remote attackers to cause a denial of service via a long user name.
2002-06-25
2002-02-17
CVE-2000-0060
http://www.securityfocus.com/bid/894
BID:894
http://marc.info/?l=bugtraq&m=94633851427858&w=2
BUGTRAQ:19991227 Local / Remote Remote DoS Attack in Rover POP3 Server V1.1 NT From aVirt
http://marc.info/?l=ntbugtraq&m=94647711311057&w=2
NTBUGTRAQ:19991227 Local / Remote Remote DoS Attack in Rover POP3 Server V1.1 NT From aVirt
http://www.iss.net/security_center/static/3765.php
XF:avirt-rover-pop3-dos(3765)
CVE-2000-0061
Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document has been loaded, which could allow remote attackers to execute Javascript in a different security context while the document is loading.
2000-02-04
2004-04-06
CVE-2000-0061
http://www.securityfocus.com/bid/923
BID:923
BUGTRAQ:20000107 IE 5 security vulnerablity - circumventing Cross-frame security policy and accessing the DOM of "old" documents.
CVE-2000-0062
The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities.
2000-04-18
2005-11-02
CVE-2000-0062
http://www.securityfocus.com/bid/922
BID:922
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000104222219.B41650@schvin.net
BUGTRAQ:20000104 [petrilli@digicool.com: [Zope] SECURITY ALERT]
XF:zope-dtml
CVE-2000-0063
cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to read arbitrary files by specifying the filename in a parameter to the script.
2000-10-13
2005-11-02
CVE-2000-0063
http://www.securityfocus.com/bid/938
BID:938
BUGTRAQ:20000118 Nortel Contivity Vulnerability
XF:http-cgi-cgiproc-file-read
CVE-2000-0064
cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to cause a denial of service via a malformed URL that includes shell metacharacters.
2000-10-13
2004-09-02
CVE-2000-0064
http://www.securityfocus.com/bid/938
BID:938
BUGTRAQ:20000118 Nortel Contivity Vulnerability
http://www.osvdb.org/7583
OSVDB:7583
XF:http-cgi-cgiproc-dos
CVE-2000-0065
Buffer overflow in InetServ 3.0 allows remote attackers to execute commands via a long GET request.
2000-10-13
2022-08-17
CVE-2000-0065
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0065
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0065
NTBUGTRAQ:20000117 Remote Buffer Exploit - InetServ 3.0
XF:inetserv-get-bo
CVE-2000-0066
WebSite Pro allows remote attackers to determine the real pathname of webdirectories via a malformed URL request.
2000-02-04
2022-08-17
CVE-2000-0066
BUGTRAQ:20000112 WebSitePro/2.3.18 is revealing Webdirectories
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0066
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0066
CVE-2000-0067
CyberCash Merchant Connection Kit (MCK) allows local users to modify files via a symlink attack.
2000-02-04
2022-08-17
CVE-2000-0067
BUGTRAQ:20000112 CyberCash MCK 3.2.0.4: Large /tmp hole
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0067
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0067
CVE-2000-0068
daynad program in Intel InBusiness E-mail Station does not require authentication, which allows remote attackers to modify its configuration, delete files, or read mail.
2000-02-04
2016-10-17
CVE-2000-0068
http://marc.info/?l=bugtraq&m=94704437920965&w=2
BUGTRAQ:20000104 [rootshell] Security Bulletin #27
CVE-2000-0069
The recover program in Solstice Backup allows local users to restore sensitive files.
2000-02-04
2022-08-17
CVE-2000-0069
BUGTRAQ:20000104 Security problem with Solstice Backup/Legato Networker recover command
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0069
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0069
CVE-2000-0070
NtImpersonateClientOfPort local procedure call in Windows NT 4.0 allows local users to gain privileges, aka "Spoofed LPC Port Request."
2000-04-25
2005-11-02
CVE-2000-0070
http://www.securityfocus.com/bid/934
BID:934
http://www.bindview.com/security/advisory/adv_NtImpersonate.html
BINDVIEW:20000113 Local Promotion Vulnerability in Windows NT 4
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-003
MS:MS00-003
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q247869
MSKB:Q247869
http://xforce.iss.net/search.php3?type=2&pattern=nt-spoofed-lpc-port
XF:nt-spoofed-lpc-port
CVE-2000-0071
IIS 4.0 allows a remote attacker to obtain the real pathname of the document root by requesting non-existent files with .ida or .idq extensions.
2000-02-04
2016-10-17
CVE-2000-0071
http://marc.info/?l=bugtraq&m=94770020309953&w=2
BUGTRAQ:20000111 IIS still revealing paths for web directories
http://marc.info/?l=bugtraq&m=94780058006791&w=2
BUGTRAQ:20000113 SV: IIS still revealing paths for web directories
CVE-2000-0072
Visual Casel (Vcasel) does not properly prevent users from executing files, which allows local users to use a relative pathname to specify an alternate file which has an approved name and possibly gain privileges.
2002-06-25
2002-02-17
CVE-2000-0072
http://www.securityfocus.com/bid/937
BID:937
http://marc.info/?l=bugtraq&m=94823061421676&w=2
BUGTRAQ:20000118 Warning: VCasel security hole.
http://www.iss.net/security_center/static/3867.php
XF:vcasel-filename-trusting(3867)
CVE-2000-0073
Buffer overflow in Microsoft Rich Text Format (RTF) reader allows attackers to cause a denial of service via a malformed control word.
2000-04-18
2005-11-02
CVE-2000-0073
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-005
MS:MS00-005
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q249973
MSKB:Q249973
http://xforce.iss.net/search.php3?type=2&pattern=win-malformed-rtf-control-word
XF:win-malformed-rtf-control-word
CVE-2000-0074
PowerScripts PlusMail CGI program allows remote attackers to execute commands via a password file with improper permissions.
2000-02-04
2022-08-17
CVE-2000-0074
BUGTRAQ:20000111 PowerScripts PlusMail Vulnerablity
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0074
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0074
CVE-2000-0075
Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating multiple HELO, MAIL FROM, RCPT TO, and DATA commands in the same session.
2000-10-13
2005-11-02
CVE-2000-0075
http://www.securityfocus.com/bid/930
BID:930
BUGTRAQ:20000113 Local / Remote D.o.S Attack in Super Mail Transfer Package (SMTP) Server for WinNT Version 1.9x
NTBUGTRAQ:20000113 Local / Remote D.o.S Attack in Super Mail Transfer Package (SMTP) Server for WinNT Version 1.9x
XF:supermail-memleak-dos
CVE-2000-0076
nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.
2000-10-13
2005-11-02
CVE-2000-0076
http://www.securityfocus.com/bid/1439
BID:1439
http://marc.info/?l=bugtraq&m=94709988232618&w=2
BUGTRAQ:19991230 vibackup.sh
DEBIAN:20000108
XF:nvi-delete-files
CVE-2000-0077
The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands.
2000-02-04
2017-10-18
CVE-2000-0077
BUGTRAQ:20000102 HPUX Aserver revisited.
HP:HPSBUX0001-108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5549
OVAL:oval:org.mitre.oval:def:5549
CVE-2000-0078
The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command.
2000-02-04
2017-10-18
CVE-2000-0078
BUGTRAQ:20000102 HPUX Aserver revisited.
HP:HPSBUX0001-108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5728
OVAL:oval:org.mitre.oval:def:5728
CVE-2000-0079
The W3C CERN httpd HTTP server allows remote attackers to determine the real pathnames of some commands via a request for a nonexistent URL.
2000-02-04
2001-12-16
CVE-2000-0079
http://www.securityfocus.com/bid/936
BID:936
BUGTRAQ:20000118 Re: IIS still revealing paths for web directories
CVE-2000-0080
AIX techlibss allows local users to overwrite files via a symlink attack.
2001-01-22
2005-11-02
CVE-2000-0080
http://www.securityfocus.com/bid/931
BID:931
http://marc.info/?l=bugtraq&m=94757136413681&w=2
BUGTRAQ:20000110 2nd attempt: AIX techlibss follows links
XF:aix-techlibss-symbolic-link
CVE-2000-0081
Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute the code by using hexadecimal codes to specify the javascript: protocol, e.g. jAvascript.
2000-02-04
2022-08-17
CVE-2000-0081
BUGTRAQ:20000110 Yet another Hotmail security hole - injecting JavaScript using "jAvascript:"
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0081
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0081
CVE-2000-0082
WebTV email client allows remote attackers to force the client to send email without the user's knowledge via HTML.
2000-02-04
2004-08-31
CVE-2000-0082
BUGTRAQ:20000104 The WebTV Email Exploit
http://net4tv.com/voice/story.cfm?StoryID=1823
MISC:http://net4tv.com/voice/story.cfm?StoryID=1823
http://www.wired.com/news/technology/0,1282,33420,00.html
MISC:http://www.wired.com/news/technology/0,1282,33420,00.html
CVE-2000-0083
HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges.
2000-04-18
2009-03-01
CVE-2000-0083
http://www.securityfocus.com/templates/advisory.html?id=2031
HP:HPSBUX0001-109
XF:hp-audio-security-perms
CVE-2000-0084
CuteFTP uses weak encryption to store password information in its tree.dat file.
2000-02-04
2022-08-17
CVE-2000-0084
BUGTRAQ:20000105 CuteFTP saved password 'encryption' weakness
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0084
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0084
CVE-2000-0085
Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute code via the LOWSRC or DYNRC parameters in the IMG tag.
2000-02-04
2022-08-17
CVE-2000-0085
BUGTRAQ:20000103 Hotmail security hole - injecting JavaScript using <IMG LOWSRC="javascript:....">
BUGTRAQ:20000104 Yet another Hotmail security hole - injecting JavaScript in IE using <IMG DYNRC="javascript:....">
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0085
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0085
CVE-2000-0086
Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffing.
2000-02-04
2001-12-16
CVE-2000-0086
http://www.securityfocus.com/bid/935
BID:935
BUGTRAQ:20000116 TB2 Pro sending NT passwords cleartext
CVE-2000-0087
Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator to use an SSL connection, allowing a remote attacker to sniff usernames and passwords in plaintext.
2002-06-25
2002-02-17
CVE-2000-0087
http://marc.info/?l=bugtraq&m=94790377622943&w=2
BUGTRAQ:20000113 Misleading sense of security in Netscape
http://www.iss.net/security_center/static/4385.php
XF:netscape-mail-notify-plaintext(4385)
CVE-2000-0088
Buffer overflow in the conversion utilities for Japanese, Korean and Chinese Word 5 documents allows an attacker to execute commands, aka the "Malformed Conversion Data" vulnerability.
2000-03-22
2005-11-02
CVE-2000-0088
http://www.securityfocus.com/bid/946
BID:946
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-002
MS:MS00-002
XF:office-malformed-convert
CVE-2000-0089
The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration File" vulnerability.
2000-03-22
2005-11-02
CVE-2000-0089
http://www.securityfocus.com/bid/947
BID:947
BUGTRAQ:20000122 RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-004
MS:MS00-004
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q249108
MSKB:Q249108
NTBUGTRAQ:20000121 RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition
XF:nt-rdisk-enum-file
CVE-2000-0090
VMWare 1.1.2 allows local users to cause a denial of service via a symlink attack.
2000-10-13
2004-09-02
CVE-2000-0090
http://www.securityfocus.com/bid/943
BID:943
BUGTRAQ:20000124 VMware 1.1.2 Symlink Vulnerability
http://www.osvdb.org/1205
OSVDB:1205
XF:linux-vmware-symlink
CVE-2000-0091
Buffer overflow in vchkpw/vpopmail POP authentication package allows remote attackers to gain root privileges via a long username or password.
2000-04-18
2005-11-02
CVE-2000-0091
http://www.securityfocus.com/bid/942
BID:942
BUGTRAQ:20000122 remote root qmail-pop with vpopmail advisory and exploit with patch
BUGTRAQ:20000123 Re: vpopmail/vchkpw remote root exploit
http://www.inter7.com/vpopmail/
MISC:http://www.inter7.com/vpopmail/
http://www.inter7.com/vpopmail/ChangeLog
MISC:http://www.inter7.com/vpopmail/ChangeLog
CVE-2000-0092
The BSD make program allows local users to modify files via a symlink attack when the -j option is being used.
2000-07-12
2008-09-14
CVE-2000-0092
http://www.securityfocus.com/bid/939
BID:939
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:01.make.asc
FREEBSD:FreeBSD-SA-00:01
XF:gnu-makefile-tmp-root
CVE-2000-0093
An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5.
2000-02-08
2022-08-17
CVE-2000-0093
BUGTRAQ:20000121 Rh 6.1 initial root password encryption
BUGTRAQ:20000122 NIS security advisory : password method downgrade
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0093
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0093
CVE-2000-0094
procfs in BSD systems allows local users to gain root privileges by modifying the /proc/pid/mem interface via a modified file descriptor for stderr.
2000-10-13
2005-11-02
CVE-2000-0094
http://www.securityfocus.com/bid/940
BID:940
BUGTRAQ:20000121 *BSD procfs vulnerability
FREEBSD:FreeBSD-SA-00:02
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2000-001.txt.asc
NETBSD:NetBSD-SA2000-001
OPENBSD:20000120 [2.6] 018: SECURITY FIX: Jan 20, 2000
http://www.osvdb.org/20760
OSVDB:20760
https://exchange.xforce.ibmcloud.com/vulnerabilities/3995
XF:netbsd-procfs(3995)
CVE-2000-0095
The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier.
2000-04-18
2005-11-02
CVE-2000-0095
http://www.securityfocus.com/bid/944
BID:944
http://www.securityfocus.com/templates/advisory.html?id=2041
HP:HPSBUX0001-110
CVE-2000-0096
Buffer overflow in qpopper 3.0 beta versions allows local users to gain privileges via a long LIST command.
2000-02-08
2004-04-20
CVE-2000-0096
http://www.securityfocus.com/bid/948
BID:948
BUGTRAQ:20000126 Qpopper security bug
CVE-2000-0097
The WebHits ISAPI filter in Microsoft Index Server allows remote attackers to read arbitrary files, aka the "Malformed Hit-Highlighting Argument" vulnerability.
2000-03-22
2004-09-02
CVE-2000-0097
http://www.securityfocus.com/bid/950
BID:950
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-006
MS:MS00-006
NTBUGTRAQ:20000127 Alert: MS IIS 4 / IS 2 (Cerberus Security Advisory CISADV000126)
http://www.osvdb.org/1210
OSVDB:1210
XF:http-indexserver-dirtrans
CVE-2000-0098
Microsoft Index Server allows remote attackers to determine the real path for a web directory via a request to an Internet Data Query file that does not exist.
2000-03-22
2005-11-02
CVE-2000-0098
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-006
MS:MS00-006
CVE-2000-0099
Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument.
2000-04-18
2005-11-02
CVE-2000-0099
http://marc.info/?l=bugtraq&m=94848865112897&w=2
BUGTRAQ:20000119 Unixware ppptalk
CVE-2000-0100
The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the program.
2000-04-18
2005-11-02
CVE-2000-0100
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-012
MS:MS00-012
http://archives.neohapsis.com/archives/ntbugtraq/current/0045.html
NTBUGTRAQ:20000115 Security Vulnerability with SMS 2.0 Remote Control
CVE-2000-0101
The Make-a-Store OrderPage shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0101
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0101
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0101
CVE-2000-0102
The SalesCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0102
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0102
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0102
CVE-2000-0103
The SmartCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0103
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0103
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0103
CVE-2000-0104
The Shoptron shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0104
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0104
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0104
CVE-2000-0105
Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client.
2000-02-08
2003-05-08
CVE-2000-0105
http://www.securityfocus.com/bid/962
BID:962
BUGTRAQ:20000201 Outlook Express 5 vulnerability - Active Scripting may read email messages
CVE-2000-0106
The EasyCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0106
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0106
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0106
CVE-2000-0107
Linux apcd program allows local attackers to modify arbitrary files via a symlink attack.
2000-04-18
2005-11-02
CVE-2000-0107
http://www.securityfocus.com/bid/958
BID:958
http://www.debian.org/security/2000/20000201
DEBIAN:20000201
CVE-2000-0108
The Intellivend shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0108
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0108
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0108
CVE-2000-0109
The mcsp Client Site Processor system (MultiCSP) in Standard and Poor's ComStock is installed with several accounts that have no passwords or easily guessable default passwords.
2000-02-08
2022-08-17
CVE-2000-0109
BUGTRAQ:20000201 Security issues with S&P ComStock multiCSP (Linux)
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0109
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0109
CVE-2000-0110
The WebSiteTool shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0110
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0110
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0110
CVE-2000-0111
The RightFax web client uses predictable session numbers, which allows remote attackers to hijack user sessions.
2001-01-22
2005-11-02
CVE-2000-0111
http://www.securityfocus.com/bid/953
BID:953
BUGTRAQ:20000129 [LoWNOISE] Rightfax web client 5.2
XF:avt-rightfax-predict-session
CVE-2000-0112
The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the installation.
2000-04-25
2005-11-02
CVE-2000-0112
http://www.securityfocus.com/bid/960
BID:960
http://marc.info/?l=bugtraq&m=94973075614088&w=2
BUGTRAQ:20000202 vulnerability in Linux Debian default boot configuration
XF:debian-mbr-bypass-security
CVE-2000-0113
The SyGate Remote Management program does not properly restrict access to its administration service, which allows remote attackers to cause a denial of service, or access network traffic statistics.
2000-06-02
2005-11-02
CVE-2000-0113
http://www.securityfocus.com/bid/952
BID:952
http://marc.info/?l=bugtraq&m=94934808714972&w=2
BUGTRAQ:20000128 SyGate 3.11 Port 7323 / Remote Admin hole
http://marc.info/?l=bugtraq&m=94952641025328&w=2
BUGTRAQ:20000202 SV: SyGate 3.11 Port 7323 / Remote Admin hole
http://marc.info/?l=bugtraq&m=94973281714994&w=2
BUGTRAQ:20000203 UPDATE: Sygate 3.11 Port 7323 Telnet Hole
http://www.sybergen.com/support/fix.htm
CONFIRM:http://www.sybergen.com/support/fix.htm
CVE-2000-0114
Frontpage Server Extensions allows remote attackers to determine the name of the anonymous account via an RPC POST request to shtml.dll in the /_vti_bin/ virtual directory.
2000-02-08
2022-08-17
CVE-2000-0114
BUGTRAQ:20000203 2 MS Frontpage issues Cerberus Information Security Advisory (CISADV000203)
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0114
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0114
CVE-2000-0115
IIS allows local users to cause a denial of service via invalid regular expressions in a Visual Basic script in an ASP page.
2000-02-08
2022-08-17
CVE-2000-0115
https://marc.info/?l=ntbugtraq&m=94881904724731&w=2
MISC:https://marc.info/?l=ntbugtraq&m=94881904724731&w=2
NTBUGTRAQ:20000121 Strange behaviour IIS and RegExp
CVE-2000-0116
Firewall-1 does not properly filter script tags, which allows remote attackers to bypass the "Strip Script Tags" restriction by including an extra < in front of the SCRIPT tag.
2000-10-13
2004-09-02
CVE-2000-0116
http://www.securityfocus.com/bid/954
BID:954
BUGTRAQ:20000129 "Strip Script Tags" in FW-1 can be circumvented
NTBUGTRAQ:20000129 "Strip Script Tags" in FW-1 can be circumvented
http://www.osvdb.org/1212
OSVDB:1212
XF:http-script-bypass
CVE-2000-0117
The siteUserMod.cgi program in Cobalt RaQ2 servers allows any Site Administrator to modify passwords for other users, site administrators, and possibly admin (root).
2000-10-13
2005-11-02
CVE-2000-0117
http://www.securityfocus.com/bid/951
BID:951
BUGTRAQ:20000127 Cobalt RaQ2 - a user of mine changed my admin password..
BUGTRAQ:20000131 [ Cobalt ] Security Advisory -- 01.31.2000
XF:http-cgi-cobalt-passwords
CVE-2000-0118
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
2000-02-08
2016-10-17
CVE-2000-0118
http://marc.info/?l=bugtraq&m=94935300520617&w=2
BUGTRAQ:20000130 RedHat 6.1 /and others/ PAM
CVE-2000-0119
The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection.
2000-02-08
2016-10-17
CVE-2000-0119
http://marc.info/?l=bugtraq&m=94936267131123&w=2
BUGTRAQ:20000130 Bypass Virus Checking
CVE-2000-0120
The Remote Access Service invoke.cfm template in Allaire Spectra 1.0 allows users to bypass authentication via the bAuthenticated parameter.
2001-05-07
2005-11-02
CVE-2000-0120
ALLAIRE:ASB00-04
http://www.securityfocus.com/bid/955
BID:955
https://exchange.xforce.ibmcloud.com/vulnerabilities/4025
XF:allaire-spectra-ras-access(4025)
CVE-2000-0121
The Recycle Bin utility in Windows NT and Windows 2000 allows local users to read or modify files by creating a subdirectory with the victim's SID in the recycler directory, aka the "Recycle Bin Creation" vulnerability.
2000-03-22
2005-11-02
CVE-2000-0121
http://www.securityfocus.com/bid/963
BID:963
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-007
MS:MS00-007
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q248399
MSKB:Q248399
NTBUGTRAQ:20000201 "Recycle Bin Creation" Vulnerability in Windows NT / Windows 2000
CVE-2000-0122
Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program.
2000-02-08
2018-10-19
CVE-2000-0122
http://www.securityfocus.com/bid/964
BID:964
http://www.securityfocus.com/archive/1/470458/100/0/threaded
BUGTRAQ:20070603 CERN İmage Map Dispatcher
NTBUGTRAQ:20000203 2 MS Frontpage issues Cerberus Information Security Advisory (CISADV000203)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34719
XF:frontpage-cern-information-disclosure(34719)
CVE-2000-0123
The shopping cart application provided with Filemaker allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0123
BUGTRAQ:20000203 Re: [xforce@iss.net: ISSalert: ISS E-Security Alert: Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications]
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0123
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0123
CVE-2000-0124
surfCONTROL SuperScout does not properly asign a category to web sites with a . (dot) at the end, which may allow users to bypass web access restrictions.
2000-02-08
2003-03-21
CVE-2000-0124
http://www.securityfocus.com/bid/965
BID:965
BUGTRAQ:20000203 surfCONTROL SuperScout v2.6.1.6 flaw
CVE-2000-0125
wwwthreads does not properly cleanse numeric data or table names that are passed to SQL queries, which allows remote attackers to gain privileges for wwwthreads forums.
2000-02-08
2003-03-21
CVE-2000-0125
http://www.securityfocus.com/bid/967
BID:967
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10002031027120.15921-100000@eight.wiretrip.net
BUGTRAQ:20000203 RFP2K01 - "How I hacked Packetstorm" (wwwthreads advisory)
CVE-2000-0126
Sample Internet Data Query (IDQ) scripts in IIS 3 and 4 allow remote attackers to read files via a .. (dot dot) attack.
2000-02-08
2022-08-17
CVE-2000-0126
BUGTRAQ:20000202 Alert: IIS 4 / IS 2 IDQ Cerberus Information Security Advisory (CISADV000202)
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0126
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0126
NTBUGTRAQ:20000202 Alert: IIS 4 / IS 2 IDQ Cerberus Information Security Advisory (CISADV000202)
CVE-2000-0127
The Webspeed configuration program does not properly disable access to the WSMadmin utility, which allows remote attackers to gain privileges via wsisa.dll.
2000-10-13
2005-11-02
CVE-2000-0127
http://www.securityfocus.com/bid/969
BID:969
BUGTRAQ:20000203 Webspeed security issue
http://www.progress.com/services/support/cgi-bin/techweb-kbase.cgi/webkb.html?kbid=19412&keywords=security%20Webspeed
CONFIRM:http://www.progress.com/services/support/cgi-bin/techweb-kbase.cgi/webkb.html?kbid=19412&keywords=security%20Webspeed
XF:webspeed-adminutil-auth
CVE-2000-0128
The Finger Server 0.82 allows remote attackers to execute commands via shell metacharacters.
2000-10-13
2004-09-02
CVE-2000-0128
BUGTRAQ:20000204 "The Finger Server"
http://www.glazed.org/finger/changelog.txt
CONFIRM:http://www.glazed.org/finger/changelog.txt
http://www.osvdb.org/7610
OSVDB:7610
XF:finger-server-input
CVE-2000-0129
Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.
2000-02-08
2022-08-17
CVE-2000-0129
BUGTRAQ:20000204 Local / Remote D.o.S Attack in Serv-U FTP-Server v2.5b for Win9x/WinNT Vulnerability
BUGTRAQ:20000204 Windows Api SHGetPathFromIDList Buffer Overflow
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0129
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0129
NTBUGTRAQ:20000204 Local / Remote D.o.S Attack in Serv-U FTP-Server v2.5b for Win9x/WinNT Vulnerability
NTBUGTRAQ:20000204 Windows Api SHGetPathFromIDList Buffer Overflow
CVE-2000-0130
Buffer overflow in SCO scohelp program allows remote attackers to execute commands.
2000-10-13
2005-11-02
CVE-2000-0130
http://marc.info/?l=bugtraq&m=94908470928258&w=2
BUGTRAQ:20000127 New SCO patches...
ftp://ftp.sco.com/SSE/security_bulletins/SB-00.02a
SCO:SB-00.02a
XF:sco-help-bo
CVE-2000-0131
Buffer overflow in War FTPd 1.6x allows users to cause a denial of service via long MKD and CWD commands.
2000-04-18
2004-09-02
CVE-2000-0131
http://www.securityfocus.com/bid/966
BID:966
http://marc.info/?l=bugtraq&m=94960703721503&w=2
BUGTRAQ:20000201 war-ftpd 1.6x DoS
http://www.osvdb.org/4677
OSVDB:4677
CVE-2000-0132
Microsoft Java Virtual Machine allows remote attackers to read files via the getSystemResourceAsStream function.
2000-02-08
2003-03-21
CVE-2000-0132
http://www.securityfocus.com/bid/957
BID:957
BUGTRAQ:20000201 `Microsoft VM for Java' allows reading local files using `getSystemResourceAsStream'.
CVE-2000-0133
Buffer overflows in Tiny FTPd 0.52 beta3 FTP server allows users to execute commands via the STOR, RNTO, MKD, XMKD, RMD, XRMD, APPE, SIZE, and RNFR commands.
2000-02-08
2003-03-21
CVE-2000-0133
http://www.securityfocus.com/bid/961
BID:961
BUGTRAQ:20000201 Tiny FTPd 0.52 beta3 Buffer Overflow
CVE-2000-0134
The Check It Out shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0134
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0134
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0134
CVE-2000-0135
The @Retail shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0135
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0135
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0135
CVE-2000-0136
The Cart32 shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0136
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0136
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0136
CVE-2000-0137
The CartIt shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
2000-02-08
2022-08-17
CVE-2000-0137
ISS:20000201 Form Tampering Vulnerabilities in Several Web-Based Shopping Cart Applications
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0137
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0137
CVE-2000-0138
A system has a distributed denial of service (DDOS) attack master, agent, or zombie installed, such as (1) Trinoo, (2) Tribe Flood Network (TFN), (3) Tribe Flood Network 2000 (TFN2K), (4) stacheldraht, (5) mstream, or (6) shaft.
2000-02-15
2016-10-17
CVE-2000-0138
BUGTRAQ:19991206 Analysis of Tribe Flood Network
BUGTRAQ:19991206 Analysis of trin00
BUGTRAQ:19991229 Analysis of "stacheldraht"
BUGTRAQ:20000211 A DDOS proposal.
BUGTRAQ:20000211 DDOS Attack Mitigation
BUGTRAQ:20000211 TFN2K - An Analysis
http://marc.info/?l=bugtraq&m=95715370208598&w=2
BUGTRAQ:20000429 Source code to mstream, a DDoS tool
http://marc.info/?l=bugtraq&m=95722093124322&w=2
BUGTRAQ:20000501 Re: Source code to mstream, a DDoS tool
CERT:CA-2000-01
CERT:IN-99-04
ISS:20000209 Denial of Service Attack using the TFN2K and Stacheldraht programs
http://xforce.iss.net/alerts/advise48.php3
ISS:20000502 "mstream" Distributed Denial of Service Tool
SUN:00193
CVE-2000-0139
Internet Anywhere POP3 Mail Server allows local users to cause a denial of service via a malformed RETR command.
2000-03-22
2005-11-02
CVE-2000-0139
http://www.securityfocus.com/bid/982
BID:982
http://marc.info/?l=bugtraq&m=95021326417936&w=2
BUGTRAQ:20000210 remote DoS on Internet Anywhere Mail Server Ver.3.1.3
CVE-2000-0140
Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service via a large number of connections.
2000-04-18
2005-11-02
CVE-2000-0140
http://www.securityfocus.com/bid/980
BID:980
http://marc.info/?l=bugtraq&m=95021326417936&w=2
BUGTRAQ:20000210 remote DoS on Internet Anywhere Mail Server Ver.3.1.3
NTBUGTRAQ:20000210 remote DoS on Internet Anywhere Mail Server Ver.3.1.3
CVE-2000-0141
Infopop Ultimate Bulletin Board (UBB) allows remote attackers to execute commands via shell metacharacters in the topic hidden field.
2000-10-13
2005-11-02
CVE-2000-0141
http://www.securityfocus.com/bid/991
BID:991
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-8&msg=20000211224935.A13236@infomag.ape.relarn.ru
BUGTRAQ:20000211 perl-cgi hole in UltimateBB by Infopop Corp.
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-22&msg=NDBBLKOPOLNKELHPDEFKIEPGCAAA.renzo.toma@veronica.nl
BUGTRAQ:20000225 FW: Important UBB News For Licensed Users
http://www.ultimatebb.com/home/versions.shtml
MISC:http://www.ultimatebb.com/home/versions.shtml
XF:http-cgi-ultimatebb
CVE-2000-0142
The authentication protocol in Timbuktu Pro 2.0b650 allows remote attackers to cause a denial of service via connections to port 407 and 1417.
2000-02-16
2022-08-17
CVE-2000-0142
BUGTRAQ:20000211 Timbuktu Pro 2.0b650 DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0142
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0142
CVE-2000-0143
The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or FTP.
2000-02-16
2022-08-17
CVE-2000-0143
BUGTRAQ:20000211 sshd and pop/ftponly users incorrect configuration
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0143
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0143
XF:ssh-redirect-tcp-connection
CVE-2000-0144
Axis 700 Network Scanner does not properly restrict access to administrator URLs, which allows users to bypass the password protection via a .. (dot dot) attack.
2000-04-18
2005-11-02
CVE-2000-0144
http://www.securityfocus.com/bid/971
BID:971
http://archives.neohapsis.com/archives/bugtraq/2000-02/0034.html
BUGTRAQ:20000207 Infosec.20000207.axis700.a
CVE-2000-0145
The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions.
2000-03-22
2022-08-17
CVE-2000-0145
BUGTRAQ:20000205 Debian (frozen): Perms on /usr/lib/libguile.so.6.0.0
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0145
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0145
CVE-2000-0146
The Java Server in the Novell GroupWise Web Access Enhancement Pack allows remote attackers to cause a denial of service via a long URL to the servlet.
2000-10-13
2019-08-15
CVE-2000-0146
http://www.securityfocus.com/bid/972
BID:972
http://archives.neohapsis.com/archives/bugtraq/2000-02/0049.html
BUGTRAQ:20000207 Novell GroupWise 5.5 Enhancement Pack Web Access Denial of Service
XF:novell-groupwise-url-dos
CVE-2000-0147
snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration.
2000-02-16
2002-02-11
CVE-2000-0147
http://www.securityfocus.com/bid/973
BID:973
http://archives.neohapsis.com/archives/bugtraq/2000-02/0045.html
NAI:20000207 SNMPD default writable community string
ftp://ftp.sco.com/SSE/security_bulletins/SB-00.04a
SCO:SB-00.04a
CVE-2000-0148
MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string.
2000-03-22
2005-11-02
CVE-2000-0148
http://www.securityfocus.com/bid/975
BID:975
http://archives.neohapsis.com/archives/bugtraq/2000-02/0053.html
BUGTRAQ:20000208 Remote access vulnerability in all MySQL server versions
BUGTRAQ:20000214 MySQL 3.22.32 released
CVE-2000-0149
Zeus web server allows remote attackers to view the source code for CGI programs via a null character (%00) at the end of a URL.
2000-03-22
2005-11-02
CVE-2000-0149
http://www.securityfocus.com/bid/977
BID:977
http://archives.neohapsis.com/archives/bugtraq/2000-02/0057.html
BUGTRAQ:20000208 Zeus Web Server: Null Terminated Strings
BUGTRAQ:20000209 [SAFER 000209.EXP.1.2] Zeus Web Server - obtaining source of CGI scripts
http://www.osvdb.org/254
OSVDB:254
https://exchange.xforce.ibmcloud.com/vulnerabilities/3982
XF:zeus-server-null-string(3982)
CVE-2000-0150
Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt.
2000-03-22
2004-09-02
CVE-2000-0150
http://www.securityfocus.com/bid/979
BID:979
BUGTRAQ:20000209 FireWall-1 FTP Server Vulnerability
BUGTRAQ:20000210 Multiple firewalls: FTP Application Level Gateway "PASV" Vulnerability
BUGTRAQ:20000212 Re: FireWall-1 FTP Server Vulnerability
http://www.kb.cert.org/vuls/id/328867
CERT-VN:VU#328867
http://www.osvdb.org/4417
OSVDB:4417
CVE-2000-0151
GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands.
2000-02-16
2003-05-08
CVE-2000-0151
http://www.securityfocus.com/bid/981
BID:981
SUSE:20000209 make-3.77-44
CVE-2000-0152
Remote attackers can cause a denial of service in Novell BorderManager 3.5 by pressing the enter key in a telnet connection to port 2000.
2000-03-22
2004-09-02
CVE-2000-0152
http://www.securityfocus.com/bid/976
BID:976
BUGTRAQ:20000209 Novell BorderManager 3.5 Remote Slow Death
BUGTRAQ:20000211 BorderManager csatpxy.nlm fix avalable.
http://www.osvdb.org/7468
OSVDB:7468
CVE-2000-0153
FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack.
2000-02-23
2003-05-08
CVE-2000-0153
http://www.securityfocus.com/bid/989
BID:989
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=000801bf780a$9ad4b2e0$0100007f@localhost
BUGTRAQ:20000216 Doubledot bug in FrontPage FrontPage Personal Web Server.
CVE-2000-0154
The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack.
2000-02-23
2003-05-08
CVE-2000-0154
http://www.securityfocus.com/bid/988
BID:988
http://www.sco.com/security/
MISC:http://www.sco.com/security/
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=000101bf78af$94528870$4d2f45a1@jmagdych.na.nai.com
NAI:20000215 ARCserve symlink vulnerability
CVE-2000-0155
Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive.
2000-02-23
2003-05-08
CVE-2000-0155
http://www.securityfocus.com/bid/993
BID:993
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=000701bf79cd$fdb5a620$4c4342a6@mightye.org
BUGTRAQ:20000218 AUTORUN.INF Vulnerability
CVE-2000-0156
Internet Explorer 4.x and 5.x allows remote web servers to access files on the client that are outside of its security domain, aka the "Image Source Redirect" vulnerability.
2000-03-22
2005-11-02
CVE-2000-0156
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-009
MS:MS00-009
http://www.osvdb.org/7827
OSVDB:7827
https://exchange.xforce.ibmcloud.com/vulnerabilities/3996
XF:ie-image-source-redirect(3996)
CVE-2000-0157
NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process.
2000-07-12
2005-11-02
CVE-2000-0157
http://www.securityfocus.com/bid/992
BID:992
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA1999-012.txt.asc
NETBSD:1999-012
XF:netbsd-ptrace
CVE-2000-0158
Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon.
2000-02-23
2003-05-08
CVE-2000-0158
http://www.securityfocus.com/bid/997
BID:997
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=200002181449.JAA03436@dragonfly.corp.home.net
BUGTRAQ:20000218 MMDF
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=000001bf78af$6d0d47a0$4d2f45a1@jmagdych.na.nai.com
NAI:20000215 Remote Vulnerability in the MMDF SMTP Daemon
ftp://ftp.sco.com/SSE/security_bulletins/SB-00.06a
SCO:SB-00.06a
CVE-2000-0159
HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges.
2000-04-18
2005-11-02
CVE-2000-0159
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000217160216.13708.qmail@underground.org
HP:HPSBUX0002-111
CVE-2000-0160
The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft.
2000-02-23
2003-05-08
CVE-2000-0160
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000221103938.T21312@securityfocus.com
BUGTRAQ:20000221 Microsoft signed software can be install software without prompting users
XF:win-active-setup
CVE-2000-0161
Sample web sites on Microsoft Site Server 3.0 Commerce Edition do not validate an identification number, which allows remote attackers to execute SQL commands.
2000-03-22
2005-11-02
CVE-2000-0161
http://www.securityfocus.com/bid/994
BID:994
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-010
MS:MS00-010
CVE-2000-0162
The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability.
2000-03-22
2005-11-02
CVE-2000-0162
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-011
MS:MS00-011
CVE-2000-0163
asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file.
2000-02-23
2003-05-08
CVE-2000-0163
http://www.securityfocus.com/bid/996
BID:996
http://www.securityfocus.com/templates/advisory.html?id=2092
FREEBSD:FreeBSD-SA-00:03
CVE-2000-0164
The installation of Sun Internet Mail Server (SIMS) creates a world-readable file that allows local users to obtain passwords.
2000-10-13
2005-11-02
CVE-2000-0164
http://www.securityfocus.com/bid/1004
BID:1004
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=Pine.SOL.4.21.0002200031320.22675-100000@klayman.hq.formus.pl
BUGTRAQ:20000220 Sun Internet Mail Server
SUNBUG:4316521
XF:sims-temp-world-readable
CVE-2000-0165
The Delegate application proxy has several buffer overflows which allow a remote attacker to execute commands.
2000-04-25
2005-11-02
CVE-2000-0165
BUGTRAQ:20000210 Re: application proxies?
http://www.ciac.org/ciac/bulletins/k-023.shtml
CIAC:K-023
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=Pine.BSF.4.21.0002192249290.10784-100000@freefall.freebsd.org
FREEBSD:FreeBSD-SA-00:04
https://exchange.xforce.ibmcloud.com/vulnerabilities/4195
XF:delegate-proxy-bo(4105)
CVE-2000-0166
Buffer overflow in the InterAccess telnet server TelnetD allows remote attackers to execute commands via a long login name.
2000-10-13
2005-11-02
CVE-2000-0166
http://www.securityfocus.com/bid/995
BID:995
http://www.securityfocus.com/templates/archive.pike?list=1&msg=NCBBKFKDOLAGKIAPMILPGEJHCCAA.labs@ussrback.com
BUGTRAQ:20000221 Local / Remote Exploiteable Buffer Overflow Vulnerability in InterAccess TelnetD Server 4.0 for Windows NT
http://marc.info/?l=bugtraq&m=95142756403323&w=2
BUGTRAQ:20000223 Pragma Systems response to USSRLabs report
XF:interaccess-telnet-login-bo
CVE-2000-0167
IIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long name and a .txt.eml extension in the pickup directory.
2000-02-23
2003-03-21
CVE-2000-0167
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0002&L=ntbugtraq&F=&S=&P=8800
NTBUGTRAQ:20000215 Crashing Inetinfo.exe by using a longfilename in the \mailroot\pickup directory
CVE-2000-0168
Microsoft Windows 9x operating systems allow an attacker to cause a denial of service via a pathname that includes file device names, aka the "DOS Device in Path Name" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0168
http://www.securityfocus.com/bid/1043
BID:1043
http://www.securityfocus.com/templates/archive.pike?list=1&msg=NCBBKFKDOLAGKIAPMILPCENECCAA.labs@ussrback.com
BUGTRAQ:20000306 con\con is a old thing (anyway is cool)
http://www.securityfocus.com/templates/advisory.html?id=2126
MS:MS00-017
XF:win-dos-devicename-dos
CVE-2000-0169
Batch files in the Oracle web listener ows-bin directory allow remote attackers to execute commands via a malformed URL that includes '?&'.
2000-06-02
2005-11-02
CVE-2000-0169
http://www.securityfocus.com/bid/1053
BID:1053
http://archives.neohapsis.com/archives/ntbugtraq/2000-q1/0211.html
NTBUGTRAQ:20000314 Oracle Web Listener 4.0.x
XF:oracle-weblistener-remote-attack
CVE-2000-0170
Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable.
2000-04-10
2005-11-02
CVE-2000-0170
http://www.securityfocus.com/bid/1011
BID:1011
BUGTRAQ:20000226 man bugs might lead to root compromise (RH 6.1 and other boxes)
CVE-2000-0171
atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges.
2000-06-02
2005-11-02
CVE-2000-0171
http://www.securityfocus.com/bid/1048
BID:1048
http://archives.neohapsis.com/archives/bugtraq/2000-03/0102.html
BUGTRAQ:20000311 TESO advisory -- atsadc
XF:atsar-root-access
CVE-2000-0172
The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges.
2000-04-10
2005-11-02
CVE-2000-0172
http://www.securityfocus.com/bid/1038
BID:1038
BUGTRAQ:20000303 Potential security problem with mtr
BUGTRAQ:20000308 [TL-Security-Announce] mtr-0.41 and earlier TLSA2000003-1 (fwd)
DEBIAN:20000309 mtr
FREEBSD:FreeBSD-SA-00:09
CVE-2000-0173
Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service.
2000-03-22
2003-03-21
CVE-2000-0173
ftp://ftp.sco.com/SSE/security_bulletins/SB-00.08a
SCO:SB-00.08a
CVE-2000-0174
StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-07-12
2005-11-02
CVE-2000-0174
http://www.securityfocus.com/bid/1040
BID:1040
http://archives.neohapsis.com/archives/bugtraq/2000-03/0063.html
BUGTRAQ:20000308 [SAFER 000309.EXP.1.4] StarScheduler (StarOffice) vulnerabilities
XF:staroffice-scheduler-fileread
CVE-2000-0175
Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command.
2000-07-12
2005-11-02
CVE-2000-0175
http://www.securityfocus.com/bid/1039
BID:1039
http://archives.neohapsis.com/archives/bugtraq/2000-03/0063.html
BUGTRAQ:20000308 [SAFER 000309.EXP.1.4] StarScheduler (StarOffice) vulnerabilities
XF:staroffice-scheduler-bo
CVE-2000-0176
The default configuration of Serv-U 2.5d and earlier allows remote attackers to determine the real pathname of the server by requesting a URL for a directory or file that does not exist.
2000-03-22
2003-03-21
CVE-2000-0176
http://www.securityfocus.com/bid/1016
BID:1016
http://archives.neohapsis.com/archives/bugtraq/2000-02/0417.html
BUGTRAQ:20000228 Serv-U FTP-Server v2.4a showing real path
CVE-2000-0177
DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters.
2000-03-22
2003-03-21
CVE-2000-0177
http://www.securityfocus.com/bid/1028
BID:1028
http://archives.neohapsis.com/archives/bugtraq/2000-03/0000.html
BUGTRAQ:20000302 DNSTools v1.08 has no input validation
CVE-2000-0178
ServerIron switches by Foundry Networks have predictable TCP/IP sequence numbers, which allows remote attackers to spoof or hijack sessions.
2000-04-10
2005-11-02
CVE-2000-0178
http://www.securityfocus.com/bid/1017
BID:1017
BUGTRAQ:20000227 Advisory: Foundry Networks ServerIron TCP/IP sequence predictability
http://www.foundrynet.com/bugTraq.html
MISC:http://www.foundrynet.com/bugTraq.html
CVE-2000-0179
HP OpenView OmniBack 2.55 allows remote attackers to cause a denial of service via a large number of connections to port 5555.
2000-10-13
2005-11-02
CVE-2000-0179
http://www.securityfocus.com/bid/1015
BID:1015
http://archives.neohapsis.com/archives/bugtraq/2000-02/0387.html
BUGTRAQ:20000228 HP Omniback remote DoS
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0006-115
HP:HPSBUX0006-115
XF:omniback-connection-dos
CVE-2000-0180
Sojourn search engine allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2002-03-09
2002-02-21
CVE-2000-0180
http://www.securityfocus.com/bid/1052
BID:1052
http://archives.neohapsis.com/archives/ntbugtraq/2000-q1/0201.html
NTBUGTRAQ:20000313 SOJOURN Search engine exposes files
https://exchange.xforce.ibmcloud.com/vulnerabilities/4197
XF:sojourn-file-read(4197)
CVE-2000-0181
Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection.
2000-04-25
2004-09-02
CVE-2000-0181
http://www.securityfocus.com/bid/1054
BID:1054
http://archives.neohapsis.com/archives/bugtraq/2000-03/0119.html
BUGTRAQ:20000311 Our old friend Firewall-1
http://www.osvdb.org/1256
OSVDB:1256
CVE-2000-0182
iPlanet Web Server 4.1 allows remote attackers to cause a denial of service via a large number of GET commands, which consumes memory and causes a kernel panic.
2000-04-10
2022-08-17
CVE-2000-0182
BUGTRAQ:20000223 DoS for the iPlanet Web Server, Enterprise Edition 4.1
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0182
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0182
CVE-2000-0183
Buffer overflow in ircII 4.4 IRC client allows remote attackers to execute commands via the DCC chat capability.
2000-04-18
2004-09-02
CVE-2000-0183
http://www.securityfocus.com/bid/1046
BID:1046
http://archives.neohapsis.com/archives/bugtraq/2000-03/0093.html
BUGTRAQ:20000310 Fwd: ircii-4.4 buffer overflow
FREEBSD:FreeBSD-SA-00:11
http://www.redhat.com/support/errata/RHSA-2000-008.html
REDHAT:RHSA-2000:008
CVE-2000-0184
Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords.
2000-04-25
2005-11-02
CVE-2000-0184
http://www.securityfocus.com/bid/1037
BID:1037
http://archives.neohapsis.com/archives/bugtraq/2000-03/0082.html
BUGTRAQ:20000309
CVE-2000-0185
RealMedia RealServer reveals the real IP address of a Real Server, even if the address is supposed to be private.
2000-04-25
2005-11-02
CVE-2000-0185
http://www.securityfocus.com/bid/1049
BID:1049
http://archives.neohapsis.com/archives/bugtraq/2000-03/0069.html
BUGTRAQ:20000308 RealServer exposes internal IP addresses
CVE-2000-0186
Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument.
2000-04-10
2004-09-02
CVE-2000-0186
http://www.securityfocus.com/bid/1020
BID:1020
BUGTRAQ:20000228 [ Hackerslab bug_paper ] Linux dump buffer overflow
http://www.redhat.com/support/errata/RHSA-2000-100.html
REDHAT:RHSA-2000:100
TURBO:TLSA200007-1
CVE-2000-0187
EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters.
2000-03-22
2003-03-21
CVE-2000-0187
http://www.securityfocus.com/bid/1014
BID:1014
http://archives.neohapsis.com/archives/bugtraq/2000-02/0356.html
BUGTRAQ:20000227 EZ Shopper 3.0 shopping cart CGI remote command execution
CVE-2000-0188
EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters.
2000-03-22
2003-03-21
CVE-2000-0188
http://www.securityfocus.com/bid/1014
BID:1014
http://archives.neohapsis.com/archives/bugtraq/2000-02/0356.html
BUGTRAQ:20000227 EZ Shopper 3.0 shopping cart CGI remote command execution
CVE-2000-0189
ColdFusion Server 4.x allows remote attackers to determine the real pathname of the server via an HTTP request to the application.cfm or onrequestend.cfm files.
2000-04-10
2005-11-02
CVE-2000-0189
http://www.securityfocus.com/bid/1021
BID:1021
BUGTRAQ:20000305 ColdFusion Bug: Application.cfm shows full path
NTBUGTRAQ:20000301 ColdFusions application.cfm shows full path
CVE-2000-0190
AOL Instant Messenger (AIM) client allows remote attackers to cause a denial of service via a message with a malformed ASCII value.
2000-03-22
2003-03-21
CVE-2000-0190
http://archives.neohapsis.com/archives/bugtraq/2000-03/0016.html
BUGTRAQ:20000303 Aol Instant Messenger DoS vulnerability
CVE-2000-0191
Axis StorPoint CD allows remote attackers to access administrator URLs without authentication via a .. (dot dot) attack.
2000-10-13
2004-09-02
CVE-2000-0191
http://www.securityfocus.com/bid/1025
BID:1025
http://www.securityfocus.com/templates/archive.pike?list=1&msg=41256894.00492503.00@mailgw.backupcentralen.se
BUGTRAQ:20000229 Infosec.20000229.axisstorpointcd.a
http://www.osvdb.org/19
OSVDB:19
XF:axis-storpoint-auth
CVE-2000-0192
The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.
2000-04-25
2005-11-02
CVE-2000-0192
http://www.securityfocus.com/bid/1036
BID:1036
http://archives.neohapsis.com/archives/bugtraq/2000-03/0029.html
BUGTRAQ:20000304 OpenLinux 2.3: rpm_query
CVE-2000-0193
The default configuration of Dosemu in Corel Linux 1.0 allows local users to execute the system.com program and gain privileges.
2000-10-13
2005-11-02
CVE-2000-0193
http://www.securityfocus.com/bid/1030
BID:1030
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200003020436.PAA20168@jawa.chilli.net.au
BUGTRAQ:20000302 Corel Linux 1.0 dosemu default configuration: Local root vuln
XF:linux-dosemu-config
CVE-2000-0194
buildxconf in Corel Linux allows local users to modify or create arbitrary files via the -x or -f parameters.
2000-04-10
2005-11-02
CVE-2000-0194
http://www.securityfocus.com/bid/1007
BID:1007
http://archives.neohapsis.com/archives/bugtraq/2000-02/0323.html
BUGTRAQ:20000224 Corel Linux 1.0 local root compromise
CVE-2000-0195
setxconf in Corel Linux allows local users to gain root access via the -T parameter, which executes the user's .xserverrc file.
2000-07-12
2005-11-02
CVE-2000-0195
http://www.securityfocus.com/bid/1008
BID:1008
http://archives.neohapsis.com/archives/bugtraq/2000-02/0323.html
BUGTRAQ:20000224 Corel Linux 1.0 local root compromise
XF:corel-linux-setxconf-root
CVE-2000-0196
Buffer overflow in mhshow in the Linux nmh package allows remote attackers to execute commands via malformed MIME headers in an email message.
2000-04-10
2004-09-02
CVE-2000-0196
http://www.securityfocus.com/bid/1018
BID:1018
DEBIAN:20000229
http://www.redhat.com/support/errata/RHSA-2000-006.html
REDHAT:RHSA-2000:006
CVE-2000-0197
The Windows NT scheduler uses the drive mapping of the interactive user who is currently logged onto the system, which allows the local user to gain privileges by providing a Trojan horse batch file in place of the original batch file.
2000-03-22
2003-03-21
CVE-2000-0197
http://www.securityfocus.com/bid/1050
BID:1050
http://archives.neohapsis.com/archives/ntbugtraq/current/0202.html
NTBUGTRAQ:20000313 AT Jobs - Denial of serice/Privilege Elevation
CVE-2000-0198
Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service.
2000-03-22
2003-03-21
CVE-2000-0198
http://www.securityfocus.com/bid/1051
BID:1051
http://archives.neohapsis.com/archives/bugtraq/current/0137.html
BUGTRAQ:20000314 Local / Remote Multiples Remote DoS Attacks in MERCUR v3.2* for Windows 98/NT Vulnerability
http://archives.neohapsis.com/archives/ntbugtraq/current/0206.html
NTBUGTRAQ:20000314 Local / Remote Multiples Remote DoS Attacks in MERCUR v3.2* for Windows 98/NT Vulnerability
CVE-2000-0199
When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password.
2000-03-22
2003-03-21
CVE-2000-0199
http://www.securityfocus.com/bid/1055
BID:1055
ISS:20000314 Vulnerability in Microsoft SQL Server 7.0 Encryption Used to Store Administrative Login ID
CVE-2000-0200
Buffer overflow in Microsoft Clip Art Gallery allows remote attackers to cause a denial of service or execute commands via a malformed CIL (clip art library) file, aka the "Clip Art Buffer Overrun" vulnerability.
2000-04-10
2005-11-02
CVE-2000-0200
http://www.securityfocus.com/bid/1034
BID:1034
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-015
MS:MS00-015
CVE-2000-0201
The window.showHelp() method in Internet Explorer 5.x does not restrict HTML help files (.chm) to be executed from the local host, which allows remote attackers to execute arbitrary commands via Microsoft Networking.
2000-04-10
2005-11-02
CVE-2000-0201
http://www.securityfocus.com/bid/1033
BID:1033
BUGTRAQ:20000301 IE 5.x allows executing arbitrary programs using .chm files
CVE-2000-0202
Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0 allow remote attackers to gain privileges via a malformed Select statement in an SQL query.
2000-04-10
2005-11-02
CVE-2000-0202
http://www.securityfocus.com/bid/1041
BID:1041
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-014
MS:MS00-014
CVE-2000-0203
The Trend Micro OfficeScan client tmlisten.exe allows remote attackers to cause a denial of service via malformed data to port 12345.
2000-03-22
2003-03-21
CVE-2000-0203
http://www.securityfocus.com/bid/1013
BID:1013
http://www.securityfocus.com/templates/archive.pike?list=1&msg=412FC0AFD62ED31191B40008C7E9A11A0D481D@srvnt04.previnet.it
BUGTRAQ:20000228 Re: TrendMicro OfficeScan tmlisten.exe DoS
http://www.securityfocus.com/templates/archive.pike?list=1&msg=D129BBE1730AD2118A0300805FC1C2FE038AF28B@209-76-212-10.trendmicro.com
BUGTRAQ:20000315 Trend Micro release patch for "OfficeScan DoS & Message Replay" V ulnerabilies
http://www.antivirus.com/download/ofce_patch_35.htm
MISC:http://www.antivirus.com/download/ofce_patch_35.htm
CVE-2000-0204
The Trend Micro OfficeScan client allows remote attackers to cause a denial of service by making 5 connections to port 12345, which raises CPU utilization to 100%.
2000-03-22
2003-03-21
CVE-2000-0204
http://www.securityfocus.com/bid/1013
BID:1013
http://archives.neohapsis.com/archives/bugtraq/2000-02/0340.html
BUGTRAQ:20000226 DOS in Trendmicro OfficeScan
http://www.securityfocus.com/templates/archive.pike?list=1&msg=D129BBE1730AD2118A0300805FC1C2FE038AF28B@209-76-212-10.trendmicro.com
BUGTRAQ:20000315 Trend Micro release patch for "OfficeScan DoS & Message Replay" V ulnerabilies
http://www.antivirus.com/download/ofce_patch_35.htm
MISC:http://www.antivirus.com/download/ofce_patch_35.htm
CVE-2000-0205
Trend Micro OfficeScan allows remote attackers to replay administrative commands and modify the configuration of OfficeScan clients.
2000-03-22
2003-03-21
CVE-2000-0205
http://www.securityfocus.com/bid/1013
BID:1013
http://archives.neohapsis.com/archives/bugtraq/2000-03/0015.html
BUGTRAQ:20000303 TrendMicro OfficeScan, numerous security holes, remote files modification.
http://www.securityfocus.com/templates/archive.pike?list=1&msg=D129BBE1730AD2118A0300805FC1C2FE038AF28B@209-76-212-10.trendmicro.com
BUGTRAQ:20000315 Trend Micro release patch for "OfficeScan DoS & Message Replay" V ulnerabilies
http://www.antivirus.com/download/ofce_patch_35.htm
MISC:http://www.antivirus.com/download/ofce_patch_35.htm
CVE-2000-0206
The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges.
2000-04-25
2005-11-02
CVE-2000-0206
http://www.securityfocus.com/bid/1035
BID:1035
http://archives.neohapsis.com/archives/bugtraq/2000-03/0023.html
BUGTRAQ:20000305 Oracle installer problem
CVE-2000-0207
SGI InfoSearch CGI program infosrch.cgi allows remote attackers to execute commands via shell metacharacters.
2000-04-10
2005-11-02
CVE-2000-0207
http://www.securityfocus.com/bid/1031
BID:1031
BUGTRAQ:20000301 infosrch.cgi vulnerability (IRIX 6.5)
ftp://patches.sgi.com/support/free/security/advisories/20000501-01-P
SGI:20000501-01-P
XF:irix-infosrch-fname
CVE-2000-0208
The htdig (ht://Dig) CGI program htsearch allows remote attackers to read arbitrary files by enclosing the file name with backticks (`) in parameters to htsearch.
2000-04-10
2005-11-02
CVE-2000-0208
http://www.securityfocus.com/bid/1026
BID:1026
BUGTRAQ:20000228 ht://Dig remote information exposure
DEBIAN:20000227
FREEBSD:FreeBSD-SA-00:06
TURBO:TLSA200005-1
CVE-2000-0209
Buffer overflow in Lynx 2.x allows remote attackers to crash Lynx and possibly execute commands via a long URL in a malicious web page.
2000-04-10
2005-11-02
CVE-2000-0209
http://www.securityfocus.com/bid/1012
BID:1012
BUGTRAQ:20000227 lynx - someone is deaf and blind ;)
FREEBSD:FreeBSD-SA-00:08
CVE-2000-0210
The lit program in Sun Flex License Manager (FlexLM) follows symlinks, which allows local users to modify arbitrary files.
2000-04-10
2005-11-02
CVE-2000-0210
http://www.securityfocus.com/bid/998
BID:998
BUGTRAQ:20000221 flex license manager tempfile predictable name...
CVE-2000-0211
The Windows Media server allows remote attackers to cause a denial of service via a series of client handshake packets that are sent in an improper sequence, aka the "Misordered Windows Media Services Handshake" vulnerability.
2000-04-10
2005-11-02
CVE-2000-0211
http://www.securityfocus.com/bid/1000
BID:1000
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-013
MS:MS00-013
XF:win-media-dos
CVE-2000-0212
InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information.
2000-04-10
2016-09-15
CVE-2000-0212
http://www.securityfocus.com/bid/1001
BID:1001
BUGTRAQ:20000224 Local / Remote D.o.S Attack in InterAccess TelnetD Server Release 4.0 *ALL BUILDS* for WinNT Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/4033
XF:interaccess-telnet-dos(4033)
CVE-2000-0213
The Sambar server includes batch files ECHO.BAT and HELLO.BAT in the CGI directory, which allow remote attackers to execute commands via shell metacharacters.
2000-03-22
2003-03-21
CVE-2000-0213
http://www.securityfocus.com/bid/1002
BID:1002
http://www.securityfocus.com/templates/archive.pike?list=1&msg=38B3E60A.6A84FEC3@cybcom.net
BUGTRAQ:20000223 Sambar Server alert!
http://www.sambar.com/session/highlight?url=/syshelp/history.htm&words=security+&color=red
CONFIRM:http://www.sambar.com/session/highlight?url=/syshelp/history.htm&words=security+&color=red
XF:sambar-batfiles
CVE-2000-0214
FTP Explorer uses weak encryption for storing the username, password, and profile of FTP sites.
2000-03-22
2003-03-21
CVE-2000-0214
http://www.securityfocus.com/bid/1003
BID:1003
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10002242035500.30645-100000@unreal.sekure.org
BUGTRAQ:20000224 How the password could be recover using FTP Explorer's registry!
CVE-2000-0215
Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges.
2000-04-10
2005-11-02
CVE-2000-0215
http://www.securityfocus.com/bid/1019
BID:1019
SCO:SB-00.05
CVE-2000-0216
Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow an attacker to flood a mail system with responses by forging a Read Receipt request that is redirected to a large distribution list.
2000-03-22
2003-03-21
CVE-2000-0216
http://archives.neohapsis.com/archives/ntbugtraq/2000-q1/0176.html
NTBUGTRAQ:20000229 mailbombing DoS easily exploitable against mail systems using MS mail clients.
CVE-2000-0217
The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program.
2000-04-10
2005-11-02
CVE-2000-0217
http://www.securityfocus.com/bid/1006
BID:1006
BUGTRAQ:20000224 SSH & xauth
CVE-2000-0218
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
2000-04-10
2004-09-02
CVE-2000-0218
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-002.0.txt
CALDERA:CSSA-2000-002.0
http://www.osvdb.org/6980
OSVDB:6980
http://www.osvdb.org/7004
OSVDB:7004
SUSE:20000210 util < 2.10f
CVE-2000-0219
Red Hat 6.0 allows local users to gain root access by booting single user and hitting ^C at the password prompt.
2000-03-22
2014-11-01
CVE-2000-0219
http://www.securityfocus.com/bid/1005
BID:1005
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200002230248.NAA19185@cairo.anu.edu.au
BUGTRAQ:20000223 redhat 6.0: single user boot security hole
https://kc.mcafee.com/corporate/index?page=content&id=SB10053
CONFIRM:https://kc.mcafee.com/corporate/index?page=content&id=SB10053
CVE-2000-0220
ZoneAlarm sends sensitive system and network information in cleartext to the Zone Labs server if a user requests more information about an event.
2000-03-22
2022-08-17
CVE-2000-0220
BUGTRAQ:20000225 Zonealarm exports sensitive data
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0220
MISC:https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0220
CVE-2000-0221
The Nautica Marlin bridge allows remote attackers to cause a denial of service via a zero length UDP packet to the SNMP port.
2000-04-10
2005-11-02
CVE-2000-0221
http://www.securityfocus.com/bid/1009
BID:1009
BUGTRAQ:20000225 Scorpion Marlin
CVE-2000-0222
The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote attackers to connect to the ADMIN$ share without a password until the reboot occurs.
2000-04-10
2005-11-02
CVE-2000-0222
http://www.securityfocus.com/bid/990
BID:990
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000215155750.M4500@safe.hsc.fr
BUGTRAQ:20000215 Windows 2000 installation process weakness
CVE-2000-0223
Buffer overflow in the wmcdplay CD player program for the WindowMaker desktop allows local users to gain root privileges via a long parameter.
2000-04-25
2005-11-02
CVE-2000-0223
http://www.securityfocus.com/bid/1047
BID:1047
http://archives.neohapsis.com/archives/bugtraq/2000-03/0107.html
BUGTRAQ:20000311 TESO advisory -- wmcdplay
CVE-2000-0224
ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack.
2000-04-10
2005-11-02
CVE-2000-0224
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=000101bf78af$94528870$4d2f45a1@jmagdych.na.nai.com
NAI:20000215 ARCserve symlink vulnerability
SCO:SSE063
XF:sco-openserver-arc-symlink
CVE-2000-0225
The Pocsag POC32 program does not properly prevent remote users from accessing its server port, even if the option has been disabled.
2000-10-13
2004-09-02
CVE-2000-0225
http://www.securityfocus.com/bid/1032
BID:1032
http://www.securityfocus.com/templates/archive.pike?list=1&msg=003601bf854b$6893a090$0100a8c0@FIREWALKER
BUGTRAQ:20000303 Pocsag remote access to client can't be disabled.
http://www.osvdb.org/259
OSVDB:259
XF:telnet-pocsag
CVE-2000-0226
IIS 4.0 allows attackers to cause a denial of service by requesting a large buffer in a POST or PUT command which consumes memory, aka the "Chunked Transfer Encoding Buffer Overflow Vulnerability."
2000-06-02
2005-11-02
CVE-2000-0226
http://www.securityfocus.com/bid/1066
BID:1066
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-018
MS:MS00-018
XF:iis-chunked-encoding-dos
CVE-2000-0227
The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a denial of service by requesting a large number of sockets.
2000-04-12
2017-12-19
CVE-2000-0227
http://www.securityfocus.com/bid/1072
BID:1072
http://archives.neohapsis.com/archives/bugtraq/2000-03/0254.html
BUGTRAQ:20000323 Local Denial-of-Service attack against Linux
http://marc.info/?l=bugtraq&m=95421263519558&w=2
BUGTRAQ:20000328 Re: Local Denial-of-Service attack against Linux
https://exchange.xforce.ibmcloud.com/vulnerabilities/4186
XF:linux-domain-socket-dos(4186)
CVE-2000-0228
Microsoft Windows Media License Manager allows remote attackers to cause a denial of service by sending a malformed request that causes the manager to halt, aka the "Malformed Media License Request" Vulnerability.
2000-06-02
2005-11-02
CVE-2000-0228
http://www.securityfocus.com/bid/1058
BID:1058
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-016
MS:MS00-016
XF:mwmt-malformed-media-license
CVE-2000-0229
gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.
2000-06-02
2004-09-02
CVE-2000-0229
http://www.securityfocus.com/bid/1069
BID:1069
http://archives.neohapsis.com/archives/bugtraq/2000-03/0242.html
BUGTRAQ:20000322 gpm-root
http://www.redhat.com/support/errata/RHSA-2000-009.html
REDHAT:RHSA-2000:009
http://www.redhat.com/support/errata/RHSA-2000-045.html
REDHAT:RHSA-2000:045
http://www.novell.com/linux/security/advisories/suse_security_announce_45.html
SUSE:20000405 Security hole in gpm < 1.18.1
XF:linux-gpm-root
CVE-2000-0230
Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable.
2000-06-02
2004-09-02
CVE-2000-0230
http://www.securityfocus.com/bid/1060
BID:1060
http://archives.neohapsis.com/archives/bugtraq/2000-03/0168.html
BUGTRAQ:20000316 TESO & C-Skills development advisory -- imwheel
http://www.redhat.com/support/errata/RHSA-2000-016.html
REDHAT:RHSA-2000:016
XF:linux-imwheel-bo
CVE-2000-0231
Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges.
2000-06-02
2005-11-02
CVE-2000-0231
http://www.securityfocus.com/bid/1061
BID:1061
http://archives.neohapsis.com/archives/bugtraq/2000-03/0162.html
BUGTRAQ:20000316 "TESO & C-Skills development advisory -- kreatecd" at:
SUSE:20000405 Security hole in kreatecd < 0.3.8b
XF:linux-kreatecd-path
CVE-2000-0232
Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request.
2000-06-02
2005-11-02
CVE-2000-0232
http://www.securityfocus.com/bid/1082
BID:1082
http://archives.neohapsis.com/archives/bugtraq/2000-03/0306.html
BUGTRAQ:20000330 Remote DoS Attack in Windows 2000/NT 4.0 TCP/IP Print Request Server Vulnerability
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-021
MS:MS00-021
XF:win-tcpip-printing-dos
CVE-2000-0233
SuSE Linux IMAP server allows remote attackers to bypass IMAP authentication and gain privileges.
2000-06-02
2005-11-02
CVE-2000-0233
http://archives.neohapsis.com/archives/vendor/2000-q1/0035.html
SUSE:20000327 Security hole in SuSE Linux IMAP Server
XF:linux-imap-remote-unauthorized-access
CVE-2000-0234
The default configuration of Cobalt RaQ2 and RaQ3 as specified in access.conf allows remote attackers to view sensitive contents of a .htaccess file.
2000-06-02
2005-11-02
CVE-2000-0234
http://www.securityfocus.com/bid/1083
BID:1083
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000330220757.28456.qmail@securityfocus.com
BUGTRAQ:20000330 Cobalt apache configuration exposes .htaccess
http://www.securityfocus.com/templates/advisory.html?id=2150
CONFIRM:http://www.securityfocus.com/templates/advisory.html?id=2150
XF:cobalt-raq-remote-access
CVE-2000-0235
Buffer overflow in the huh program in the orville-write package allows local users to gain root privileges.
2000-06-02
2004-09-02
CVE-2000-0235
http://www.securityfocus.com/bid/1070
BID:1070
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:10-orville-write.asc
FREEBSD:FreeBSD-SA-00:10
http://www.osvdb.org/1263
OSVDB:1263
XF:freebsd-orvillewrite-bo
CVE-2000-0236
Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and ?wp-cs-dump.
2000-07-12
2005-11-02
CVE-2000-0236
http://www.securityfocus.com/bid/1063
BID:1063
http://www.securityfocus.com/templates/archive.pike?list=1&msg=38D2173D.24E39DD0@relaygroup.com
BUGTRAQ:20000317 [SAFER 000317.EXP.1.5] Netscape Enterprise Server and '?wp' tags
XF:netscape-server-directory-indexing
CVE-2000-0237
Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse the directories.
2000-10-13
2005-11-02
CVE-2000-0237
http://www.securityfocus.com/bid/1075
BID:1075
http://zsh.stupidphat.com/advisory.cgi?000311-1
MISC:http://zsh.stupidphat.com/advisory.cgi?000311-1
XF:netscape-webpublisher-invalid-access
CVE-2000-0238
Buffer overflow in the web server for Norton AntiVirus for Internet Email Gateways allows remote attackers to cause a denial of service via a long URL.
2000-10-13
2005-11-02
CVE-2000-0238
http://www.securityfocus.com/bid/1064
BID:1064
http://www.securityfocus.com/templates/archive.pike?list=1&msg=s8d1f3e3.036@kib.co.kodiak.ak.us
BUGTRAQ:20000317 DoS with NAVIEG
XF:nav-email-gateway-dos
CVE-2000-0239
Buffer overflow in the MERCUR WebView WebMail server allows remote attackers to cause a denial of service via a long mail_user parameter in the GET request.
2000-04-12
2016-11-17
CVE-2000-0239
http://www.securityfocus.com/bid/1056
BID:1056
http://marc.info/?l=bugtraq&m=95325335825295&w=2
BUGTRAQ:20000315 Local / Remote DoS Attack in MERCUR WebView WebMail-Client 1.0
http://www.ussrback.com/labs36.html
MISC:http://www.ussrback.com/labs36.html
XF:mercur-webview-get-dos
CVE-2000-0240
vqSoft vqServer program allows remote attackers to read arbitrary files via a /........../ in the URL, a variation of a .. (dot dot) attack.
2000-10-13
2004-09-02
CVE-2000-0240
http://www.securityfocus.com/bid/1067
BID:1067
http://www.securityfocus.com/templates/archive.pike?list=1&msg=4.1.20000321084646.0095c7f0@olga.swip.net
BUGTRAQ:20000321 vqserver /........../
http://www.vqsoft.com/vq/server/faqs/dotdotbug.html
CONFIRM:http://www.vqsoft.com/vq/server/faqs/dotdotbug.html
http://www.osvdb.org/270
OSVDB:270
XF:vqserver-dir-traverse
CVE-2000-0241
vqSoft vqServer stores sensitive information such as passwords in cleartext in the server.cfg file, which allows attackers to gain privileges.
2000-04-12
2003-03-21
CVE-2000-0241
http://www.securityfocus.com/bid/1068
BID:1068
http://www.securityfocus.com/templates/archive.pike?list=1&msg=4.1.20000321084646.0095c7f0@olga.swip.net
BUGTRAQ:20000321 vqserver /........../
XF:vqserver-passwd-plaintext
CVE-2000-0242
WindMail allows remote attackers to read arbitrary files or execute commands via shell metacharacters.
2000-04-12
2003-03-21
CVE-2000-0242
http://www.securityfocus.com/bid/1073
BID:1073
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-03-22&msg=20000325224146.6839.qmail@securityfocus.com
BUGTRAQ:20000325 Windmail allow web user get any file
XF:windmail-fileread
XF:windmail-pipe-command
CVE-2000-0243
AnalogX SimpleServer:WWW HTTP server 1.03 allows remote attackers to cause a denial of service via a short GET request to cgi-bin.
2001-09-18
2004-09-02
CVE-2000-0243
http://www.securityfocus.com/bid/1076
BID:1076
http://www.securityfocus.com/templates/archive.pike?list=1&msg=web-5645555@post2.rnci.com
BUGTRAQ:20000324 AnalogX SimpleServer 1.03 Remote Crash" at:
http://www.analogx.com/contents/download/network/sswww.htm
MISC:http://www.analogx.com/contents/download/network/sswww.htm
http://www.osvdb.org/1265
OSVDB:1265
https://exchange.xforce.ibmcloud.com/vulnerabilities/4189
XF:simpleserver-exception-dos(4189)
CVE-2000-0244
The Citrix ICA (Independent Computing Architecture) protocol uses weak encryption (XOR) for user authentication.
2000-04-12
2004-04-20
CVE-2000-0244
http://www.securityfocus.com/bid/1077
BID:1077
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.BSO.4.20.0003290949280.2640-100000@naughty.monkey.org
BUGTRAQ:20000328 Citrix ICA Basic Encryption
CVE-2000-0245
Vulnerability in SGI IRIX objectserver daemon allows remote attackers to create user accounts.
2000-06-02
2005-11-02
CVE-2000-0245
http://www.securityfocus.com/bid/1079
BID:1079
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200003290852.aa27218@blaze.arl.mil
BUGTRAQ:20000328 Objectserver vulnerability
http://www.ciac.org/ciac/bulletins/k-030.shtml
CIAC:K-030
http://www.osvdb.org/1267
OSVDB:1267
ftp://sgigate.sgi.com/security/20000303-01-PX
SGI:20000303-01-PX
https://exchange.xforce.ibmcloud.com/vulnerabilities/4206
XF:irix-objectserver-create-accounts(4206)
CVE-2000-0246
IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability.
2000-06-02
2005-11-02
CVE-2000-0246
http://www.securityfocus.com/bid/1081
BID:1081
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-019
MS:MS00-019
http://www.microsoft.com/technet/support/kb.asp?ID=249599
MSKB:Q249599
XF:iis-virtual-unc-share
CVE-2000-0247
Unknown vulnerability in Generic-NQS (GNQS) allows local users to gain root privileges.
2004-09-01
2004-07-22
CVE-2000-0247
http://www.securityfocus.com/bid/1842
BID:1842
http://archives.neohapsis.com/archives/bugtraq/2000-03/0236.html
BUGTRAQ:20000322 Local root compromise in GNQS 3.50.6 and 3.50.7
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:13.generic-nqs.asc
FREEBSD:FreeBSD-SA-00:13
http://ftp.gnqs.org/pub/gnqs/source/by-version-number/v3.50/Generic-NQS-3.50.8-ChangeLog.txt
MISC:http://ftp.gnqs.org/pub/gnqs/source/by-version-number/v3.50/Generic-NQS-3.50.8-ChangeLog.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/4306
XF:generic-nqs-local-root(4306)
CVE-2000-0248
The web GUI for the Linux Virtual Server (LVS) software in the Red Hat Linux Piranha package has a backdoor password that allows remote attackers to execute arbitrary commands.
2000-04-26
2002-07-23
CVE-2000-0248
http://xforce.iss.net/alerts/advise46.php3
ISS:20000424 Backdoor Password in Red Hat Linux Virtual Server Package
REDHAT:RHSA-2000:014-10
CVE-2000-0249
The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in the frcactrl program.
2000-07-12
2005-11-02
CVE-2000-0249
http://www.securityfocus.com/bid/1152
BID:1152
IBM:ERS-OAR-E01-2000:075.1
http://xforce.iss.net/alerts/advise47.php3
ISS:20000426 Insecure file handling in IBM AIX frcactrl program
XF:aix-frcactrl
CVE-2000-0250
The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords.
2000-04-26
2003-03-21
CVE-2000-0250
http://www.securityfocus.com/bid/1114
BID:1114
http://archives.neohapsis.com/archives/bugtraq/2000-04/0072.html
BUGTRAQ:20000414 qnx crypt comprimised
CVE-2000-0251
HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses.
2000-07-12
2005-11-02
CVE-2000-0251
http://www.securityfocus.com/bid/1090
BID:1090
http://archives.neohapsis.com/archives/bugtraq/2000-04/0021.html
HP:HPSBUX0004-112
XF:hp-virtual-vault
CVE-2000-0252
The dansie shopping cart application cart.pl allows remote attackers to execute commands via a shell metacharacters in a form variable.
2001-01-22
2005-11-02
CVE-2000-0252
http://www.securityfocus.com/bid/1115
BID:1115
http://archives.neohapsis.com/archives/bugtraq/2000-04/0051.html
BUGTRAQ:20000411 Back Door in Commercial Shopping Cart
https://exchange.xforce.ibmcloud.com/vulnerabilities/4975
XF:dansie-shell-metacharacters(4975)
CVE-2000-0253
The dansie shopping cart application cart.pl allows remote attackers to modify sensitive purchase information via hidden form fields.
2001-01-22
2005-11-02
CVE-2000-0253
http://www.securityfocus.com/bid/1115
BID:1115
BUGTRAQ:20000411 Re: Back Door in Commercial Shopping Cart
https://exchange.xforce.ibmcloud.com/vulnerabilities/4621
XF:shopping-cart-form-tampering(4621)
CVE-2000-0254
The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration information via a URL that references either the env, db, or vars form variables.
2001-01-22
2005-11-02
CVE-2000-0254
http://www.securityfocus.com/bid/1115
BID:1115
BUGTRAQ:20000411 Re: Back Door in Commercial Shopping Cart
https://exchange.xforce.ibmcloud.com/vulnerabilities/4954
XF:dansie-form-variables(4954)
CVE-2000-0255
The Nbase-Xyplex EdgeBlaster router allows remote attackers to cause a denial of service via a scan for the FormMail CGI program.
2001-01-22
2005-11-02
CVE-2000-0255
http://www.securityfocus.com/bid/1091
BID:1091
http://archives.neohapsis.com/archives/bugtraq/2000-04/0022.html
BUGTRAQ:20000405 SilverBack Security Advisory: Nbase-Xyplex DoS
XF:nbase-xyplex-router
CVE-2000-0256
Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise available through the web site, aka the "Server-Side Image Map Components" vulnerability.
2000-04-26
2018-10-19
CVE-2000-0256
http://www.securityfocus.com/bid/1117
BID:1117
http://www.securityfocus.com/archive/1/470458/100/0/threaded
BUGTRAQ:20070603 CERN İmage Map Dispatcher
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-028
MS:MS00-028
https://exchange.xforce.ibmcloud.com/vulnerabilities/34720
XF:frontpage-cern-bo(34720)
CVE-2000-0257
Buffer overflow in the NetWare remote web administration utility allows remote attackers to cause a denial of service or execute commands via a long URL.
2000-10-13
2005-11-02
CVE-2000-0257
http://www.securityfocus.com/bid/1118
BID:1118
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0004171825340.10088-100000@nimue.tpi.pl
BUGTRAQ:20000418 Novell Netware 5.1 (server 5.00h, Dec 11, 1999)...
XF:netware-remote-admin-overflow
CVE-2000-0258
IIS 4.0 and 5.0 allows remote attackers to cause a denial of service by sending many URLs with a large number of escaped characters, aka the "Myriad Escaped Characters" Vulnerability.
2000-06-02
2005-11-02
CVE-2000-0258
http://www.securityfocus.com/bid/1101
BID:1101
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-023
MS:MS00-023
CVE-2000-0259
The default permissions for the Cryptography\Offload registry key used by the OffloadModExpo in Windows NT 4.0 allows local users to obtain compromise the cryptographic keys of other users.
2000-04-26
2018-10-12
CVE-2000-0259
http://www.securityfocus.com/bid/1105
BID:1105
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-024
MS:MS00-024
CVE-2000-0260
Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute commands, aka the "Link View Server-Side Component" vulnerability.
2000-06-02
2004-09-02
CVE-2000-0260
http://www.securityfocus.com/bid/1109
BID:1109
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-025
MS:MS00-025
http://www.osvdb.org/282
OSVDB:282
CVE-2000-0261
The AVM KEN! web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-07-12
2004-09-02
CVE-2000-0261
http://www.securityfocus.com/bid/1103
BID:1103
http://archives.neohapsis.com/archives/bugtraq/2000-04/0073.html
BUGTRAQ:20000415 (no subject)
http://www.securityfocus.com/templates/archive.pike?list=1&msg=383085010.956159226625.JavaMail.root@web305-mc.mail.com
BUGTRAQ:20000418 AVM's Statement
http://www.osvdb.org/1282
OSVDB:1282
XF:ken-download-files
CVE-2000-0262
The AVM KEN! ISDN Proxy server allows remote attackers to cause a denial of service via a malformed request.
2000-07-12
2005-11-02
CVE-2000-0262
http://www.securityfocus.com/bid/1103
BID:1103
http://archives.neohapsis.com/archives/bugtraq/2000-04/0073.html
BUGTRAQ:20000415 (no subject)
http://www.securityfocus.com/templates/archive.pike?list=1&msg=383085010.956159226625.JavaMail.root@web305-mc.mail.com
BUGTRAQ:20000418 AVM's Statement
XF:ken-dos
CVE-2000-0263
The X font server xfs in Red Hat Linux 6.x allows an attacker to cause a denial of service via a malformed request.
2000-10-13
2005-11-02
CVE-2000-0263
http://www.securityfocus.com/bid/1111
BID:1111
http://archives.neohapsis.com/archives/bugtraq/2000-04/0079.html
BUGTRAQ:20000416 xfs
XF:redhat-fontserver-dos
CVE-2000-0264
Panda Security 3.0 with registry editing disabled allows users to edit the registry and gain privileges by directly executing a .reg file or using other methods.
2000-07-12
2005-11-02
CVE-2000-0264
http://www.securityfocus.com/bid/1119
BID:1119
http://www.securityfocus.com/templates/archive.pike?list=1&msg=38FB45F2.550EA000@teleline.es
BUGTRAQ:20000417 bugs in Panda Security 3.0
http://updates.pandasoftware.com/docs/us/Avoidvulnerability.zip
CONFIRM:http://updates.pandasoftware.com/docs/us/Avoidvulnerability.zip
XF:panda-admin-privileges
CVE-2000-0265
Panda Security 3.0 allows users to uninstall the Panda software via its Add/Remove Programs applet.
2000-10-13
2005-11-02
CVE-2000-0265
http://www.securityfocus.com/bid/1119
BID:1119
http://www.securityfocus.com/templates/archive.pike?list=1&msg=38FB45F2.550EA000@teleline.es
BUGTRAQ:20000417 bugs in Panda Security 3.0
http://updates.pandasoftware.com/docs/us/Avoidvulnerability.zip
CONFIRM:http://updates.pandasoftware.com/docs/us/Avoidvulnerability.zip
XF:panda-uninstall-program
CVE-2000-0266
Internet Explorer 5.01 allows remote attackers to bypass the cross frame security policy via a malicious applet that interacts with the Java JSObject to modify the DOM properties to set the IFRAME to an arbitrary Javascript URL.
2000-04-26
2003-03-21
CVE-2000-0266
http://www.securityfocus.com/bid/1121
BID:1121
http://www.securityfocus.com/templates/archive.pike?list=1&msg=38FC6130.D6D178FD@nat.bg
BUGTRAQ:20000418 IE 5 security vulnerablity - circumventing Cross-frame security policy using Java/JavaScript (and disabling Active Scripting is not that easy)
CVE-2000-0267
Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password.
2000-06-02
2004-09-02
CVE-2000-0267
http://www.securityfocus.com/bid/1122
BID:1122
http://www.cisco.com/warp/public/707/catos-enable-bypass-pub.shtml
CISCO:20000419 Cisco Catalyst Enable Password Bypass Vulnerability
http://www.osvdb.org/1288
OSVDB:1288
XF:cisco-catalyst-password-bypass
CVE-2000-0268
Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot.
2000-06-02
2004-09-02
CVE-2000-0268
http://www.securityfocus.com/bid/1123
BID:1123
http://www.cisco.com/warp/public/707/iostelnetopt-pub.shtml
CISCO:20000420 Cisco IOS Software TELNET Option Handling Vulnerability
http://www.osvdb.org/1289
OSVDB:1289
XF:cisco-ios-option-handling
CVE-2000-0269
Emacs 20 does not properly set permissions for a slave PTY device when starting a new subprocess, which allows local users to read or modify communications between Emacs and the subprocess.
2000-04-26
2003-03-21
CVE-2000-0269
http://www.securityfocus.com/bid/1125
BID:1125
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-04-15&msg=tg4s8zioxq.fsf@mercury.rus.uni-stuttgart.de
BUGTRAQ:20000418 RUS-CERT Advisory 200004-01: GNU Emacs 20
CVE-2000-0270
The make-temp-name Lisp function in Emacs 20 creates temporary files with predictable names, which allows attackers to conduct a symlink attack.
2000-04-26
2017-02-15
CVE-2000-0270
http://www.securityfocus.com/bid/1126
BID:1126
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-04-15&msg=tg4s8zioxq.fsf@mercury.rus.uni-stuttgart.de
BUGTRAQ:20000418 RUS-CERT Advisory 200004-01: GNU Emacs 20
CVE-2000-0271
read-passwd and other Lisp functions in Emacs 20 do not properly clear the history of recently typed keys, which allows an attacker to read unencrypted passwords.
2000-04-26
2003-03-21
CVE-2000-0271
http://www.securityfocus.com/bid/1125
BID:1125
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-04-15&msg=tg4s8zioxq.fsf@mercury.rus.uni-stuttgart.de
BUGTRAQ:20000418 RUS-CERT Advisory 200004-01: GNU Emacs 20
CVE-2000-0272
RealNetworks RealServer allows remote attackers to cause a denial of service by sending malformed input to the server at port 7070.
2000-10-13
2005-11-02
CVE-2000-0272
http://www.securityfocus.com/bid/1128
BID:1128
http://marc.info/?l=bugtraq&m=95625288231045&w=2
BUGTRAQ:20000420 Remote DoS attack in Real Networks Real Server Vulnerability
http://service.real.com/help/faq/servg270.html
CONFIRM:http://service.real.com/help/faq/servg270.html
XF:realserver-remote-dos
CVE-2000-0273
PCAnywhere allows remote attackers to cause a denial of service by terminating the connection before PCAnywhere provides a login prompt.
2000-10-13
2005-11-02
CVE-2000-0273
http://www.securityfocus.com/bid/1095
BID:1095
http://archives.neohapsis.com/archives/bugtraq/2000-04/0031.html
BUGTRAQ:20000409 A funny way to DOS pcANYWHERE8.0 and 9.0
XF:pcanywhere-login-dos
CVE-2000-0274
The Linux trustees kernel patch allows attackers to cause a denial of service by accessing a file or directory with a long name.
2000-06-02
2005-11-02
CVE-2000-0274
http://www.securityfocus.com/bid/1096
BID:1096
http://archives.neohapsis.com/archives/bugtraq/2000-04/0035.html
BUGTRAQ:20000410 linux trustees 1.5 long path name vulnerability
http://www.braysystems.com/linux/trustees.html
CONFIRM:http://www.braysystems.com/linux/trustees.html
XF:linux-trustees-patch-dos
CVE-2000-0275
CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN.
2000-04-26
2003-03-21
CVE-2000-0275
http://www.securityfocus.com/bid/1097
BID:1097
http://archives.neohapsis.com/archives/bugtraq/2000-04/0033.html
BUGTRAQ:20000410 CRYPTOAdmin 4.1 server with PalmPilot PT-1 token 1.04 PIN Extract ion
http://www.l0pht.com/advisories/cc-pinextract.txt
L0PHT:20000410 CRYPTOCard PalmToken PIN Extraction
CVE-2000-0276
BeOS 4.5 and 5.0 allow local users to cause a denial of service via malformed direct system calls using interrupt 37.
2001-01-22
2005-11-02
CVE-2000-0276
http://www.securityfocus.com/bid/1098
BID:1098
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000410131628.659.qmail@securityfocus.com
BUGTRAQ:20000410 BeOS syscall bug
XF:beos-syscall-dos
CVE-2000-0277
Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which could allow an attacker to execute a macro virus, aka the "XLM Text Macro" vulnerability.
2000-06-02
2004-09-02
CVE-2000-0277
http://www.securityfocus.com/bid/1087
BID:1087
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-022
MS:MS00-022
http://www.osvdb.org/1272
OSVDB:1272
CVE-2000-0278
The SalesLogix Eviewer allows remote attackers to cause a denial of service by accessing the URL for the slxweb.dll administration program, which does not authenticate the user.
2001-01-22
2005-11-02
CVE-2000-0278
http://www.securityfocus.com/bid/1089
BID:1089
http://archives.neohapsis.com/archives/bugtraq/current/0006.html
BUGTRAQ:20000331 SalesLogix Eviewer Web App Bug: URL request crashes eviewer web application
XF:eviewer-admin-request-dos
CVE-2000-0279
BeOS allows remote attackers to cause a denial of service via malformed packets whose length field is less than the length of the headers.
2000-07-12
2005-11-02
CVE-2000-0279
http://www.securityfocus.com/bid/1100
BID:1100
http://archives.neohapsis.com/archives/bugtraq/2000-04/0029.html
BUGTRAQ:20000407 BeOS Networking DOS
http://bebugs.be.com/devbugs/detail.php3?oid=2505312
MISC:http://bebugs.be.com/devbugs/detail.php3?oid=2505312
XF:beos-networking-dos
CVE-2000-0280
Buffer overflow in the RealNetworks RealPlayer client versions 6 and 7 allows remote attackers to cause a denial of service via a long Location URL.
2000-04-26
2003-03-21
CVE-2000-0280
http://www.securityfocus.com/bid/1088
BID:1088
http://archives.neohapsis.com/archives/bugtraq/2000-04/0018.html
BUGTRAQ:20000403 Win32 RealPlayer 6/7 Buffer Overflow
CVE-2000-0281
Buffer overflow in the Napster client beta 5 allows remote attackers to cause a denial of service via a long message.
2000-04-26
2003-03-21
CVE-2000-0281
http://archives.neohapsis.com/archives/bugtraq/2000-03/0277.html
BUGTRAQ:20000326 neat little napster bug
http://archives.neohapsis.com/archives/bugtraq/2000-03/0299.html
BUGTRAQ:20000330 Napster, Inc. response to Colten Edwards
CVE-2000-0282
TalentSoft webpsvr daemon in the Web+ shopping cart application allows remote attackers to read arbitrary files via a .. (dot dot) attack on the webplus CGI program.
2000-10-13
2005-11-02
CVE-2000-0282
http://www.securityfocus.com/bid/1102
BID:1102
http://archives.neohapsis.com/archives/bugtraq/2000-04/0050.html
BUGTRAQ:20000412 TalentSoft Web+ Input Validation Bug Vulnerability
ftp://ftp.talentsoft.com/Download/Webplus/Unix/Patches/Webplus46p%20Read%20me.html
CONFIRM:ftp://ftp.talentsoft.com/Download/Webplus/Unix/Patches/Webplus46p%20Read%20me.html
XF:talentsoft-web-input
CVE-2000-0283
The default installation of IRIX Performance Copilot allows remote attackers to access sensitive system information via the pmcd daemon.
2001-01-22
2005-11-02
CVE-2000-0283
http://www.securityfocus.com/bid/1106
BID:1106
http://archives.neohapsis.com/archives/bugtraq/2000-04/0056.html
BUGTRAQ:20000412 Performance Copilot for IRIX 6.5
XF:irix-pmcd-info
CVE-2000-0284
Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands.
2000-04-26
2016-11-17
CVE-2000-0284
http://www.securityfocus.com/bid/1110
BID:1110
http://archives.neohapsis.com/archives/bugtraq/2000-04/0074.html
BUGTRAQ:20000416 imapd4r1 v12.264
http://archives.neohapsis.com/archives/bugtraq/2000-04/0085.html
BUGTRAQ:20000417 Re: imapd4r1 v12.264
CVE-2000-0285
Buffer overflow in XFree86 3.3.x allows local users to execute arbitrary commands via a long -xkbmap parameter.
2000-10-13
2005-11-02
CVE-2000-0285
http://www.securityfocus.com/bid/1306
BID:1306
http://archives.neohapsis.com/archives/bugtraq/2000-04/0076.html
BUGTRAQ:20000416 XFree86 server overflow
XF:xfree86-xkbmap-parameter-bo
CVE-2000-0286
X fontserver xfs allows local users to cause a denial of service via malformed input to the server.
2000-04-26
2003-03-21
CVE-2000-0286
http://www.securityfocus.com/bid/1111
BID:1111
http://archives.neohapsis.com/archives/bugtraq/2000-04/0079.html
BUGTRAQ:20000416 xfs
CVE-2000-0287
The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter.
2001-01-22
2005-11-02
CVE-2000-0287
http://www.securityfocus.com/bid/1104
BID:1104
http://archives.neohapsis.com/archives/bugtraq/2000-04/0058.html
BUGTRAQ:20000412 BizDB Search Script Enables Shell Command Execution at the Server
XF:http-cgi-bizdb
CVE-2000-0288
Infonautics getdoc.cgi allows remote attackers to bypass the payment phase for accessing documents via a modified form variable.
2000-04-26
2003-03-21
CVE-2000-0288
http://archives.neohapsis.com/archives/bugtraq/2000-04/0049.html
BUGTRAQ:20000412 Infonautic's getdoc.cgi may allow unauthorized access to documents
CVE-2000-0289
IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection.
2000-10-13
2005-11-02
CVE-2000-0289
http://www.securityfocus.com/bid/1078
BID:1078
http://archives.neohapsis.com/archives/bugtraq/2000-03/0284.html
BUGTRAQ:20000327 Security Problems with Linux 2.2.x IP Masquerading
http://www.novell.com/linux/security/advisories/suse_security_announce_48.html
SUSE:20000520 Security hole in kernel < 2.2.15
XF:linux-masquerading-dos
CVE-2000-0290
Buffer overflow in Webstar HTTP server allows remote attackers to cause a denial of service via a long GET request.
2002-03-09
2002-03-01
CVE-2000-0290
http://www.securityfocus.com/bid/1822
BID:1822
http://archives.neohapsis.com/archives/bugtraq/2000-04/0005.html
BUGTRAQ:20000331 Webstar 4.0 Buffer overflow vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/4792
XF:macos-webstar-get-bo(4792)
CVE-2000-0291
Buffer overflow in Star Office 5.1 allows attackers to cause a denial of service by embedding a long URL within a document.
2000-04-26
2003-03-21
CVE-2000-0291
http://www.securityfocus.com/bid/1112
BID:1112
http://archives.neohapsis.com/archives/bugtraq/2000-04/0077.html
BUGTRAQ:20000416 StarOffice 5.1
CVE-2000-0292
The Adtran MX2800 M13 Multiplexer allows remote attackers to cause a denial of service via a ping flood to the Ethernet interface, which causes the device to crash.
2001-01-22
2005-11-02
CVE-2000-0292
http://www.securityfocus.com/bid/1129
BID:1129
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10004190908140.32750-100000@localhost.localdomain
BUGTRAQ:20000418 Adtran DoS
XF:adtran-ping-dos
CVE-2000-0293
aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory.
2000-04-26
2003-03-21
CVE-2000-0293
http://www.securityfocus.com/bid/1130
BID:1130
BUGTRAQ:20000421 local user can delete arbitrary files on SuSE-Linux
CVE-2000-0294
Buffer overflow in healthd for FreeBSD allows local users to gain root privileges.
2000-06-02
2004-09-02
CVE-2000-0294
http://www.securityfocus.com/bid/1107
BID:1107
http://www.securityfocus.com/templates/advisory.html?id=2162
FREEBSD:FreeBSD-SA-00:12
http://www.osvdb.org/606
OSVDB:606
XF:freebsd-healthd
CVE-2000-0295
Buffer overflow in LCDproc allows remote attackers to gain root privileges via the screen_add command.
2000-04-26
2018-10-19
CVE-2000-0295
http://www.securityfocus.com/bid/1131
BID:1131
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.3.96.1000421010946.15318I-200000@schizo.strange.net
BUGTRAQ:20000420 Remote vulnerability in LCDproc 0.4
http://www.securityfocus.com/archive/1/305589/30/26390/threaded
GENTOO:GLSA-200301-07
http://secunia.com/advisories/7829
SECUNIA:7829
https://exchange.xforce.ibmcloud.com/vulnerabilities/4315
XF:lcdproc-remote-overflow(4315)
CVE-2000-0296
fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck.
2001-01-22
2005-11-02
CVE-2000-0296
http://www.securityfocus.com/bid/1086
BID:1086
http://archives.neohapsis.com/archives/bugtraq/current/0011.html
BUGTRAQ:20000331 fcheck v.2.7.45 and insecure use of Perl's system()
XF:fcheck-shell
CVE-2000-0297
Allaire Forums 2.0.5 allows remote attackers to bypass access restrictions to secure conferences via the rightAccessAllForums or rightModerateAllForums variables.
2000-07-12
2004-09-02
CVE-2000-0297
http://www2.allaire.com/handlers/index.cfm?ID=15099&Method=Full
ALLAIRE:ASB00-06
http://www.securityfocus.com/bid/1085
BID:1085
http://www.osvdb.org/1270
OSVDB:1270
XF:allaire-forums-allaccess
CVE-2000-0298
The unattended installation of Windows 2000 with the OEMPreinstall option sets insecure permissions for the All Users and Default Users directories.
2002-03-09
2002-03-01
CVE-2000-0298
http://www.securityfocus.com/bid/1758
BID:1758
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0027.html
NTBUGTRAQ:20000407 All Users startup folder left open if unattended install and OEMP reinstall=1
https://exchange.xforce.ibmcloud.com/vulnerabilities/4278
XF:win2k-unattended-install(4278)
CVE-2000-0299
Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote attackers to cause a denial of service via an HTTP request with long headers such as Accept.
2000-04-26
2001-12-16
CVE-2000-0299
http://archives.neohapsis.com/archives/bugtraq/2000-04/0020.html
BUGTRAQ:20000404 WebObjects DoS
CVE-2000-0300
The default encryption method of PcAnywhere 9.x uses weak encryption, which allows remote attackers to sniff and decrypt PcAnywhere or NT domain accounts.
2000-04-26
2003-03-21
CVE-2000-0300
http://www.securityfocus.com/bid/1093
BID:1093
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000406030958.23902.qmail@securityfocus.com
BUGTRAQ:20000405 PcAnywhere weak password encryption
CVE-2000-0301
Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command.
2000-10-13
2005-11-02
CVE-2000-0301
http://www.securityfocus.com/bid/1094
BID:1094
http://marc.info/?l=bugtraq&m=95505800117143&w=2
BUGTRAQ:20000405 Re: IMAIL (Ipswitch) DoS with Eudora (Qualcomm)
http://support.ipswitch.com/kb/IM-20000208-DM02.htm
CONFIRM:http://support.ipswitch.com/kb/IM-20000208-DM02.htm
XF:ipswitch-imail-dos
CVE-2000-0302
Microsoft Index Server allows remote attackers to view the source code of ASP files by appending a %20 to the filename in the CiWebHitsFile argument to the null.htw URL.
2001-05-07
2004-09-02
CVE-2000-0302
http://www.securityfocus.com/bid/1084
BID:1084
http://marc.info/?l=bugtraq&m=95453598317340&w=2
BUGTRAQ:20000331 Alert: MS Index Server (CISADV000330)
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-006
MS:MS00-006
http://www.osvdb.org/271
OSVDB:271
XF:http-indexserver-asp-source
CVE-2000-0303
Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (..) attack.
2000-07-12
2004-09-02
CVE-2000-0303
http://www.securityfocus.com/bid/1169
BID:1169
http://www.quake3arena.com/news/index.html
CONFIRM:http://www.quake3arena.com/news/index.html
http://xforce.iss.net/alerts/advise50.php3
ISS:20000503 Vulnerability in Quake3Arena Auto-Download Feature
http://www.osvdb.org/7531
OSVDB:7531
XF:quake3-auto-download
CVE-2000-0304
Microsoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to cause a denial of service via a malformed request to the inetinfo.exe program, aka the "Undelimited .HTR Request" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0304
http://www.securityfocus.com/bid/1191
BID:1191
http://xforce.iss.net/alerts/advise52.php3
ISS:20000511 Microsoft IIS Remote Denial of Service Attack
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-031
MS:MS00-031
XF:iis-authchangeurl-dos
CVE-2000-0305
Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by sending a large number of identical fragmented IP packets, aka jolt2 or the "IP Fragment Reassembly" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0305
http://www.securityfocus.com/bid/1236
BID:1236
http://www.securityfocus.com/templates/advisory.html?id=2240
BINDVIEW:20000519 jolt2 - Remote DoS against NT, W2K, 9x
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-029
MS:MS00-029
XF:ip-fragment-reassembly-dos
CVE-2000-0306
Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.
2001-05-07
2005-11-02
CVE-2000-0306
http://www.securityfocus.com/templates/archive.pike?list=1&date=1998-12-29&msg=AAh6GYsGU1@leshka.chuvashia.su
BUGTRAQ:19981229 Local/remote exploit for SCO UNIX.
ftp://ftp.sco.com/SSE/security_bulletins/SB-99.02a
SCO:SB-99.02
CVE-2000-0307
Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.
2001-05-07
2005-11-02
CVE-2000-0307
ftp://ftp.sco.com/SSE/security_bulletins/SB-99.07b
SCO:SB-99.07
CVE-2000-0308
Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges.
2001-05-07
2005-11-02
CVE-2000-0308
ftp://ftp.sco.com/SSE/security_bulletins/SB-99.08a
SCO:SB-99.08
CVE-2000-0309
The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service.
2001-05-07
2004-09-02
CVE-2000-0309
http://www.openbsd.org/errata24.html#trctrap
OPENBSD:19990212 i386 trace-trap handling when DDB was configured could cause a system crash.
http://www.osvdb.org/6126
OSVDB:6126
CVE-2000-0310
IP fragment assembly in OpenBSD 2.4 allows a remote attacker to cause a denial of service by sending a large number of fragmented packets.
2001-05-07
2004-09-02
CVE-2000-0310
http://www.openbsd.org/errata24.html#maxqueue
OPENBSD:19990217 IP fragment assembly can bog the machine excessively and cause problems.
http://www.osvdb.org/7539
OSVDB:7539
CVE-2000-0311
The Windows 2000 domain controller allows a malicious user to modify Active Directory information by modifying an unprotected attribute, aka the "Mixed Object Access" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0311
http://www.securityfocus.com/bid/1145
BID:1145
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-026
MS:MS00-026
XF:ms-mixed-object
CVE-2000-0312
cron in OpenBSD 2.5 allows local users to gain root privileges via an argv[] that is not NULL terminated, which is passed to cron's fake popen function.
2001-02-14
2005-11-02
CVE-2000-0312
http://www.openbsd.org/errata25.html#cron
OPENBSD:19990830 In cron(8), make sure argv[] is NULL terminated in the fake popen() and run sendmail as the user, not as root.
CVE-2000-0313
Vulnerability in OpenBSD 2.6 allows a local user to change interface media configurations.
2001-05-07
2004-09-02
CVE-2000-0313
http://www.openbsd.org/errata.html#ifmedia
OPENBSD:19991109 Any user can change interface media configurations.
http://www.osvdb.org/7540
OSVDB:7540
CVE-2000-0314
traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.
2001-05-07
2004-09-02
CVE-2000-0314
http://marc.info/?l=bugtraq&m=91893782027835&w=2
BUGTRAQ:19990213 traceroute as a flooder
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA1999-004.txt.asc
NETBSD:NetBSD-SA1999-004
http://www.osvdb.org/7574
OSVDB:7574
CVE-2000-0315
traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks.
2001-05-07
2004-09-02
CVE-2000-0315
http://marc.info/?l=bugtraq&m=91893782027835&w=2
BUGTRAQ:19990213 traceroute as a flooder
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA1999-004.txt.asc
NETBSD:NetBSD-SA1999-004
http://www.osvdb.org/7575
OSVDB:7575
CVE-2000-0316
Buffer overflow in Solaris 7 lp allows local users to gain root privileges via a long -d option.
2000-07-12
2005-11-02
CVE-2000-0316
http://www.securityfocus.com/bid/1143
BID:1143
http://archives.neohapsis.com/archives/bugtraq/2000-04/0191.html
BUGTRAQ:20000424 Solaris 7 x86 lp exploit
SUNBUG:4314312
XF:solaris-lp-bo
CVE-2000-0317
Buffer overflow in Solaris 7 lpset allows local users to gain root privileges via a long -r option.
2000-05-18
2016-11-17
CVE-2000-0317
http://www.securityfocus.com/bid/1138
BID:1138
http://archives.neohapsis.com/archives/bugtraq/2000-04/0192.html
BUGTRAQ:20000424 Solaris 7 x86 lpset exploit.
http://archives.neohapsis.com/archives/bugtraq/2000-04/0236.html
BUGTRAQ:20000426 Re: Solaris Sparc 2.6 & 7 lp/lpset/lpstat root compromise exploit
http://marc.info/?l=bugtraq&m=95729763119559&w=2
BUGTRAQ:20000427 Re: Solaris/SPARC 2.7 lpset exploit (well not likely !)
SUNBUG:4334568
CVE-2000-0318
Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot (..) attack.
2000-10-13
2005-11-02
CVE-2000-0318
http://www.securityfocus.com/bid/1144
BID:1144
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0057.html
NTBUGTRAQ:20000413 Security problems with Atrium Mercur Mailserver 3.20
XF:mercur-remote-dot-attack
CVE-2000-0319
mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n.
2000-10-13
2005-11-02
CVE-2000-0319
http://www.securityfocus.com/bid/1146
BID:1146
http://www.securityfocus.com/templates/archive.pike?list=1&msg=2694.000424@SECURITY.NNOV.RU
BUGTRAQ:20000424 unsafe fgets() in sendmail's mail.local
XF:sendmail-maillocal-dos
CVE-2000-0320
Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 1023 characters long and ends in \n.
2000-10-13
2005-11-02
CVE-2000-0320
http://www.securityfocus.com/bid/1133
BID:1133
http://www.securityfocus.com/templates/archive.pike?list=1&msg=9763.000421@SECURITY.NNOV.RU
BUGTRAQ:20000421 unsafe fgets() in qpopper
XF:qpopper-fgets-spoofing
CVE-2000-0321
Buffer overflow in IC Radius package allows a remote attacker to cause a denial of service via a long user name.
2000-05-18
2003-03-21
CVE-2000-0321
http://www.securityfocus.com/bid/1147
BID:1147
http://archives.neohapsis.com/archives/bugtraq/2000-04/0190.html
BUGTRAQ:20000424 Buffer Overflow in version .14
CVE-2000-0322
The passwd.php3 CGI script in the Red Hat Piranha Virtual Server Package allows local users to execute arbitrary commands via shell metacharacters.
2000-10-13
2016-09-15
CVE-2000-0322
http://www.securityfocus.com/bid/1149
BID:1149
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Enip.BSO.23.0004241601140.28851-100000@www.whitehats.com
BUGTRAQ:20000424 piranha default password/exploit
http://www.redhat.com/support/errata/RHSA-2000-014.html
REDHAT:RHSA-2000:014
XF:piranha-passwd-execute
CVE-2000-0323
The Microsoft Jet database engine allows an attacker to modify text files via a database query, aka the "Text I-ISAM" vulnerability.
2000-06-02
2005-11-02
CVE-2000-0323
https://www.securityfocus.com/bid/595
BID:595
http://www.securityfocus.com/templates/archive.pike?list=1&date=1999-08-22&msg=19990729195531.25108.qmail@underground.org
BUGTRAQ:19990728 Alert : MS Office 97 Vulnerability
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-030
MS:MS99-030
https://web.archive.org/web/20000819203059/http://xforce.iss.net:80/alerts/vol-4_num-7.php#jet-text-isam
XF:jet-text-isam
CVE-2000-0324
pcAnywhere 8.x and 9.0 allows remote attackers to cause a denial of service via a TCP SYN scan, e.g. by nmap.
2002-03-09
2002-02-21
CVE-2000-0324
http://www.securityfocus.com/bid/1150
BID:1150
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.3.96.1000425150157.13567A-100000@sword.damocles.com
BUGTRAQ:20000425 Denial of Service Against pcAnywhere.
http://archives.neohapsis.com/archives/bugtraq/2001-02/0201.html
BUGTRAQ:20010211 Symantec pcAnywhere 9.0 DoS / Buffer Overflow
http://archives.neohapsis.com/archives/bugtraq/2001-02/0258.html
BUGTRAQ:20010212 Re: Symantec pcAnywhere 9.0 DoS / Buffer Overflow
http://www.osvdb.org/1301
OSVDB:1301
http://www.iss.net/security_center/static/4347.php
XF:pcanywhere-tcpsyn-dos(4347)
CVE-2000-0325
The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability.
2000-05-18
2018-10-12
CVE-2000-0325
http://www.securityfocus.com/bid/548
BID:548
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-030
MS:MS99-030
https://exchange.xforce.ibmcloud.com/vulnerabilities/3155
XF:jet-vba-shell(3155)
CVE-2000-0326
Meeting Maker uses weak encryption (a polyalphabetic substitution cipher) for passwords, which allows remote attackers to sniff and decrypt passwords for Meeting Maker accounts.
2000-05-18
2003-03-21
CVE-2000-0326
http://www.securityfocus.com/bid/1151
BID:1151
http://support.on.com/support/mmxp.nsf/31af51e08bcc93eb852565a90056138b/11af70407a16b165852568c50056a952?OpenDocument
CONFIRM:http://support.on.com/support/mmxp.nsf/31af51e08bcc93eb852565a90056138b/11af70407a16b165852568c50056a952?OpenDocument
CVE-2000-0327
Microsoft Virtual Machine (VM) allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, aka the "Virtual Machine Verifier" vulnerability.
2000-06-02
2005-11-02
CVE-2000-0327
http://marc.info/?l=bugtraq&m=93993545118416&w=2
BUGTRAQ:19991014 Another Microsoft Java Flaw Disovered
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-045
MS:MS99-045
XF:msvm-verifier-java
CVE-2000-0328
Windows NT 4.0 generates predictable random TCP initial sequence numbers (ISN), which allows remote attackers to perform spoofing and session hijacking.
2000-06-02
2005-11-02
CVE-2000-0328
http://www.securityfocus.com/bid/604
BID:604
http://www.securityfocus.com/templates/archive.pike?list=1&msg=4.1.19990824165629.00abcb40@192.168.124.1
BUGTRAQ:19990824 NT Predictable Initial TCP Sequence numbers - changes observed with SP4
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-046
MS:MS99-046
XF:nt-sequence-prediction-sp4
XF:tcp-seq-predict
CVE-2000-0329
A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability.
2000-06-02
2005-11-02
CVE-2000-0329
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-048
MS:MS99-048
XF:ie-active-setup-control
CVE-2000-0330
The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability.
2000-06-02
2005-11-02
CVE-2000-0330
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-049
MS:MS99-049
XF:win-fileurl-overflow
CVE-2000-0331
Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0331
http://www.securityfocus.com/bid/1135
BID:1135
http://archives.neohapsis.com/archives/bugtraq/2000-04/0147.html
BUGTRAQ:20000421 CMD.EXE overflow (CISADV000420)
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-027
MS:MS00-027
XF:nt-cmd-overflow
CVE-2000-0332
UltraBoard.pl or UltraBoard.cgi CGI scripts in UltraBoard 1.6 allows remote attackers to read arbitrary files via a pathname string that includes a dot dot (..) and ends with a null byte.
2000-10-13
2004-09-02
CVE-2000-0332
http://www.securityfocus.com/bid/1164
BID:1164
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000503091316.99073.qmail@hotmail.com
BUGTRAQ:20000502 Fun with UltraBoard V1.6X
http://www.osvdb.org/1309
OSVDB:1309
http://www.osvdb.org/4065
OSVDB:4065
XF:ultraboard-printabletopic-fileread
CVE-2000-0333
tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet.
2000-05-18
2003-03-21
CVE-2000-0333
http://www.securityfocus.com/bid/1165
BID:1165
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.SOL.4.10.10005021942380.2077-100000@paranoia.pgci.ca
BUGTRAQ:20000502 Denial of service attack against tcpdump
CVE-2000-0334
The Allaire Spectra container editor preview tool does not properly enforce object security, which allows an attacker to conduct unauthorized activities via an object-method that is added to the container object with a publishing rule.
2000-07-12
2005-11-02
CVE-2000-0334
http://www.allaire.com/handlers/index.cfm?ID=15411&Method=Full
ALLAIRE:ASB00-10
http://www.securityfocus.com/bid/1181
BID:1181
XF:allaire-spectra-container-editor-preview
CVE-2000-0335
The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results.
2000-10-13
2005-11-02
CVE-2000-0335
http://www.securityfocus.com/bid/1166
BID:1166
BUGTRAQ:20000502 glibc resolver weakness
XF:glibc-resolver-id-predictable
CVE-2000-0336
Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack.
2000-07-12
2004-09-02
CVE-2000-0336
http://www.securityfocus.com/bid/1232
BID:1232
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-009.0.txt
CALDERA:CSSA-2000-009.0
http://www.redhat.com/support/errata/RHSA-2000-012.html
REDHAT:RHSA-2000:012
http://www.turbolinux.com/pipermail/tl-security-announce/2000-May/000009.html
TURBO:TLSA2000010-1
XF:openldap-symlink-attack
CVE-2000-0337
Buffer overflow in Xsun X server in Solaris 7 allows local users to gain root privileges via a long -dev parameter.
2000-07-12
2005-11-02
CVE-2000-0337
http://www.securityfocus.com/bid/1140
BID:1140
http://archives.neohapsis.com/archives/bugtraq/2000-04/0188.html
BUGTRAQ:20000424 Solaris x86 Xsun overflow.
SUNBUG:4335411
XF:solaris-xsun-bo
CVE-2000-0338
Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which allows local users to cause a denial of service by creating the lock directory before it is created for use by a legitimate CVS user.
2000-10-13
2005-11-02
CVE-2000-0338
http://www.securityfocus.com/bid/1136
BID:1136
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26msg%3D20000423174038.A520%40clico.pl
BUGTRAQ:20000423 CVS DoS
XF:cvs-tempfile-dos
CVE-2000-0339
ZoneAlarm 2.1.10 and earlier does not filter UDP packets with a source port of 67, which allows remote attackers to bypass the firewall rules.
2000-07-12
2004-09-02
CVE-2000-0339
http://www.securityfocus.com/bid/1137
BID:1137
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000421044123.2353.qmail@securityfocus.com
BUGTRAQ:20000420 ZoneAlarm
http://www.osvdb.org/1294
OSVDB:1294
XF:zonealarm-portscan
CVE-2000-0340
Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via the DISPLAY environmental variable.
2000-10-13
2005-11-02
CVE-2000-0340
http://www.securityfocus.com/bid/1155
BID:1155
http://www.securityfocus.com/templates/archive.pike?list=1&msg=00042902575201.09597@wintermute-pub
BUGTRAQ:20000428 SuSE 6.3 Gnomelib buffer overflow
http://www.suse.com/us/support/download/updates/axp_63.html
CONFIRM:http://www.suse.com/us/support/download/updates/axp_63.html
XF:linux-gnomelib-bo
CVE-2000-0341
ATRIUM Cassandra NNTP Server 1.10 allows remote attackers to cause a denial of service via a long login name.
2001-01-22
2005-11-02
CVE-2000-0341
http://www.securityfocus.com/bid/1156
BID:1156
http://marc.info/?l=ntbugtraq&m=95736106504870&w=2
NTBUGTRAQ:20000501 Remote DoS attack in CASSANDRA NNTPServer v1.10 from ATRIUM
XF:nntpserver-cassandra-bo
CVE-2000-0342
Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."
2000-07-12
2005-11-02
CVE-2000-0342
http://www.securityfocus.com/bid/1157
BID:1157
http://news.cnet.com/news/0-1005-200-1773077.html?tag=st.ne.fd.lthd.1005-200-1773077
CONFIRM:http://news.cnet.com/news/0-1005-200-1773077.html?tag=st.ne.fd.lthd.1005-200-1773077
http://www.peacefire.org/security/stealthattach/explanation.html
MISC:http://www.peacefire.org/security/stealthattach/explanation.html
XF:eudora-warning-message
CVE-2000-0343
Buffer overflow in Sniffit 0.3.x with the -L logging option enabled allows remote attackers to execute arbitrary commands via a long MAIL FROM mail header.
2000-05-18
2002-05-03
CVE-2000-0343
http://www.securityfocus.com/bid/1158
BID:1158
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200005021736.TAA01991@ALuSSi
BUGTRAQ:20000502 spj-003-000 - S0ftPj Advisory
CVE-2000-0344
The knfsd NFS server in Linux kernel 2.2.x allows remote attackers to cause a denial of service via a negative size value.
2000-10-13
2005-11-02
CVE-2000-0344
http://www.securityfocus.com/bid/1160
BID:1160
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0005012042550.6419-100000@ferret.lmh.ox.ac.uk
BUGTRAQ:20000501 Linux knfsd DoS issue
XF:linux-knfsd-dos
CVE-2000-0345
The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command.
2000-05-18
2003-03-21
CVE-2000-0345
http://www.securityfocus.com/bid/1161
BID:1161
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000502222246.28423.qmail@securityfocus.com
BUGTRAQ:20000502 Possible issue with Cisco on-line help?
CVE-2000-0346
AppleShare IP 6.1 and later allows a remote attacker to read potentially sensitive information via an invalid range request to the web server.
2000-07-12
2005-11-02
CVE-2000-0346
http://www.securityfocus.com/bid/1162
BID:1162
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000502133240.21807.qmail@securityfocus.com
BUGTRAQ:20000502 INFO:AppleShare IP 6.3.2 squashes security bug
http://asu.info.apple.com/swupdates.nsf/artnum/n11670
CONFIRM:http://asu.info.apple.com/swupdates.nsf/artnum/n11670
XF:macos-appleshare-invalid-range
CVE-2000-0347
Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS session request packet with a NULL source name.
2000-10-13
2005-11-02
CVE-2000-0347
http://www.securityfocus.com/bid/1163
BID:1163
http://marc.info/?l=ntbugtraq&m=95737580922397&w=2
NTBUGTRAQ:20000501 el8.org advisory - Win 95/98 DoS (RFParalyze.c)
XF:win-netbios-source-null
CVE-2000-0348
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges.
2001-05-07
2005-11-02
CVE-2000-0348
ftp://ftp.sco.com/SSE/security_bulletins/SB-99.10a
SCO:SB-99.10
CVE-2000-0349
Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service.
2001-05-07
2005-11-02
CVE-2000-0349
ftp://ftp.sco.com/SSE/security_bulletins/SB-99.13a
SCO:SB-99.13
CVE-2000-0350
A debugging feature in NetworkICE ICEcap 2.0.23 and earlier is enabled, which allows a remote attacker to bypass the weak authentication and post unencrypted events.
2000-07-12
2004-09-02
CVE-2000-0350
http://www.securityfocus.com/bid/1216
BID:1216
http://advice.networkice.com/advice/Support/KB/q000166/
CONFIRM:http://advice.networkice.com/advice/Support/KB/q000166/
http://www.securityfocus.com/templates/advisory.html?id=2220
MISC:http://www.securityfocus.com/templates/advisory.html?id=2220
http://www.osvdb.org/312
OSVDB:312
XF:netice-icecap-alert-execute
XF:netice-icecap-default
CVE-2000-0351
Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages.
2001-05-07
2005-11-02
CVE-2000-0351
ftp://ftp.sco.com/SSE/security_bulletins/SB-99.09b
SCO:SB-99.09
CVE-2000-0352
Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a malformed URL.
2000-07-12
2005-11-02
CVE-2000-0352
http://www.securityfocus.com/bid/810
BID:810
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.9911171818220.12375-100000@ray.compu-aid.com
BUGTRAQ:19991117 Pine: expanding env vars in URLs (seems to be fixed as of 4.21)
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-036.0.txt
CALDERA:CSSA-1999-036.0
http://www.novell.com/linux/security/advisories/suse_security_announce_36.html
SUSE:19991227 Security hole in Pine < 4.21
XF:pine-remote-exe
CVE-2000-0353
Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine.
2000-07-12
2005-11-02
CVE-2000-0353
http://www.securityfocus.com/bid/1247
BID:1247
http://www.securiteam.com/unixfocus/HHP-Pine_remote_exploit.html
MISC:http://www.securiteam.com/unixfocus/HHP-Pine_remote_exploit.html
http://www.novell.com/linux/security/advisories/suse_security_announce_6.html
SUSE:19990628 Execution of commands in Pine 4.x
http://www.novell.com/linux/security/advisories/pine_update_announcement.html
SUSE:19990911 Update for Pine (fixed IMAP support)
XF:pine-lynx-execute-commands
CVE-2000-0354
mirror 2.8.x in Linux systems allows remote attackers to create files one level above the local target directory.
2000-07-12
2005-11-02
CVE-2000-0354
http://www.securityfocus.com/bid/681
BID:681
http://www.securityfocus.com/templates/archive.pike?list=1&msg=15769.990928@tomcat.ru
BUGTRAQ:19990928 mirror 2.9 hole
http://www.debian.org/security/1999/19991018
DEBIAN:19991018 Incorrect directory name handling in mirror
http://www.novell.com/linux/security/advisories/suse_security_announce_22.html
SUSE:19991001 Security hole in mirror
XF:mirror-perl-remote-file-creation
CVE-2000-0355
pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.
2000-05-24
2004-04-20
CVE-2000-0355
http://www.novell.com/linux/security/advisories/suse_security_announce_21.html
SUSE:19990920 Security hole in pbpg
XF:linux-pb-fileread
XF:linux-pg-fileread
CVE-2000-0356
Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts.
2000-07-12
2005-11-02
CVE-2000-0356
http://www.securityfocus.com/bid/697
BID:697
http://www.securityfocus.com/templates/advisory.html?id=1789
REDHAT:RHSA-1999:040
XF:linux-pam-nis-login
CVE-2000-0357
ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys.
2000-05-24
2004-04-20
CVE-2000-0357
http://www.redhat.com/corp/support/errata/RHSA1999058-01.html
REDHAT:RHSA-1999:058-01
CVE-2000-0358
ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program.
2000-05-24
2004-04-20
CVE-2000-0358
http://www.redhat.com/corp/support/errata/RHSA1999058-01.html
REDHAT:RHSA-1999:058-01
CVE-2000-0359
Buffer overflow in Trivial HTTP (THTTPd) allows remote attackers to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header.
2000-07-12
2005-11-02
CVE-2000-0359
http://www.securityfocus.com/bid/1248
BID:1248
http://archives.neohapsis.com/archives/bugtraq/1626.html
BUGTRAQ:19991113 thttpd 2.04 stack overflow (VD#6)
http://www.novell.com/linux/security/advisories/suse_security_announce_30.html
SUSE:19991116 Security hole in thttpd 1.90a - 2.04
XF:thttpd-ifmodifiedsince-header-dos
CVE-2000-0360
Buffer overflow in INN 2.2.1 and earlier allows remote attackers to cause a denial of service via a maliciously formatted article.
2000-07-12
2005-11-02
CVE-2000-0360
http://www.securityfocus.com/bid/1249
BID:1249
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-038.0.txt
CALDERA:CSSA-1999-038.0
http://www.novell.com/linux/security/advisories/suse_security_announce_34.html
SUSE:19991124 Security hole in inn <= 2.2.1
XF:inn-remote-dos
CVE-2000-0361
The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.
2000-07-12
2005-11-02
CVE-2000-0361
http://www.novell.com/linux/security/advisories/suse_security_announce_35.html
SUSE:19991214 Security hole in wvdial <= 1.4
XF:wvdial-gain-dialup-info
CVE-2000-0362
Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges.
2000-07-12
2005-11-02
CVE-2000-0362
http://www.securityfocus.com/bid/738
BID:738
http://www.novell.com/linux/security/advisories/suse_security_announce_25.html
SUSE:19991019 Security hole in cdwtools < 093
XF:linux-cdda2cdr
CVE-2000-0363
Linux cdwtools 093 and earlier allows local users to gain root privileges via the /tmp directory.
2000-07-12
2005-11-02
CVE-2000-0363
http://www.securityfocus.com/bid/738
BID:738
http://www.novell.com/linux/security/advisories/suse_security_announce_25.html
SUSE:19991019 Security hole in cdwtools < 093
XF:linux-cdda2cdr
CVE-2000-0364
screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys.
2000-05-24
2016-11-17
CVE-2000-0364
http://www.securityfocus.com/bid/309
BID:309
http://marc.info/?l=bugtraq&m=92877527701347&w=2
BUGTRAQ:19990606 RedHat 6.0, /dev/pts permissions bug when using xterm
http://marc.info/?l=bugtraq&m=92886009012161&w=2
BUGTRAQ:19990607 Re: RedHat 6.0, /dev/pts permissions bug when using xterm
http://www.redhat.com/corp/support/errata/RHSA1999014_01.html
REDHAT:RHSA1999014_01
CVE-2000-0365
Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices.
2000-05-24
2016-11-17
CVE-2000-0365
http://www.securityfocus.com/bid/308
BID:308
http://marc.info/?l=bugtraq&m=92877527701347&w=2
BUGTRAQ:19990606 RedHat 6.0, /dev/pts permissions bug when using xterm
http://marc.info/?l=bugtraq&m=92886009012161&w=2
BUGTRAQ:19990607 Re: RedHat 6.0, /dev/pts permissions bug when using xterm
http://www.redhat.com/corp/support/errata/RHSA1999014_01.html
REDHAT:RHSA1999014_01
CVE-2000-0366
dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files.
2000-10-13
2005-11-02
CVE-2000-0366
http://www.securityfocus.com/bid/1442
BID:1442
http://www.debian.org/security/1999/19991202
DEBIAN:19991202 problem restoring symlinks
XF:debian-dump-modify-ownership
CVE-2000-0367
Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.
2000-07-12
2005-11-02
CVE-2000-0367
http://www.debian.org/security/1999/19990218
DEBIAN:19990218 Root exploit in eterm
XF:linux-eterm
CVE-2000-0368
Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.
2001-05-07
2016-09-15
CVE-2000-0368
http://www.ciac.org/ciac/bulletins/j-009.shtml
CIAC:J-009
http://www.cisco.com/warp/public/770/ioshist-pub.shtml
CISCO:19981014 Cisco IOS Command History Release at Login Prompt
CVE-2000-0369
The IDENT server in Caldera Linux 2.3 creates multiple threads for each IDENT request, which allows remote attackers to cause a denial of service.
2000-10-13
2005-11-02
CVE-2000-0369
http://www.securityfocus.com/bid/1266
BID:1266
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-029.1.txt
CALDERA:CSSA-1999-029.1
XF:caldera-ident-server-dos
CVE-2000-0370
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command.
2000-07-12
2005-11-02
CVE-2000-0370
http://www.securityfocus.com/bid/1268
BID:1268
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-001.0.txt
CALDERA:CSSA-1999-001.0
XF:caldera-smail-rmail-command
CVE-2000-0371
The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack.
2000-07-12
2005-11-02
CVE-2000-0371
http://www.securityfocus.com/bid/1269
BID:1269
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-005.0.txt
CALDERA:CSSA-1999-005.0
XF:kde-mediatool
CVE-2000-0372
Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges.
2000-07-12
2004-09-02
CVE-2000-0372
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-014.0.txt
CALDERA:CSSA-1999-014.0
http://www.osvdb.org/7940
OSVDB:7940
https://exchange.xforce.ibmcloud.com/vulnerabilities/2268
XF:linux-rmt(2268)
CVE-2000-0373
Vulnerabilities in the KDE kvt terminal program allow local users to gain root privileges.
2000-07-12
2005-11-02
CVE-2000-0373
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-015.0.txt
CALDERA:CSSA-1999-015.0
http://www.redhat.com/support/errata/RHSA1999015_01.html
REDHAT:RHSA-1999:015-01
https://exchange.xforce.ibmcloud.com/vulnerabilities/2266
XF:kde-kvt(2266)
CVE-2000-0374
The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.
2000-10-13
2005-11-02
CVE-2000-0374
http://www.securityfocus.com/bid/1446
BID:1446
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-021.0.txt
CALDERA:CSSA-1999-021.0
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:025
MANDRAKE:MDKSA-2002:025
https://exchange.xforce.ibmcloud.com/vulnerabilities/4856
XF:xdmcp-kdm-default-configuration(4856)
CVE-2000-0375
The kernel in FreeBSD 3.2 follows symbolic links when it creates core dump files, which allows local attackers to modify arbitrary files.
2001-05-07
2004-09-02
CVE-2000-0375
FREEBSD:FreeBSD-SA-99:04
http://www.osvdb.org/6084
OSVDB:6084
CVE-2000-0376
Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.
2000-07-12
2005-11-02
CVE-2000-0376
http://www.securityfocus.com/bid/1324
BID:1324
ISS:20000607 Buffer Overflow in i-drive Filo (tm) software
XF:idrive-filo-bo
CVE-2000-0377
The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.
2000-07-12
2004-09-02
CVE-2000-0377
http://www.securityfocus.com/bid/1331
BID:1331
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-040
MS:MS00-040
http://www.microsoft.com/technet/support/kb.asp?ID=264684
MSKB:Q264684
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1021
OVAL:oval:org.mitre.oval:def:1021
XF:nt-registry-request-dos
CVE-2000-0378
The pam_console PAM module in Linux systems performs a chown on various devices upon a user login, but an open file descriptor for those devices can be maintained after the user logs out, which allows that user to sniff activity on these devices when subsequent users log in.
2000-10-13
2005-11-02
CVE-2000-0378
http://www.securityfocus.com/bid/1176
BID:1176
http://archives.neohapsis.com/archives/bugtraq/2000-05/0023.html
BUGTRAQ:20000502 pam_console bug
XF:linux-pam-sniff-activities
CVE-2000-0379
The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so.
2000-07-12
2005-11-02
CVE-2000-0379
http://www.securityfocus.com/bid/1177
BID:1177
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200005082054.NAA32590@linux.mtndew.com
BUGTRAQ:20000507 Advisory: Netopia R9100 router vulnerability
http://www.netopia.com/equipment/purchase/fmw_update.html
CONFIRM:http://www.netopia.com/equipment/purchase/fmw_update.html
XF:netopia-snmp-comm-strings
CVE-2000-0380
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
2000-07-12
2009-03-01
CVE-2000-0380
http://www.securityfocus.com/bid/1154
BID:1154
http://archives.neohapsis.com/archives/bugtraq/2000-04/0261.html
BUGTRAQ:20000426 Cisco HTTP possible bug:
http://www.cisco.com/warp/public/707/ioshttpserver-pub.shtml
CISCO:20000514 Cisco IOS HTTP Server Vulnerability
http://www.osvdb.org/1302
OSVDB:1302
XF:cisco-ios-http-dos
CVE-2000-0381
The Gossamer Threads DBMan db.cgi CGI script allows remote attackers to view environmental variables and setup information by referencing a non-existing database in the db parameter.
2000-07-12
2005-11-02
CVE-2000-0381
http://www.securityfocus.com/bid/1178
BID:1178
http://archives.neohapsis.com/archives/bugtraq/2000-05/0067.html
BUGTRAQ:20000505 Black Watch Labs Vulnerability Alert
http://www.perfectotech.com/blackwatchlabs/vul5_05.html
MISC:http://www.perfectotech.com/blackwatchlabs/vul5_05.html
XF:http-cgi-dbman-db
CVE-2000-0382
ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirected site.
2000-07-12
2005-11-02
CVE-2000-0382
http://www.allaire.com/handlers/index.cfm?ID=15697&Method=Full
ALLAIRE:ASB00-12
http://www.securityfocus.com/bid/1179
BID:1179
XF:allaire-clustercats-url-redirect
CVE-2000-0383
The file transfer component of AOL Instant Messenger (AIM) reveals the physical path of the transferred file to the remote recipient.
2000-06-15
2003-03-21
CVE-2000-0383
http://www.securityfocus.com/bid/1180
BID:1180
http://www.securityfocus.com/templates/archive.pike?list=1&msg=002401bfb918$7310d5a0$1ef084ce@karemor.com
BUGTRAQ:20000507 AOL Instant Messenger
XF:aolim-file-path
CVE-2000-0384
NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access.
2000-06-15
2003-03-21
CVE-2000-0384
http://www.securityfocus.com/bid/1182
BID:1182
http://www.securityfocus.com/bid/1183
BID:1183
http://216.188.41.136/
CONFIRM:http://216.188.41.136/
http://www.l0pht.com/advisories/ipivot7180.html
L0PHT:20000508 NetStructure 7110 console backdoor
http://www.lopht.com/advisories/ipivot7110.html
L0PHT:20000508 NetStructure 7180 remote backdoor vulnerability
XF:netstructure-root-compromise
XF:netstructure-wizard-mode
CVE-2000-0385
FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilities.
2000-06-15
2003-05-08
CVE-2000-0385
http://www.filemaker.com/support/webcompanion.html
CONFIRM:http://www.filemaker.com/support/webcompanion.html
http://www.blueworld.com/blueworld/news/05.01.00-FM5_Security.html
MISC:http://www.blueworld.com/blueworld/news/05.01.00-FM5_Security.html
XF:macos-filemaker-email
XF:macos-filemaker-xml
CVE-2000-0386
FileMaker Pro 5 Web Companion allows remote attackers to send anonymous or forged email.
2000-06-15
2003-05-08
CVE-2000-0386
http://www.filemaker.com/support/webcompanion.html
CONFIRM:http://www.filemaker.com/support/webcompanion.html
http://www.blueworld.com/blueworld/news/05.01.00-FM5_Security.html
MISC:http://www.blueworld.com/blueworld/news/05.01.00-FM5_Security.html
XF:macos-filemaker-anonymous-email
CVE-2000-0387
The makelev program in the golddig game from the FreeBSD ports collection allows local users to overwrite arbitrary files.
2000-07-12
2005-11-02
CVE-2000-0387
http://www.securityfocus.com/bid/1184
BID:1184
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:16.golddig.asc
FREEBSD:FreeBSD-SA-00:16
XF:golddig-overwrite-files
CVE-2000-0388
Buffer overflow in FreeBSD libmytinfo library allows local users to execute commands via a long TERMCAP environmental variable.
2000-07-12
2005-11-02
CVE-2000-0388
http://www.securityfocus.com/bid/1185
BID:1185
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00%3A17.libmytinfo.asc
FREEBSD:FreeBSD-SA-00:17
XF:libmytinfo-bo
CVE-2000-0389
Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges.
2000-07-12
2004-09-02
CVE-2000-0389
http://www.securityfocus.com/bid/1220
BID:1220
http://archives.neohapsis.com/archives/bugtraq/2000-05/0184.html
BUGTRAQ:20000516 BUFFER OVERRUN VULNERABILITIES IN KERBEROS
http://www.cert.org/advisories/CA-2000-06.html
CERT:CA-2000-06
http://archives.neohapsis.com/archives/freebsd/2000-05/0295.html
FREEBSD:FreeBSD-SA-00:20
http://www.redhat.com/support/errata/RHSA-2000-025.html
REDHAT:RHSA-2000:025
XF:kerberos-krb-rd-req-bo
CVE-2000-0390
Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges.
2000-07-12
2004-09-02
CVE-2000-0390
http://www.securityfocus.com/bid/1220
BID:1220
http://archives.neohapsis.com/archives/bugtraq/2000-05/0184.html
BUGTRAQ:20000516 BUFFER OVERRUN VULNERABILITIES IN KERBEROS
http://www.cert.org/advisories/CA-2000-06.html
CERT:CA-2000-06
http://archives.neohapsis.com/archives/freebsd/2000-05/0295.html
FREEBSD:FreeBSD-SA-00:20
http://www.osvdb.org/4884
OSVDB:4884
http://www.redhat.com/support/errata/RHSA-2000-025.html
REDHAT:RHSA-2000:025
XF:kerberos-krb425-conv-principal-bo
CVE-2000-0391
Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.
2000-07-12
2004-09-02
CVE-2000-0391
http://www.securityfocus.com/bid/1220
BID:1220
http://archives.neohapsis.com/archives/bugtraq/2000-05/0184.html
BUGTRAQ:20000516 BUFFER OVERRUN VULNERABILITIES IN KERBEROS
http://www.cert.org/advisories/CA-2000-06.html
CERT:CA-2000-06
http://archives.neohapsis.com/archives/freebsd/2000-05/0295.html
FREEBSD:FreeBSD-SA-00:20
http://www.osvdb.org/4876
OSVDB:4876
http://www.redhat.com/support/errata/RHSA-2000-025.html
REDHAT:RHSA-2000:025
XF:kerberos-krshd-bo
CVE-2000-0392
Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges.
2000-07-12
2004-09-02
CVE-2000-0392
http://www.securityfocus.com/bid/1220
BID:1220
http://archives.neohapsis.com/archives/bugtraq/2000-05/0184.html
BUGTRAQ:20000516 BUFFER OVERRUN VULNERABILITIES IN KERBEROS
http://www.cert.org/advisories/CA-2000-06.html
CERT:CA-2000-06
http://archives.neohapsis.com/archives/freebsd/2000-05/0295.html
FREEBSD:FreeBSD-SA-00:20
http://www.redhat.com/support/errata/RHSA-2000-025.html
REDHAT:RHSA-2000:025
XF:kerberos-ksu-bo
CVE-2000-0393
The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute.
2000-07-12
2005-11-02
CVE-2000-0393
http://www.securityfocus.com/bid/1206
BID:1206
http://archives.neohapsis.com/archives/bugtraq/2000-05/0172.html
BUGTRAQ:20000516 kscd vulnerability
http://www.novell.com/linux/security/advisories/suse_security_announce_50.html
SUSE:20000529 kmulti <= 1.1.2
XF:kscd-shell-env-variable
CVE-2000-0394
NetProwler 3.0 allows remote attackers to cause a denial of service by sending malformed IP packets that trigger NetProwler's Man-in-the-Middle signature.
2000-07-12
2005-11-02
CVE-2000-0394
http://www.securityfocus.com/bid/1225
BID:1225
http://marc.info/?l=bugtraq&m=95878603510835&w=2
BUGTRAQ:20000519 RFP2K05: NetProwler vs. RFProwler
http://www.securityfocus.com/templates/archive.pike?list=1&msg=392AD3B3.3E9BE3EA@axent.com
BUGTRAQ:20000522 RFP2K05 - NetProwler "Fragmentation" Issue
XF:axent-netprowler-ipfrag-dos
CVE-2000-0395
Buffer overflow in CProxy 3.3 allows remote users to cause a denial of service via a long HTTP request.
2000-07-12
2005-11-02
CVE-2000-0395
http://www.securityfocus.com/bid/1213
BID:1213
http://www.securityfocus.com/templates/archive.pike?list=1&msg=007d01bfbf48$e44f0e40$01dc11ac@peopletel.org
BUGTRAQ:20000516 CProxy v3.3 SP 2 DoS
XF:cproxy-http-dos
CVE-2000-0396
The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files.
2000-07-12
2005-11-02
CVE-2000-0396
http://www.securityfocus.com/bid/1245
BID:1245
http://archives.neohapsis.com/archives/bugtraq/2000-05/0285.html
BUGTRAQ:20000524 Alert: Carello File Creation flaw
XF:carello-file-duplication
CVE-2000-0397
The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's email account.
2000-07-12
2005-11-02
CVE-2000-0397
http://www.securityfocus.com/bid/1203
BID:1203
http://archives.neohapsis.com/archives/bugtraq/2000-05/0160.html
BUGTRAQ:20000515 Vulnerability in EMURL-based e-mail providers
XF:emurl-account-access
CVE-2000-0398
Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long query_string parameter in the HTTP GET request.
2000-07-12
2005-11-02
CVE-2000-0398
http://www.securityfocus.com/bid/1244
BID:1244
http://archives.neohapsis.com/archives/bugtraq/2000-05/0286.html
BUGTRAQ:20000524 Alert: Buffer overflow in Rockliffe's MailSite
XF:mailsite-get-overflow
CVE-2000-0399
Buffer overflow in MDaemon POP server allows remote attackers to cause a denial of service via a long user name.
2000-07-12
2005-11-02
CVE-2000-0399
http://www.securityfocus.com/bid/1250
BID:1250
http://archives.neohapsis.com/archives/bugtraq/2000-05/0301.html
BUGTRAQ:20000524 Deerfield Communications MDaemon Mail Server DoS
XF:deerfield-mdaemon-dos
CVE-2000-0400
The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by encoding it within an email message or news post.
2000-06-15
2016-10-17
CVE-2000-0400
http://www.securityfocus.com/bid/1221
BID:1221
http://marc.info/?l=bugtraq&m=95868514521257&w=2
BUGTRAQ:20000516 MICROSOFT SECURITY FLAW?
XF:ie-active-movie-control
CVE-2000-0401
Buffer overflows in redirect.exe and changepw.exe in PDGSoft shopping cart allow remote attackers to execute arbitrary commands via a long query string.
2000-06-15
2016-10-17
CVE-2000-0401
http://www.securityfocus.com/bid/1256
BID:1256
http://marc.info/?l=bugtraq&m=95928319715983&w=2
BUGTRAQ:20000525 Alert: PDG Cart Overflows
http://www.pdgsoft.com/Security/security2.html
CONFIRM:http://www.pdgsoft.com/Security/security2.html
http://marc.info/?l=ntbugtraq&m=95928667119963&w=2
NTBUGTRAQ:20000525 Alert: PDG Cart Overflows
CVE-2000-0402
The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0402
http://www.securityfocus.com/bid/1281
BID:1281
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-035
MS:MS00-035
http://www.microsoft.com/technet/support/kb.asp?ID=263968
MSKB:Q263968
XF:mssql-agent-stored-pw
XF:mssql-sa-pw-in-sqlsplog
CVE-2000-0403
The CIFS Computer Browser service on Windows NT 4.0 allows a remote attacker to cause a denial of service by sending a large number of host announcement requests to the master browse tables, aka the "HostAnnouncement Flooding" or "HostAnnouncement Frame" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0403
http://www.securityfocus.com/bid/1261
BID:1261
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-036
MS:MS00-036
http://www.microsoft.com/technet/support/kb.asp?ID=263307
MSKB:Q263307
XF:win-browser-hostannouncement
CVE-2000-0404
The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master Browser, aka the "ResetBrowser Frame" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0404
http://www.securityfocus.com/bid/1262
BID:1262
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-036
MS:MS00-036
http://www.microsoft.com/technet/support/kb.asp?ID=262694
MSKB:Q262694
XF:win-browser-reset-frame
CVE-2000-0405
Buffer overflow in L0pht AntiSniff allows remote attackers to execute arbitrary commands via a malformed DNS response packet.
2000-07-12
2004-09-02
CVE-2000-0405
http://www.securityfocus.com/bid/1207
BID:1207
http://www.l0pht.com/advisories/asniff_advisory.txt
L0PHT:20000515 AntiSniff version 1.01 and Researchers version 1 DNS overflow
http://www.osvdb.org/3179
OSVDB:3179
XF:antisniff-dns-overflow
CVE-2000-0406
Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the "Acros-Suencksen SSL" vulnerability.
2000-07-12
2004-09-02
CVE-2000-0406
http://www.securityfocus.com/bid/1188
BID:1188
http://www.cert.org/advisories/CA-2000-05.html
CERT:CA-2000-05
http://www.acrossecurity.com/aspr/ASPR-2000-04-06-1-PUB.txt
MISC:http://www.acrossecurity.com/aspr/ASPR-2000-04-06-1-PUB.txt
http://www.redhat.com/support/errata/RHSA-2000-028.html
REDHAT:RHSA-2000:028
XF:netscape-invalid-ssl-sessions
CVE-2000-0407
Buffer overflow in Solaris netpr program allows local users to execute arbitrary commands via a long -p option.
2000-07-12
2005-11-02
CVE-2000-0407
http://www.securityfocus.com/bid/1200
BID:1200
http://archives.neohapsis.com/archives/bugtraq/2000-05/0141.html
BUGTRAQ:20000512 New Solaris root exploit for /usr/lib/lp/bin/netpr
XF:sol-netpr-bo
CVE-2000-0408
IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the "Malformed Extension Data in URL" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0408
http://www.securityfocus.com/bid/1190
BID:1190
http://www.ussrback.com/labs40.html
MISC:http://www.ussrback.com/labs40.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-030
MS:MS00-030
http://www.microsoft.com/technet/support/kb.asp?ID=260205
MSKB:Q260205
XF:iis-url-extension-data-dos
CVE-2000-0409
Netscape 4.73 and earlier follows symlinks when it imports a new certificate, which allows local users to overwrite files of the user importing the certificate.
2000-07-12
2005-11-02
CVE-2000-0409
http://www.securityfocus.com/bid/1201
BID:1201
http://archives.neohapsis.com/archives/bugtraq/2000-05/0126.html
BUGTRAQ:20000510 Possible symlink problems with Netscape 4.73
XF:netscape-import-certificate-symlink
CVE-2000-0410
ColdFusion Server 4.5.1 allows remote attackers to cause a denial of service by making repeated requests to a CFCACHE tagged cache file that is not stored in memory.
2000-07-12
2005-11-02
CVE-2000-0410
http://www.securityfocus.com/bid/1192
BID:1192
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0005&L=ntbugtraq&F=&S=&P=4843
NTBUGTRAQ:20000510 Cold Fusion Server 4.5.1 DoS Vulnerability.
XF:coldfusion-cfcache-dos
CVE-2000-0411
Matt Wright's FormMail CGI script allows remote attackers to obtain environmental variables via the env_report parameter.
2000-07-12
2005-11-02
CVE-2000-0411
http://www.securityfocus.com/bid/1187
BID:1187
http://archives.neohapsis.com/archives/bugtraq/2000-05/0125.html
BUGTRAQ:20000510 Black Watch Labs Vulnerability Alert
http://www.perfectotech.com/blackwatchlabs/vul5_10.html
MISC:http://www.perfectotech.com/blackwatchlabs/vul5_10.html
XF:http-cgi-formmail-environment
CVE-2000-0412
The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname for the file.
2000-06-15
2003-03-21
CVE-2000-0412
http://www.securityfocus.com/bid/1186
BID:1186
http://archives.neohapsis.com/archives/bugtraq/2000-05/0127.html
BUGTRAQ:20000510 Gnapster Vulnerability Compromises User-readable Files
http://archives.neohapsis.com/archives/bugtraq/2000-05/0124.html
BUGTRAQ:20000510 KNapster Vulnerability Compromises User-readable Files
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:18-gnapster.adv
FREEBSD:FreeBSD-SA-00:18
XF:gnapster-view-files
CVE-2000-0413
The shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers to determine the physical path of HTML, HTM, ASP, and SHTML files by requesting a file that does not exist, which generates an error message that reveals the path.
2000-06-15
2003-03-21
CVE-2000-0413
http://www.securityfocus.com/bid/1174
BID:1174
http://archives.neohapsis.com/archives/bugtraq/2000-05/0084.html
BUGTRAQ:20000506 shtml.exe reveal local path of IIS web directory
XF:iis-shtml-reveal-path
CVE-2000-0414
Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables.
2000-07-12
2009-03-01
CVE-2000-0414
http://www.securityfocus.com/bid/1214
BID:1214
http://archives.neohapsis.com/archives/bugtraq/2000-05/0047.html
HP:HPSBUX0005-113
XF:hp-shutdown-privileges
CVE-2000-0415
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name.
2000-06-15
2003-05-08
CVE-2000-0415
http://www.securityfocus.com/bid/1195
BID:1195
http://archives.neohapsis.com/archives/bugtraq/2000-05/0140.html
BUGTRAQ:20000512 Overflow in Outlook Express 4.* - too long filenames with graphic format extension
CVE-2000-0416
NTMail 5.x allows network users to bypass the NTMail proxy restrictions by redirecting their requests to NTMail's web configuration server.
2000-07-12
2005-11-02
CVE-2000-0416
http://www.securityfocus.com/bid/1196
BID:1196
http://www.securityfocus.com/templates/archive.pike?list=1&msg=NABBJLKKPKIHDIMKFKGCMEFANMAB.georger@nls.net
BUGTRAQ:20000511 NTMail Proxy Exploit
http://www.gordano.com/support/archives/ntmail/2000-05/00001114.htm
CONFIRM:http://www.gordano.com/support/archives/ntmail/2000-05/00001114.htm
XF:ntmail-bypass-proxy
CVE-2000-0417
The HTTP administration interface to the Cayman 3220-H DSL router allows remote attackers to cause a denial of service via a long username or password.
2000-07-12
2005-11-02
CVE-2000-0417
http://www.securityfocus.com/bid/1219
BID:1219
http://archives.neohapsis.com/archives/bugtraq/2000-05/0075.html
BUGTRAQ:20000505 Cayman 3220-H DSL Router DOS
http://archives.neohapsis.com/archives/bugtraq/2000-05/0280.html
BUGTRAQ:20000523 Cayman 3220H DSL Router Software Update and New Bonus Attack
XF:cayman-router-dos
CVE-2000-0418
The Cayman 3220-H DSL router allows remote attackers to cause a denial of service via oversized ICMP echo (ping) requests.
2000-07-12
2005-11-02
CVE-2000-0418
http://www.securityfocus.com/bid/1240
BID:1240
http://archives.neohapsis.com/archives/bugtraq/2000-05/0280.html
BUGTRAQ:20000523 Cayman 3220H DSL Router Software Update and New Bonus Attack
XF:cayman-dsl-dos
CVE-2000-0419
The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0419
http://www.securityfocus.com/bid/1197
BID:1197
http://www.cert.org/advisories/CA-2000-07.html
CERT:CA-2000-07
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-034
MS:MS00-034
http://www.microsoft.com/technet/support/kb.asp?ID=262767
MSKB:Q262767
XF:office-ua-control
CVE-2000-0420
The default configuration of SYSKEY in Windows 2000 stores the startup key in the registry, which could allow an attacker tor ecover it and use it to decrypt Encrypted File System (EFS) data.
2000-06-15
2003-05-08
CVE-2000-0420
http://www.securityfocus.com/bid/1198
BID:1198
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0112.html
NTBUGTRAQ:20000511 ISS SAVANT Advisory 00/26
CVE-2000-0421
The process_bug.cgi script in Bugzilla allows remote attackers to execute arbitrary commands via shell metacharacters.
2000-07-12
2005-11-02
CVE-2000-0421
http://www.securityfocus.com/bid/1199
BID:1199
http://archives.neohapsis.com/archives/bugtraq/2000-05/0128.html
BUGTRAQ:20000510 Advisory: Unchecked system(blaat $var blaat) call in Bugzilla 2.8
XF:bugzilla-unchecked-system-call
CVE-2000-0422
Buffer overflow in Netwin DMailWeb CGI program allows remote attackers to execute arbitrary commands via a long utoken parameter.
2000-06-15
2016-10-17
CVE-2000-0422
http://www.securityfocus.com/bid/1171
BID:1171
http://marc.info/?l=bugtraq&m=95749276827558&w=2
BUGTRAQ:20000504 Alert: DMailWeb buffer overflow
XF:http-cgi-dmailweb-bo
CVE-2000-0423
Buffer overflow in Netwin DNEWSWEB CGI program allows remote attackers to execute arbitrary commands via long parameters such as group, cmd, and utag.
2000-06-15
2016-10-17
CVE-2000-0423
http://www.securityfocus.com/bid/1172
BID:1172
http://marc.info/?l=bugtraq&m=95764950403250&w=2
BUGTRAQ:20000505 Alert: DNewsWeb buffer overflow
XF:http-cgi-dnews-bo
CVE-2000-0424
The CGI counter 4.0.7 by George Burgyan allows remote attackers to execute arbitrary commands via shell metacharacters.
2000-07-12
2005-11-02
CVE-2000-0424
http://www.securityfocus.com/bid/1202
BID:1202
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200005151024.aa01811@blaze.arl.mil
BUGTRAQ:20000514 Vulnerability in CGI counter 4.0.7 by George Burgyan
XF:http-cgi-burgyan-counter
CVE-2000-0425
Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands.
2000-07-12
2005-11-02
CVE-2000-0425
http://www.securityfocus.com/bid/1167
BID:1167
http://archives.neohapsis.com/archives/bugtraq/2000-05/0048.html
BUGTRAQ:20000505 Alert: Listserv Web Archives (wa) buffer overflow
http://www.lsoft.com/news/default.asp?item=Advisory0
CONFIRM:http://www.lsoft.com/news/default.asp?item=Advisory0
XF:http-cgi-listserv-wa-bo
CVE-2000-0426
UltraBoard 1.6 and other versions allow remote attackers to cause a denial of service by referencing UltraBoard in the Session parameter, which causes UltraBoard to fork copies of itself.
2000-10-13
2005-11-02
CVE-2000-0426
http://www.securityfocus.com/bid/1175
BID:1175
http://archives.neohapsis.com/archives/bugtraq/2000-05/0059.html
BUGTRAQ:20000505 Re: Fun with UltraBoard V1.6X
XF:ultraboard-cgi-dos
CVE-2000-0427
The Aladdin Knowledge Systems eToken device allows attackers with physical access to the device to obtain sensitive information without knowing the PIN of the owner by resetting the PIN in the EEPROM.
2000-07-12
2004-09-02
CVE-2000-0427
http://www.securityfocus.com/bid/1170
BID:1170
http://www.l0pht.com/advisories/etoken-piepa.txt
L0PHT:20000504 eToken Private Information Extraction and Physical Attack
http://www.osvdb.org/3266
OSVDB:3266
XF:aladdin-etoken-pin-reset
CVE-2000-0428
Buffer overflow in the SMTP gateway for InterScan Virus Wall 3.32 and earlier allows a remote attacker to execute arbitrary commands via a long filename for a uuencoded attachment.
2000-07-12
2005-11-02
CVE-2000-0428
http://www.securityfocus.com/bid/1168
BID:1168
http://www.nai.com/nai_labs/asp_set/advisory/39_Trend.asp
NAI:20000503 Trend Micro InterScan VirusWall Remote Overflow
XF:interscan-viruswall-bo
CVE-2000-0429
A backdoor password in Cart32 3.0 and earlier allows remote attackers to execute arbitrary commands.
2000-06-15
2016-10-17
CVE-2000-0429
http://marc.info/?l=bugtraq&m=95686068203138&w=2
BUGTRAQ:20000427 Alert: Cart32 secret password backdoor (CISADV000427)
http://www.cart32.com/kbshow.asp?article=c048
CONFIRM:http://www.cart32.com/kbshow.asp?article=c048
CVE-2000-0430
Cart32 allows remote attackers to access sensitive debugging information by appending /expdate to the URL request.
2000-10-13
2005-11-02
CVE-2000-0430
http://www.securityfocus.com/bid/1358
BID:1358
http://marc.info/?l=bugtraq&m=95738697301956&w=2
BUGTRAQ:20000503 Another interesting Cart32 command
XF:cart32-expdate
CVE-2000-0431
Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgiwrap and modify files.
2000-07-12
2004-09-02
CVE-2000-0431
http://www.securityfocus.com/bid/1238
BID:1238
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000523100045.B11049@HiWAAY.net
BUGTRAQ:20000522 Problem with FrontPage on Cobalt RaQ2/RaQ3
BUGTRAQ:20000525 Cobalt Networks - Security Advisory - Frontpage
http://archives.neohapsis.com/archives/bugtraq/2000-05/0305.html
CONFIRM:http://archives.neohapsis.com/archives/bugtraq/2000-05/0305.html
http://www.osvdb.org/1346
OSVDB:1346
XF:cobalt-cgiwrap-bypass
CVE-2000-0432
The calender.pl and the calendar_admin.pl calendar scripts by Matt Kruse allow remote attackers to execute arbitrary commands via shell metacharacters.
2000-07-12
2005-11-02
CVE-2000-0432
http://www.securityfocus.com/bid/1215
BID:1215
http://archives.neohapsis.com/archives/bugtraq/2000-05/0173.html
BUGTRAQ:20000516 Vuln in calender.pl (Matt Kruse calender script)
XF:http-cgi-calendar-execute
CVE-2000-0433
The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accounts by creating standard user startup scripts such as profiles.
2000-06-15
2003-03-21
CVE-2000-0433
http://www.novell.com/linux/security/advisories/suse_security_announce_47.html
SUSE:20000502 aaabase < 2000.5.2
XF:aaabase-execute-dot-files
CVE-2000-0434
The administrative password for the Allmanage web site administration software is stored in plaintext in a file which could be accessed by remote attackers.
2000-06-15
2003-03-21
CVE-2000-0434
http://www.securityfocus.com/bid/1217
BID:1217
http://archives.neohapsis.com/archives/bugtraq/2000-05/0167.html
BUGTRAQ:20000516 Allmanage.pl Vulnerabilities
CVE-2000-0435
The allmanageup.pl file upload CGI script in the Allmanage Website administration software 2.6 can be called directly by remote attackers, which allows them to modify user accounts or web pages.
2000-07-12
2004-09-02
CVE-2000-0435
http://www.securityfocus.com/bid/1217
BID:1217
http://archives.neohapsis.com/archives/bugtraq/2000-05/0167.html
BUGTRAQ:20000516 Allmanage.pl Vulnerabilities
http://www.osvdb.org/1337
OSVDB:1337
XF:http-cgi-allmanage-account-access
CVE-2000-0436
MetaProducts Offline Explorer 1.2 and earlier allows remote attackers to access arbitrary files via a .. (dot dot) attack.
2000-07-12
2005-11-02
CVE-2000-0436
http://www.securityfocus.com/bid/1231
BID:1231
http://archives.neohapsis.com/archives/bugtraq/2000-05/0254.html
BUGTRAQ:20000522 MetaProducts Offline Explorer Directory Traversal Vulnerability
http://www.metaproducts.com/mpOE-HY.html
CONFIRM:http://www.metaproducts.com/mpOE-HY.html
XF:offline-explorer-directory-traversal
CVE-2000-0437
Buffer overflow in the CyberPatrol daemon "cyberdaemon" used in gauntlet and WebShield allows remote attackers to cause a denial of service or execute arbitrary commands.
2000-07-12
2004-09-02
CVE-2000-0437
http://www.securityfocus.com/bid/1234
BID:1234
http://archives.neohapsis.com/archives/bugtraq/2000-05/0249.html
BUGTRAQ:20000522 Gauntlet CyberPatrol Buffer Overflow
http://www.pgp.com/jump/gauntlet_advisory.asp
CONFIRM:http://www.pgp.com/jump/gauntlet_advisory.asp
http://www.tis.com/support/cyberadvisory.html
CONFIRM:http://www.tis.com/support/cyberadvisory.html
http://www.osvdb.org/322
OSVDB:322
XF:gauntlet-cyberdaemon-bo
CVE-2000-0438
Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.
2000-07-12
2005-11-02
CVE-2000-0438
http://www.securityfocus.com/bid/1239
BID:1239
http://archives.neohapsis.com/archives/bugtraq/2000-05/0245.html
BUGTRAQ:20000522 fdmount buffer overflow
XF:linux-fdmount-bo
CVE-2000-0439
Internet Explorer 4.0 and 5.0 allows a malicious web site to obtain client cookies from another domain by including that domain name and escaped characters in a URL, aka the "Unauthorized Cookie Access" vulnerability.
2000-07-12
2006-08-28
CVE-2000-0439
http://www.securityfocus.com/bid/1194
BID:1194
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000511135609.D7774@securityfocus.com
BUGTRAQ:20000510 IE Domain Confusion Vulnerability
http://www.securityfocus.com/templates/archive.pike?list=1&msg=NDBBKGHPMKBKDDGLDEEHAEHMDIAA.rms2000@bellatlantic.net
BUGTRAQ:20000511 IE Domain Confusion Vulnerability is an Email problem also
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-033
MS:MS00-033
http://www.osvdb.org/1326
OSVDB:1326
https://exchange.xforce.ibmcloud.com/vulnerabilities/4447
XF:ie-cookie-disclosure(4447)
CVE-2000-0440
NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option.
2000-10-13
2005-11-02
CVE-2000-0440
http://www.securityfocus.com/bid/1173
BID:1173
http://archives.neohapsis.com/archives/bugtraq/2000-05/0088.html
BUGTRAQ:20000506 [NHC20000504a.0: NetBSD Panics when sent unaligned IP options]
FREEBSD:FreeBSD-SA-00:23
ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-002.txt.asc
NETBSD:NetBSD-SA2000-002
XF:netbsd-unaligned-ip-options
CVE-2000-0441
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.
2000-07-12
2005-11-02
CVE-2000-0441
http://www.securityfocus.com/bid/1241
BID:1241
http://archives.neohapsis.com/archives/bugtraq/2000-05/0275.html
IBM:ERS-OAR-E01-2000:087.1
XF:aix-local-filesystem
CVE-2000-0442
Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command.
2000-07-12
2005-11-02
CVE-2000-0442
http://www.securityfocus.com/bid/1242
BID:1242
http://archives.neohapsis.com/archives/bugtraq/2000-05/0267.html
BUGTRAQ:20000523 Qpopper 2.53 remote problem, user can gain gid=mail
http://www.novell.com/linux/security/advisories/suse_security_announce_51.html
SUSE:20000608 pop <= 2000.3.4
XF:qualcomm-qpopper-euidl
CVE-2000-0443
The web interface server in HP Web JetAdmin 5.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-10-13
2004-09-02
CVE-2000-0443
http://www.securityfocus.com/bid/1243
BID:1243
http://archives.neohapsis.com/archives/bugtraq/2000-05/0281.html
BUGTRAQ:20000524 HP Web JetAdmin Version 5.6 Web interface Server Directory Traversal Vulnerability
http://www.osvdb.org/1350
OSVDB:1350
XF:hp-jetadmin-directory-traversal
CVE-2000-0444
HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000.
2000-06-15
2003-03-21
CVE-2000-0444
http://www.securityfocus.com/bid/1246
BID:1246
http://archives.neohapsis.com/archives/bugtraq/2000-05/0277.html
BUGTRAQ:20000524 HP Web JetAdmin Version 6.0 Remote DoS attack Vulnerability
XF:hp-jetadmin-malformed-url-dos
CVE-2000-0445
The pgpk command in PGP 5.x on Unix systems uses an insufficiently random data source for non-interactive key pair generation, which may produce predictable keys.
2000-10-13
2004-09-02
CVE-2000-0445
http://www.securityfocus.com/bid/1251
BID:1251
http://archives.neohapsis.com/archives/bugtraq/2000-05/0273.html
BUGTRAQ:20000523 Key Generation Security Flaw in PGP 5.0
http://www.cert.org/advisories/CA-2000-09.html
CERT:CA-2000-09
http://www.osvdb.org/1355
OSVDB:1355
XF:pgp-key-predictable
CVE-2000-0446
Buffer overflow in MDBMS database server allows remote attackers to execute arbitrary commands via a long string.
2000-10-13
2005-11-02
CVE-2000-0446
http://www.securityfocus.com/bid/1252
BID:1252
http://archives.neohapsis.com/archives/bugtraq/2000-05/0274.html
BUGTRAQ:20000524 Remote xploit for MDBMS
XF:mdbms-bo
CVE-2000-0447
Buffer overflow in WebShield SMTP 4.5.44 allows remote attackers to execute arbitrary commands via a long configuration parameter to the WebShield remote management service.
2000-10-13
2004-09-02
CVE-2000-0447
http://www.securityfocus.com/bid/1254
BID:1254
http://www.securityfocus.com/templates/archive.pike?list=1&msg=6C740781F92BD411831F0090273A8AB806FD4A@exchange.servers.delphis.net
BUGTRAQ:20000525 DST2K0003 : Buffer Overrun in NAI WebShield SMTP v4.5.44 Managem ent Tool
http://www.osvdb.org/327
OSVDB:327
XF:nai-webshield-bo
CVE-2000-0448
The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the management port when an IP address does not resolve to a hostname, which allows remote attackers to access the configuration via the GET_CONFIG command.
2000-10-13
2004-09-02
CVE-2000-0448
http://www.securityfocus.com/bid/1253
BID:1253
http://www.securityfocus.com/templates/archive.pike?list=1&msg=6C740781F92BD411831F0090273A8AB806FD4A@exchange.servers.delphis.net
BUGTRAQ:20000525 DST2K0003 : Buffer Overrun in NAI WebShield SMTP v4.5.44 Managem ent Tool
http://www.osvdb.org/326
OSVDB:326
XF:nai-webshield-getconfig
CVE-2000-0449
Omnis Studio 2.4 uses weak encryption (trivial encoding) for encrypting database fields.
2000-06-15
2003-03-21
CVE-2000-0449
http://www.securityfocus.com/bid/1255
BID:1255
http://archives.neohapsis.com/archives/bugtraq/2000-05/0311.html
BUGTRAQ:20000525 Omnis Weak Encryption - Many products affected
CVE-2000-0450
Vulnerability in bbd server in Big Brother System and Network Monitor allows an attacker to execute arbitrary commands.
2000-06-15
2003-03-21
CVE-2000-0450
http://www.securityfocus.com/bid/1257
BID:1257
http://archives.neohapsis.com/archives/bugtraq/2000-05/0216.html
BUGTRAQ:20000518 FW: Security Notice: Big Brother System and Network Monitor
CVE-2000-0451
The Intel express 8100 ISDN router allows remote attackers to cause a denial of service via oversized or fragmented ICMP packets.
2000-10-13
2005-11-02
CVE-2000-0451
http://www.securityfocus.com/bid/1228
BID:1228
http://archives.neohapsis.com/archives/bugtraq/2000-05/0229.html
BUGTRAQ:20000518 Remote Dos attack against Intel express 8100 router
XF:intel-8100-remote-dos
CVE-2000-0452
Buffer overflow in the ESMTP service of Lotus Domino Server 5.0.1 allows remote attackers to cause a denial of service via a long MAIL FROM command.
2000-07-12
2004-09-02
CVE-2000-0452
http://www.securityfocus.com/bid/1229
BID:1229
http://archives.neohapsis.com/archives/bugtraq/2000-05/0219.html
BUGTRAQ:20000518 Lotus ESMTP Service (Lotus Domino Release 5.0.1 (Intl))
http://www.osvdb.org/321
OSVDB:321
XF:lotus-domino-esmtp-bo
CVE-2000-0453
XFree86 3.3.x and 4.0 allows a user to cause a denial of service via a negative counter value in a malformed TCP packet that is sent to port 6000.
2000-07-12
2005-11-02
CVE-2000-0453
http://www.securityfocus.com/bid/1235
BID:1235
http://archives.neohapsis.com/archives/bugtraq/2000-05/0223.html
BUGTRAQ:20000518 Nasty XFree Xserver DoS
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-012.0.txt
CALDERA:CSSA-2000-012.0
CVE-2000-0454
Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter.
2000-07-12
2005-11-02
CVE-2000-0454
http://www.securityfocus.com/bid/1265
BID:1265
http://archives.neohapsis.com/archives/bugtraq/2000-05/0367.html
BUGTRAQ:20000527 Mandrake 7.0: /usr/bin/cdrecord gid=80 (strike #2)
http://archives.neohapsis.com/archives/bugtraq/2000-05/0434.html
BUGTRAQ:20000603 [Gael Duval ] [Security Announce] cdrecord
http://archives.neohapsis.com/archives/bugtraq/2000-06/0019.html
BUGTRAQ:20000607 Conectiva Linux Security Announcement - cdrecord
XF:linux-cdrecord-execute
CVE-2000-0455
Buffer overflow in xlockmore xlock program version 4.16 and earlier allows local users to read sensitive data from memory via a long -mode option.
2000-07-12
2005-11-02
CVE-2000-0455
http://www.securityfocus.com/bid/1267
BID:1267
http://www.nai.com/nai_labs/asp_set/advisory/41initialized.asp
NAI:20000529 Initialized Data Overflow in Xlock
ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-003.txt.asc
NETBSD:NetBSD-SA2000-003
http://archives.neohapsis.com/archives/bugtraq/2000-05/0375.html
TURBO:TLSA2000012-1
XF:xlock-bo-read-passwd
CVE-2000-0456
NetBSD 1.4.2 and earlier allows local users to cause a denial of service by repeatedly running certain system calls in the kernel which do not yield the CPU, aka "cpu-hog".
2000-07-12
2004-09-02
CVE-2000-0456
http://www.securityfocus.com/bid/1272
BID:1272
ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-005.txt.asc
NETBSD:NetBSD-SA2000-005
http://www.osvdb.org/1365
OSVDB:1365
XF:bsd-syscall-cpu-dos
CVE-2000-0457
ISM.DLL in IIS 4.0 and 5.0 allows remote attackers to read file contents by requesting the file and appending a large number of encoded spaces (%20) and terminated with a .htr extension, aka the ".HTR File Fragment Reading" or "File Fragment Reading via .HTR" vulnerability.
2002-03-09
2002-03-01
CVE-2000-0457
http://www.securityfocus.com/bid/1193
BID:1193
http://marc.info/?l=bugtraq&m=95810120719608&w=2
BUGTRAQ:20000511 Alert: IIS ism.dll exposes file contents
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-031
MS:MS00-031
https://exchange.xforce.ibmcloud.com/vulnerabilities/4448
XF:iis-ism-file-access(4448)
CVE-2000-0458
The MSWordView application in IMP creates world-readable files in the /tmp directory, which allows other local users to read potentially sensitive information.
2000-10-13
2005-11-02
CVE-2000-0458
http://www.securityfocus.com/bid/1360
BID:1360
http://marc.info/?l=bugtraq&m=95672120116627&w=2
BUGTRAQ:20000424 Two Problems in IMP 2
XF:imp-tmpfile-view
CVE-2000-0459
IMP does not remove files properly if the MSWordView application quits, which allows local users to cause a denial of service by filling up the disk space by requesting a large number of documents and prematurely stopping the request.
2000-10-13
2005-11-02
CVE-2000-0459
http://www.securityfocus.com/bid/1361
BID:1361
http://marc.info/?l=bugtraq&m=95672120116627&w=2
BUGTRAQ:20000424 Two Problems in IMP 2
XF:imp-wordfile-dos
CVE-2000-0460
Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable.
2000-07-12
2005-11-02
CVE-2000-0460
http://www.securityfocus.com/bid/1274
BID:1274
http://archives.neohapsis.com/archives/bugtraq/2000-05/0353.html
BUGTRAQ:20000526 KDE: /usr/bin/kdesud, gid = 0 exploit
XF:kde-display-environment-overflow
CVE-2000-0461
The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.
2000-07-12
2005-11-02
CVE-2000-0461
http://www.securityfocus.com/bid/1270
BID:1270
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:19.semconfig.asc
FREEBSD:FreeBSD-SA-00:19
ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-004.txt.asc
NETBSD:NetBSD-SA2000-004
http://www.openbsd.org/errata26.html#semconfig
OPENBSD:20000526
XF:bsd-semaphore-dos
CVE-2000-0462
ftpd in NetBSD 1.4.2 does not properly parse entries in /etc/ftpchroot and does not chroot the specified users, which allows those users to access other files outside of their home directory.
2000-07-12
2004-09-02
CVE-2000-0462
http://www.securityfocus.com/bid/1273
BID:1273
ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-006.txt.asc
NETBSD:NetBSD-SA2000-006
http://www.osvdb.org/1366
OSVDB:1366
XF:netbsd-ftpchroot-parsing
CVE-2000-0463
BeOS 5.0 allows remote attackers to cause a denial of service via fragmented TCP packets.
2000-07-12
2005-11-02
CVE-2000-0463
http://www.securityfocus.com/bid/1222
BID:1222
http://archives.neohapsis.com/archives/bugtraq/2000-05/0197.html
BUGTRAQ:20000517 AUX Security Advisory on Be/OS 5.0 (DoS)
XF:beos-tcp-frag-dos
CVE-2000-0464
Internet Explorer 4.x and 5.x allows remote attackers to execute arbitrary commands via a buffer overflow in the ActiveX parameter parsing capability, aka the "Malformed Component Attribute" vulnerability.
2000-07-12
2005-11-02
CVE-2000-0464
http://www.securityfocus.com/bid/1223
BID:1223
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-033
MS:MS00-033
http://www.microsoft.com/technet/support/kb.asp?ID=261257
MSKB:Q261257
XF:ie-malformed-component-attribute
CVE-2000-0465
Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files via the frame, aka the "Frame Domain Verification" vulnerability.
2000-07-12
2016-10-06
CVE-2000-0465
http://www.securityfocus.com/bid/1224
BID:1224
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-033
MS:MS00-033
http://www.microsoft.com/technet/support/kb.asp?ID=251108
MSKB:Q251108
http://www.microsoft.com/technet/support/kb.asp?ID=255676
MSKB:Q255676
XF:ie-frame-domain-verification
CVE-2000-0466
AIX cdmount allows local users to gain root privileges via shell metacharacters.
2000-10-13
2005-11-02
CVE-2000-0466
http://www.securityfocus.com/bid/1384
BID:1384
http://xforce.iss.net/alerts/advise55.php
ISS:20000620 Insecure call of external program in AIX cdmount
XF:aix-cdmount-insecure-call
CVE-2000-0467
Buffer overflow in Linux splitvt 1.6.3 and earlier allows local users to gain root privileges via a long password in the screen locking function.
2000-10-13
2005-11-02
CVE-2000-0467
http://www.securityfocus.com/bid/1346
BID:1346
http://archives.neohapsis.com/archives/bugtraq/2000-06/0125.html
BUGTRAQ:20000614 Splitvt exploit
DEBIAN:20000605a
XF:splitvt-screen-lock-bo
CVE-2000-0468
man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.
2000-10-13
2005-11-02
CVE-2000-0468
http://www.securityfocus.com/bid/1302
BID:1302
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.SOL.4.02.10006021014400.4779-100000@nofud.nwest.attws.com
BUGTRAQ:20000601 HP Security vulnerability in the man command
XF:hp-man-file-overwrite
CVE-2000-0469
Selena Sol WebBanner 4.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-10-13
2005-11-02
CVE-2000-0469
http://www.securityfocus.com/bid/1347
BID:1347
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-06-22&msg=ILENKALMCAFBLHBGEOFKGEJCCAAA.jwesterink@jwesterink.daxis.nl
BUGTRAQ:20000613 CGI: Selena Sol's WebBanner ( Random Banner Generator ) Vulnerability
http://www.securityfocus.com/templates/archive.pike?list=1&msg=4.2.0.58.20000620193604.00979950@mail.clark.net
BUGTRAQ:20000620 Re: CGI: Selena Sol's WebBanner ( Random Banner Generator ) Vulnerability
XF:webbanner-input-validation-exe
CVE-2000-0470
Allegro RomPager HTTP server allows remote attackers to cause a denial of service via a malformed authentication request.
2000-10-13
2007-02-22
CVE-2000-0470
http://www.securityfocus.com/bid/1290
BID:1290
http://archives.neohapsis.com/archives/bugtraq/2000-05/0398.html
BUGTRAQ:20000601 Hardware Exploit - Gets network Down
https://exchange.xforce.ibmcloud.com/vulnerabilities/4588
XF:rompager-malformed-dos(4588)
CVE-2000-0471
Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.
2000-10-13
2004-09-02
CVE-2000-0471
http://www.securityfocus.com/bid/1348
BID:1348
http://archives.neohapsis.com/archives/bugtraq/2000-06/0114.html
BUGTRAQ:20000614 Vulnerability in Solaris ufsrestore
http://www.kb.cert.org/vuls/id/36866
CERT-VN:VU#36866
http://www.osvdb.org/1398
OSVDB:1398
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/210
SUN:00210
SUNBUG:4339366
https://exchange.xforce.ibmcloud.com/vulnerabilities/4711
XF:sol-ufsrestore-bo(4711)
CVE-2000-0472
Buffer overflow in innd 2.2.2 allows remote attackers to execute arbitrary commands via a cancel request containing a long message ID.
2000-10-13
2005-11-02
CVE-2000-0472
http://www.securityfocus.com/bid/1316
BID:1316
http://archives.neohapsis.com/archives/bugtraq/2000-06/0003.html
BUGTRAQ:20000106 innd 2.2.2 remote buffer overflow
http://archives.neohapsis.com/archives/bugtraq/2000-07/0097.html
BUGTRAQ:20000707 inn update
http://archives.neohapsis.com/archives/bugtraq/2000-07/0298.html
BUGTRAQ:20000721 [ANNOUNCE] INN 2.2.3 available
http://archives.neohapsis.com/archives/bugtraq/2000-07/0330.html
BUGTRAQ:20000722 MDKSA-2000:023 inn update
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-016.0.txt
CALDERA:CSSA-2000-016.0
https://exchange.xforce.ibmcloud.com/vulnerabilities/4615
XF:innd-cancel-overflow(4615)
CVE-2000-0473
Buffer overflow in AnalogX SimpleServer 1.05 allows a remote attacker to cause a denial of service via a long GET request for a program in the cgi-bin directory.
2000-07-12
2005-11-02
CVE-2000-0473
http://www.securityfocus.com/bid/1349
BID:1349
BUGTRAQ:19991231 Local / Remote GET Buffer Overflow Vulnerability in AnalogX SimpleServer:WWW HTTP Server v1.1
http://www.analogx.com/contents/download/network/sswww.htm
MISC:http://www.analogx.com/contents/download/network/sswww.htm
CVE-2000-0474
Real Networks RealServer 7.x allows remote attackers to cause a denial of service via a malformed request for a page in the viewsource directory.
2000-10-13
2005-11-02
CVE-2000-0474
http://www.securityfocus.com/bid/1288
BID:1288
http://archives.neohapsis.com/archives/bugtraq/2000-05/0410.html
BUGTRAQ:20000601 Remote DoS attack in Real Networks Real Server (Strike #2) Vulnerability
http://archives.neohapsis.com/archives/bugtraq/2000-05/0427.html
BUGTRAQ:20000601 Remote DoS attack in RealServer: USSR-2000043
https://exchange.xforce.ibmcloud.com/vulnerabilities/4587
XF:realserver-malformed-remote-dos(4587)
CVE-2000-0475
Windows 2000 allows a local user process to access another user's desktop within the same windows station, aka the "Desktop Separation" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0475
http://www.securityfocus.com/bid/1350
BID:1350
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-020
MS:MS00-020
https://exchange.xforce.ibmcloud.com/vulnerabilities/4714
XF:win2k-desktop-separation(4714)
CVE-2000-0476
xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized.
2000-07-12
2016-11-17
CVE-2000-0476
http://www.securityfocus.com/bid/1298
BID:1298
http://archives.neohapsis.com/archives/bugtraq/2000-05/0420.html
BUGTRAQ:20000601 Re: [rootshell.com] Xterm DoS Attack
http://archives.neohapsis.com/archives/bugtraq/2000-05/0409.html
BUGTRAQ:20000601 [rootshell.com] Xterm DoS Attack
CVE-2000-0477
Buffer overflow in Norton Antivirus for Exchange (NavExchange) allows remote attackers to cause a denial of service via a .zip file that contains long file names.
2000-10-13
2005-11-02
CVE-2000-0477
http://www.securityfocus.com/bid/1351
BID:1351
http://archives.neohapsis.com/archives/bugtraq/2000-06/0136.html
BUGTRAQ:20000614 Vulnerabilities in Norton Antivirus for Exchange
https://exchange.xforce.ibmcloud.com/vulnerabilities/4710
XF:antivirus-nav-zip-bo(4710)
CVE-2000-0478
In some cases, Norton Antivirus for Exchange (NavExchange) enters a "fail-open" state which allows viruses to pass through the server.
2000-10-13
2004-09-02
CVE-2000-0478
http://www.securityfocus.com/bid/1351
BID:1351
http://archives.neohapsis.com/archives/bugtraq/2000-06/0136.html
BUGTRAQ:20000614 Vulnerabilities in Norton Antivirus for Exchange
http://www.osvdb.org/6266
OSVDB:6266
https://exchange.xforce.ibmcloud.com/vulnerabilities/4709
XF:antivirus-nav-fail-open(4709)
CVE-2000-0479
Dragon FTP server allows remote attackers to cause a denial of service via a long USER command.
2000-07-12
2016-10-17
CVE-2000-0479
http://www.securityfocus.com/bid/1352
BID:1352
http://marc.info/?l=bugtraq&m=96113734714517&w=2
BUGTRAQ:20000616 Multiples Remotes DoS Attacks in Dragon Server v1.00 and v2.00
CVE-2000-0480
Dragon telnet server allows remote attackers to cause a denial of service via a long username.
2000-07-12
2016-10-17
CVE-2000-0480
http://www.securityfocus.com/bid/1352
BID:1352
http://marc.info/?l=bugtraq&m=96113734714517&w=2
BUGTRAQ:20000616 Multiples Remotes DoS Attacks in Dragon Server v1.00 and v2.00
CVE-2000-0481
Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name.
2000-10-13
2005-11-02
CVE-2000-0481
http://www.securityfocus.com/bid/1380
BID:1380
http://securityfocus.com/templates/archive.pike?list=82&date=2000-06-22&msg=00060200422401.01667@lez
VULN-DEV:20000601 Kmail heap overflow
https://exchange.xforce.ibmcloud.com/vulnerabilities/4993
XF:kde-kmail-attachment-dos(4993)
CVE-2000-0482
Check Point Firewall-1 allows remote attackers to cause a denial of service by sending a large number of malformed fragmented IP packets.
2000-10-13
2004-09-02
CVE-2000-0482
http://www.securityfocus.com/bid/1312
BID:1312
http://archives.neohapsis.com/archives/bugtraq/2000-05/0473.html
BUGTRAQ:20000605 FW-1 IP Fragmentation Vulnerability
http://www.checkpoint.com/techsupport/alerts/list_vun.html#IP_Fragmentation
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#IP_Fragmentation
http://www.osvdb.org/1379
OSVDB:1379
https://exchange.xforce.ibmcloud.com/vulnerabilities/4609
XF:fw1-packet-fragment-dos(4609)
CVE-2000-0483
The DocumentTemplate package in Zope 2.2 and earlier allows a remote attacker to modify DTMLDocuments or DTMLMethods without authorization.
2000-10-13
2004-09-02
CVE-2000-0483
http://www.securityfocus.com/bid/1354
BID:1354
http://archives.neohapsis.com/archives/bugtraq/2000-06/0144.html
BUGTRAQ:20000615 [Brian@digicool.com: [Zope] Zope security alert and 2.1.7 update [*important*]]
http://archives.neohapsis.com/archives/bugtraq/2000-07/0412.html
BUGTRAQ:20000728 MDKSA-2000:026 Zope update
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000616103807.A3768@conectiva.com.br
BUGTRAQ:2000615 Conectiva Linux Security Announcement - ZOPE
http://www.zope.org/Products/Zope/Hotfix_06_16_2000/security_alert
CONFIRM:http://www.zope.org/Products/Zope/Hotfix_06_16_2000/security_alert
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00%3A38.zope.asc
FREEBSD:FreeBSD-SA-00:38
http://www.redhat.com/support/errata/RHSA-2000-038.html
REDHAT:RHSA-2000:038
https://exchange.xforce.ibmcloud.com/vulnerabilities/4716
XF:zope-dtml-remote-modify(4716)
CVE-2000-0484
Small HTTP Server ver 3.06 contains a memory corruption bug causing a memory overflow. The overflowed buffer crashes into a Structured Exception Handler resulting in a Denial of Service.
2000-10-13
2021-12-22
CVE-2000-0484
http://www.securityfocus.com/bid/1355
BID:1355
http://marc.info/?l=bugtraq&m=96113651713414&w=2
BUGTRAQ:20000616 Remote DoS Attack in Small HTTP Server ver. 1.212 Vulnerability
https://gist.github.com/0xHop/66609ec1e243b913361e1acfa5253806
MISC:https://gist.github.com/0xHop/66609ec1e243b913361e1acfa5253806
http://marc.info/?l=ntbugtraq&m=96151775004229&w=2
NTBUGTRAQ:20000616 Remote DoS Attack in Small HTTP Server ver. 1.212 Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/4692
XF:small-http-get-overflow-dos(4692)
CVE-2000-0485
Microsoft SQL Server allows local users to obtain database passwords via the Data Transformation Service (DTS) package Properties dialog, aka the "DTS Password" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0485
http://www.securityfocus.com/bid/1292
BID:1292
http://www.securityfocus.com/archive/1/62771
BUGTRAQ:20000530 Fw: Steal Passwords Using SQL Server EM
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-041
MS:MS00-041
https://exchange.xforce.ibmcloud.com/vulnerabilities/4582
XF:mssql-dts-reveal-passwords(4582)
CVE-2000-0486
Buffer overflow in Cisco TACACS+ tac_plus server allows remote attackers to cause a denial of service via a malformed packet with a long length field.
2000-10-13
2005-11-02
CVE-2000-0486
http://www.securityfocus.com/bid/1293
BID:1293
http://archives.neohapsis.com/archives/bugtraq/2000-05/0369.html
BUGTRAQ:20000530 An Analysis of the TACACS+ Protocol and its Implementations
http://archives.neohapsis.com/archives/bugtraq/2000-05/0370.html
CONFIRM:http://archives.neohapsis.com/archives/bugtraq/2000-05/0370.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/4985
XF:tacacsplus-packet-length-dos(4985)
CVE-2000-0487
The Protected Store in Windows 2000 does not properly select the strongest encryption when available, which causes it to use a default of 40-bit encryption instead of 56-bit DES encryption, aka the "Protected Store Key Length" vulnerability.
2000-07-12
2018-10-12
CVE-2000-0487
http://www.securityfocus.com/bid/1295
BID:1295
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-032
MS:MS00-032
CVE-2000-0488
Buffer overflow in ITHouse mail server 1.04 allows remote attackers to execute arbitrary commands via a long RCPT TO mail command.
2001-01-22
2005-11-02
CVE-2000-0488
http://www.securityfocus.com/bid/1285
BID:1285
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q2/0148.html
BUGTRAQ:20000601 DST2K0007: Buffer Overrun in ITHouse Mail Server v1.04
https://exchange.xforce.ibmcloud.com/vulnerabilities/4580
XF:ithouse-rcpt-overflow(4580)
CVE-2000-0489
FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.
2000-10-13
2005-11-02
CVE-2000-0489
http://www.securityfocus.com/bid/622
BID:622
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.9908270039010.16315-100000@thetis.deor.org
BUGTRAQ:19990826 Local DoS in FreeBSD
http://www.securityfocus.com/templates/archive.pike?list=1&msg=NCBBKFKDOLAGKIAPMILPCEJLCEAA.labs@ussrback.com
BUGTRAQ:20000601 Local FreeBSD, Openbsd, NetBSD, DoS Vulnerability - Mac OS X affected
https://exchange.xforce.ibmcloud.com/vulnerabilities/3298
XF:bsd-setsockopt-dos(3298)
CVE-2000-0490
Buffer overflow in the NetWin DSMTP 2.7q in the NetWin dmail package allows remote attackers to execute arbitrary commands via a long ETRN request.
2000-10-13
2005-11-02
CVE-2000-0490
http://www.securityfocus.com/bid/1297
BID:1297
http://archives.neohapsis.com/archives/bugtraq/2000-05/0407.html
BUGTRAQ:20000601 Netwin's Dmail package
http://netwinsite.com/dmail/security.htm
CONFIRM:http://netwinsite.com/dmail/security.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/4579
XF:dmail-etrn-dos(4579)
CVE-2000-0491
Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.
2000-07-12
2002-04-27
CVE-2000-0491
http://www.securityfocus.com/bid/1233
BID:1233
http://www.securityfocus.com/bid/1279
BID:1279
http://www.securityfocus.com/bid/1370
BID:1370
http://archives.neohapsis.com/archives/bugtraq/2000-05/0241.html
BUGTRAQ:20000521 "gdm" remote hole
http://archives.neohapsis.com/archives/bugtraq/2000-06/0025.html
BUGTRAQ:20000607 Conectiva Linux Security Announcement - gdm
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-013.0.txt
CALDERA:CSSA-2000-013.0
http://www.novell.com/linux/security/advisories/suse_security_announce_49.html
SUSE:20000524 Security hole in gdm <= 2.0beta4-25
CVE-2000-0492
PassWD 1.2 uses weak encryption (trivial encoding) to store passwords, which allows an attacker who can read the password file to easliy decrypt the passwords.
2000-07-12
2003-05-08
CVE-2000-0492
http://www.securityfocus.com/bid/1300
BID:1300
http://archives.neohapsis.com/archives/bugtraq/2000-05/0450.html
BUGTRAQ:20000609 Insecure encryption in PassWD v1.2
CVE-2000-0493
Buffer overflow in Simple Network Time Sync (SMTS) daemon allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long string.
2000-10-13
2005-11-02
CVE-2000-0493
http://www.securityfocus.com/bid/1289
BID:1289
http://archives.neohapsis.com/archives/vuln-dev/2000-q2/0843.html
VULN-DEV:20000601 Vulnerability in SNTS
https://exchange.xforce.ibmcloud.com/vulnerabilities/4602
XF:timesync-bo-execute(4602)
CVE-2000-0494
Veritas Volume Manager creates a world writable .server_pids file, which allows local users to add arbitrary commands into the file, which is then executed by the vmsa_server script.
2000-10-13
2005-11-02
CVE-2000-0494
http://www.securityfocus.com/bid/1356
BID:1356
http://archives.neohapsis.com/archives/bugtraq/2000-06/0151.html
BUGTRAQ:20000616 Veritas Volume Manager 3.0.x hole
http://seer.support.veritas.com/tnotes/volumeman/230053.htm
CONFIRM:http://seer.support.veritas.com/tnotes/volumeman/230053.htm
XF:veritas-volume-manager
CVE-2000-0495
Microsoft Windows Media Encoder allows remote attackers to cause a denial of service via a malformed request, aka the "Malformed Windows Media Encoder Request" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0495
http://www.securityfocus.com/bid/1282
BID:1282
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-038
MS:MS00-038
https://exchange.xforce.ibmcloud.com/vulnerabilities/4585
XF:ms-malformed-media-dos(4585)
CVE-2000-0497
IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
2000-10-13
2005-11-02
CVE-2000-0497
http://www.securityfocus.com/bid/1328
BID:1328
http://www-4.ibm.com/software/webservers/appserv/efix.html
CONFIRM:http://www-4.ibm.com/software/webservers/appserv/efix.html
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0263.html
NTBUGTRAQ:20000612 IBM WebSphere JSP showcode vulnerability
XF:websphere-jsp-source-read
CVE-2000-0498
Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
2001-01-22
2005-11-02
CVE-2000-0498
http://www.securityfocus.com/bid/1328
BID:1328
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0250.html
NTBUGTRAQ:20000608 Potential vulnerability in Unify eWave ServletExec
https://exchange.xforce.ibmcloud.com/vulnerabilities/4649
XF:ewave-servletexec-jsp-source-read(4649)
CVE-2000-0499
The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
2000-10-13
2005-11-02
CVE-2000-0499
http://www.securityfocus.com/bid/1328
BID:1328
http://developer.bea.com/alerts/security_000612.html
CONFIRM:http://developer.bea.com/alerts/security_000612.html
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0262.htm
NTBUGTRAQ:20000612 BEA WebLogic JSP showcode vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/4694
XF:weblogic-jsp-source-read(4694)
CVE-2000-0500
The default configuration of BEA WebLogic 5.1.0 allows a remote attacker to view source code of programs by requesting a URL beginning with /file/, which causes the default servlet to display the file without further processing.
2000-10-13
2005-11-02
CVE-2000-0500
http://www.securityfocus.com/bid/1378
BID:1378
http://marc.info/?l=bugtraq&m=96161462915381&w=2
BUGTRAQ:20000621 BEA WebLogic /file/ showcode vulnerability
http://www.weblogic.com/docs51/admindocs/http.html#file
CONFIRM:http://www.weblogic.com/docs51/admindocs/http.html#file
https://exchange.xforce.ibmcloud.com/vulnerabilities/4775
XF:weblogic-file-source-read(4775)
CVE-2000-0501
Race condition in MDaemon 2.8.5.0 POP server allows local users to cause a denial of service by entering a UIDL command and quickly exiting the server.
2000-10-13
2005-11-02
CVE-2000-0501
http://www.securityfocus.com/bid/1366
BID:1366
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0277.html
NTBUGTRAQ:20000616 mdaemon 2.8.5.0 WinNT and Win9x remote DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/4745
XF:mdaemon-pass-dos(4745)
CVE-2000-0502
Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion.
2003-04-02
2002-02-26
CVE-2000-0502
http://www.securityfocus.com/bid/1326
BID:1326
http://archives.neohapsis.com/archives/bugtraq/2000-06/0038.html
BUGTRAQ:20000607 Mcafee Alerting DOS vulnerability
http://www.osvdb.org/6287
OSVDB:6287
https://exchange.xforce.ibmcloud.com/vulnerabilities/4641
XF:mcafee-alerting-dos(4641)
CVE-2000-0503
The IFRAME of the WebBrowser control in Internet Explorer 5.01 allows a remote attacker to violate the cross frame security policy via the NavigateComplete2 event.
2000-07-12
2002-08-14
CVE-2000-0503
http://www.securityfocus.com/bid/1311
BID:1311
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q2/0154.html
BUGTRAQ:20000606 IE 5 Cross-frame security vulnerability using IFRAME and WebBrowser control
CVE-2000-0504
libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro.
2001-05-07
2005-11-02
CVE-2000-0504
http://www.securityfocus.com/bid/1369
BID:1369
http://archives.neohapsis.com/archives/bugtraq/2000-06/0170.html
BUGTRAQ:20000619 XFree86: libICE DoS
http://www.xfree86.org/security/
CONFIRM:http://www.xfree86.org/security/
XF:linux-libice-dos
CVE-2000-0505
The Apache 1.3.x HTTP server for Windows platforms allows remote attackers to list directory contents by requesting a URL containing a large number of / characters.
2000-10-13
2021-06-06
CVE-2000-0505
http://www.securityfocus.com/bid/1284
BID:1284
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.BSF.4.20.0006031912360.45740-100000@alive.znep.com
BUGTRAQ:20000603 Re: IBM HTTP SERVER / APACHE
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073140 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210606 svn commit: r1075470 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/4575
XF:ibm-http-file-retrieve(4575)
CVE-2000-0506
The "capabilities" feature in Linux before 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."
2000-10-13
2004-09-02
CVE-2000-0506
http://www.securityfocus.com/bid/1322
BID:1322
http://archives.neohapsis.com/archives/bugtraq/2000-06/0063.html
BUGTRAQ:20000608 CONECTIVA LINUX SECURITY ANNOUNCEMENT - kernel
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0006090852340.3475-300000@alfa.elzabsoft.pl
BUGTRAQ:20000609 Sendmail & procmail local root exploits on Linux kernel up to 2.2.16pre5
http://archives.neohapsis.com/archives/bugtraq/2000-06/0062.html
BUGTRAQ:20000609 Trustix Security Advisory
http://www.redhat.com/support/errata/RHSA-2000-037.html
REDHAT:RHSA-2000:037
ftp://sgigate.sgi.com/security/20000802-01-P
SGI:20000802-01-P
TURBO:TLSA2000013-1
XF:linux-kernel-capabilities
CVE-2000-0507
Imate Webmail Server 2.5 allows remote attackers to cause a denial of service via a long HELO command.
2000-10-13
2005-11-02
CVE-2000-0507
http://www.securityfocus.com/bid/1286
BID:1286
http://marc.info/?l=bugtraq&m=95990195708509&w=2
BUGTRAQ:20000601 DST2K0006: Denial of Service Possibility in Imate WebMail Server
https://exchange.xforce.ibmcloud.com/vulnerabilities/4586
XF:nt-webmail-dos(4586)
CVE-2000-0508
rpc.lockd in Red Hat Linux 6.1 and 6.2 allows remote attackers to cause a denial of service via a malformed request.
2000-10-13
2005-11-02
CVE-2000-0508
http://www.securityfocus.com/bid/1372
BID:1372
http://archives.neohapsis.com/archives/bugtraq/2000-06/0073.html
BUGTRAQ:20000608 Remote DOS in linux rpc.lockd
https://exchange.xforce.ibmcloud.com/vulnerabilities/5050
XF:linux-lockd-remote-dos(5050)
CVE-2000-0509
Buffer overflows in the finger and whois demonstration scripts in Sambar Server 4.3 allow remote attackers to execute arbitrary commands via a long hostname.
2000-07-12
2016-10-17
CVE-2000-0509
http://www.securityfocus.com/bid/1287
BID:1287
http://marc.info/?l=bugtraq&m=95990103207665&w=2
BUGTRAQ:20000601 DST2K0008: Buffer Overrun in Sambar Server 4.3
CVE-2000-0510
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a malformed IPP request.
2000-10-13
2005-11-02
CVE-2000-0510
http://www.securityfocus.com/bid/1373
BID:1373
http://archives.neohapsis.com/archives/bugtraq/2000-06/0188.html
BUGTRAQ:20000620 CUPS DoS Bugs
ftp://ftp.easysw.com/pub/cups/1.0.5/cups-DoS.patch
CONFIRM:ftp://ftp.easysw.com/pub/cups/1.0.5/cups-DoS.patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/4846
XF:debian-cups-malformed-ipp(4846)
CVE-2000-0511
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a CGI POST request.
2000-10-13
2005-11-02
CVE-2000-0511
http://www.securityfocus.com/bid/1373
BID:1373
http://archives.neohapsis.com/archives/bugtraq/2000-06/0188.html
BUGTRAQ:20000620 CUPS DoS Bugs
ftp://ftp.easysw.com/pub/cups/1.0.5/cups-DoS.patch
CONFIRM:ftp://ftp.easysw.com/pub/cups/1.0.5/cups-DoS.patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/4846
XF:debian-cups-posts(4846)
CVE-2000-0512
CUPS (Common Unix Printing System) 1.04 and earlier does not properly delete request files, which allows a remote attacker to cause a denial of service.
2000-10-13
2005-11-02
CVE-2000-0512
http://www.securityfocus.com/bid/1373
BID:1373
http://archives.neohapsis.com/archives/bugtraq/2000-06/0188.html
BUGTRAQ:20000620 CUPS DoS Bugs
ftp://ftp.easysw.com/pub/cups/1.0.5/cups-DoS.patch
CONFIRM:ftp://ftp.easysw.com/pub/cups/1.0.5/cups-DoS.patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/4846
XF:debian-cups-posts(4846)
CVE-2000-0513
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service by authenticating with a user name that does not exist or does not have a shadow password.
2000-10-13
2005-11-02
CVE-2000-0513
http://www.securityfocus.com/bid/1373
BID:1373
http://archives.neohapsis.com/archives/bugtraq/2000-06/0188.html
BUGTRAQ:20000620 CUPS DoS Bugs
ftp://ftp.easysw.com/pub/cups/1.0.5/cups-DoS.patch
CONFIRM:ftp://ftp.easysw.com/pub/cups/1.0.5/cups-DoS.patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/4846
XF:debian-cups-posts(4846)
CVE-2000-0514
GSSFTP FTP daemon in Kerberos 5 1.1.x does not properly restrict access to some FTP commands, which allows remote attackers to cause a denial of service, and local users to gain root privileges.
2000-10-13
2004-09-02
CVE-2000-0514
http://www.securityfocus.com/bid/1374
BID:1374
http://www.securityfocus.com/templates/archive.pike?list=1&msg=ldvsnufao18.fsf@saint-elmos-fire.mit.edu
BUGTRAQ:20000614 Security Advisory: REMOTE ROOT VULNERABILITY IN GSSFTP DAEMON
http://web.mit.edu/kerberos/www/advisories/ftp.txt
CONFIRM:http://web.mit.edu/kerberos/www/advisories/ftp.txt
http://www.osvdb.org/4885
OSVDB:4885
https://exchange.xforce.ibmcloud.com/vulnerabilities/4734
XF:kerberos-gssftpd-dos(4734)
CVE-2000-0515
The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.
2000-10-13
2005-11-02
CVE-2000-0515
http://www.securityfocus.com/bid/1327
BID:1327
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200006070511.OAA05492@dogfoot.hackerslab.org
BUGTRAQ:20000607 [ Hackerslab bug_paper ] HP-UX SNMP daemon vulnerability
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200006090640.XAA00779@hpchs.cup.hp.com
BUGTRAQ:20000608 Re: HP-UX SNMP daemon vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/4643
XF:hpux-snmp-daemon(4643)
CVE-2000-0516
When configured to store configuration information in an LDAP directory, Shiva Access Manager 5.0.0 stores the root DN (Distinguished Name) name and password in cleartext in a file that is world readable, which allows local users to compromise the LDAP server.
2000-10-13
2005-11-02
CVE-2000-0516
http://www.securityfocus.com/bid/1329
BID:1329
http://archives.neohapsis.com/archives/bugtraq/2000-06/0008.html
BUGTRAQ:20000606 Shiva Access Manager 5.0.0 Plaintext LDAP root password.
https://exchange.xforce.ibmcloud.com/vulnerabilities/4612
XF:shiva-plaintext-ldap-password(4612)
CVE-2000-0517
Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for a different web site, which could allow remote attackers to spoof a legitimate web site by compromising that site's DNS information.
2000-10-13
2005-11-02
CVE-2000-0517
http://www.securityfocus.com/bid/1260
BID:1260
http://www.cert.org/advisories/CA-2000-08.html
CERT:CA-2000-08
https://exchange.xforce.ibmcloud.com/vulnerabilities/4550
XF:netscape-ssl-certificate(4550)
CVE-2000-0518
Internet Explorer 4.x and 5.x does not properly verify all contents of an SSL certificate if a connection is made to the server via an image or a frame, aka one of two different "SSL Certificate Validation" vulnerabilities.
2000-10-13
2005-11-02
CVE-2000-0518
http://www.securityfocus.com/bid/1309
BID:1309
http://www.cert.org/advisories/CA-2000-10.html
CERT:CA-2000-10
http://www.acrossecurity.com/aspr/ASPR-1999-12-15-1-PUB.txt
MISC:http://www.acrossecurity.com/aspr/ASPR-1999-12-15-1-PUB.txt
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-039
MS:MS00-039
https://exchange.xforce.ibmcloud.com/vulnerabilities/4624
XF:ie-invalid-frame-image-certificate(4624)
CVE-2000-0519
Internet Explorer 4.x and 5.x does not properly re-validate an SSL certificate if the user establishes a new SSL session with the same server during the same Internet Explorer session, aka one of two different "SSL Certificate Validation" vulnerabilities.
2000-10-13
2005-11-02
CVE-2000-0519
http://www.securityfocus.com/bid/1309
BID:1309
http://www.cert.org/advisories/CA-2000-10.html
CERT:CA-2000-10
http://www.acrossecurity.com/aspr/ASPR-1999-12-15-1-PUB.txt
MISC:http://www.acrossecurity.com/aspr/ASPR-1999-12-15-1-PUB.txt
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-039
MS:MS00-039
https://exchange.xforce.ibmcloud.com/vulnerabilities/4627
XF:ie-revalidate-certificate(4627)
CVE-2000-0520
Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.
2000-07-12
2016-10-17
CVE-2000-0520
http://www.securityfocus.com/bid/1330
BID:1330
http://marc.info/?l=bugtraq&m=96240393814071&w=2
BUGTRAQ:20000630 CONECTIVA LINUX SECURITY ANNOUNCEMENT - dump
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=11880
MISC:http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=11880
CVE-2000-0521
Savant web server allows remote attackers to read source code of CGI scripts via a GET request that does not include the HTTP version number.
2000-10-13
2005-11-02
CVE-2000-0521
http://www.securityfocus.com/bid/1313
BID:1313
http://archives.neohapsis.com/archives/bugtraq/2000-05/0469.html
BUGTRAQ:20000605 MDMA Advisory #5: Reading of CGI Scripts under Savant Webserver
https://exchange.xforce.ibmcloud.com/vulnerabilities/4616
XF:savant-source-read(4616)
CVE-2000-0522
RSA ACE/Server allows remote attackers to cause a denial of service by flooding the server's authentication request port with UDP packets, which causes the server to crash.
2000-10-13
2005-11-02
CVE-2000-0522
http://www.securityfocus.com/bid/1332
BID:1332
http://www.securityfocus.com/templates/archive.pike?list=1&msg=011a01bfd14c$3c206960$050010ac@xtranet.co.uk
BUGTRAQ:20000608 Potential DoS Attack on RSA's ACE/Server
http://archives.neohapsis.com/archives/bugtraq/2000-07/0197.html
BUGTRAQ:20000714 Re: RSA Aceserver UDP Flood Vulnerability
ftp://ftp.securid.com/support/outgoing/dos/readme.txt
CONFIRM:ftp://ftp.securid.com/support/outgoing/dos/readme.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/5053
XF:aceserver-udp-packet-dos(5053)
CVE-2000-0523
Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command.
2001-01-22
2005-11-02
CVE-2000-0523
http://www.securityfocus.com/bid/1315
BID:1315
http://archives.neohapsis.com/archives/bugtraq/2000-06/0009.html
BUGTRAQ:20000606 MDMA Advisory #6: EServ Logging Heap Overflow Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/4614
XF:eserv-logging-overflow(4614)
CVE-2000-0524
Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From.
2000-07-12
2003-05-08
CVE-2000-0524
http://www.securityfocus.com/bid/1333
BID:1333
http://archives.neohapsis.com/archives/bugtraq/2000-06/0045.html
BUGTRAQ:20000604 Microsoft Outlook (Express) bug..
CVE-2000-0525
OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.
2000-10-13
2004-09-02
CVE-2000-0525
http://www.securityfocus.com/bid/1334
BID:1334
http://archives.neohapsis.com/archives/bugtraq/2000-06/0065.html
BUGTRAQ:20000609 OpenSSH's UseLogin option allows remote access with root privilege.
http://www.openbsd.org/errata.html#uselogin
OPENBSD:20000606 The non-default UseLogin feature in /etc/sshd_config is broken and should not be used.
http://www.osvdb.org/341
OSVDB:341
https://exchange.xforce.ibmcloud.com/vulnerabilities/4646
XF:openssh-uselogin-remote-exec(4646)
CVE-2000-0526
mailview.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-07-12
2003-03-21
CVE-2000-0526
http://www.securityfocus.com/bid/1335
BID:1335
http://archives.neohapsis.com/archives/bugtraq/2000-06/0081.html
BUGTRAQ:20000609 Mailstudio2000 CGI Vulnerabilities [S0ftPj.4]
CVE-2000-0527
userreg.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
2000-07-12
2003-03-21
CVE-2000-0527
http://www.securityfocus.com/bid/1335
BID:1335
http://archives.neohapsis.com/archives/bugtraq/2000-06/0081.html
BUGTRAQ:20000609 Mailstudio2000 CGI Vulnerabilities [S0ftPj.4]
CVE-2000-0528
Net Tools PKI Server does not properly restrict access to remote attackers when the XUDA template files do not contain absolute pathnames for other files.
2000-10-13
2004-09-02
CVE-2000-0528
http://www.securityfocus.com/bid/1364
BID:1364
http://archives.neohapsis.com/archives/bugtraq/2000-06/0166.html
BUGTRAQ:20000619 Net Tools PKI server exploits
ftp://ftp.tis.com/gauntlet/hide/pki/hotfix.txt
CONFIRM:ftp://ftp.tis.com/gauntlet/hide/pki/hotfix.txt
http://www.osvdb.org/4353
OSVDB:4353
https://exchange.xforce.ibmcloud.com/vulnerabilities/4743
XF:nettools-pki-unauthenticated-access(4743)
CVE-2000-0529
Net Tools PKI Server allows remote attackers to cause a denial of service via a long HTTP request.
2000-10-13
2004-09-02
CVE-2000-0529
http://www.securityfocus.com/bid/1363
BID:1363
http://archives.neohapsis.com/archives/bugtraq/2000-06/0166.html
BUGTRAQ:20000619 Net Tools PKI server exploits
ftp://ftp.tis.com/gauntlet/hide/pki/hotfix.txt
CONFIRM:ftp://ftp.tis.com/gauntlet/hide/pki/hotfix.txt
http://www.osvdb.org/4352
OSVDB:4352
https://exchange.xforce.ibmcloud.com/vulnerabilities/4744
XF:nettools-pki-http-bo(4744)
CVE-2000-0530
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
2000-10-13
2004-09-02
CVE-2000-0530
http://www.securityfocus.com/bid/1291
BID:1291
http://archives.neohapsis.com/archives/bugtraq/2000-05/0387.html
BUGTRAQ:20000531 KDE::KApplication feature?
ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-015.0.txt
CALDERA:CSSA-2000-015.0
http://www.redhat.com/support/errata/RHSA-2000-032.html
REDHAT:RHSA-2000:032
https://exchange.xforce.ibmcloud.com/vulnerabilities/4583
XF:kde-configuration-file-creation(4583)
CVE-2000-0531
Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets.
2000-07-12
2017-12-18
CVE-2000-0531
http://www.securityfocus.com/bid/1377
BID:1377
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10006201453090.1812-200000@apollo.aci.com.pl
BUGTRAQ:20000620 Bug in gpm
http://archives.neohapsis.com/archives/bugtraq/2000-07/0409.html
BUGTRAQ:20000728 MDKSA:2000-025 gpm update
http://www.redhat.com/support/errata/RHSA-2000-045.html
REDHAT:RHSA-2000:045
https://exchange.xforce.ibmcloud.com/vulnerabilities/5010
XF:linux-gpm-gpmctl-dos(5010)
CVE-2000-0532
A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered.
2000-10-13
2004-09-02
CVE-2000-0532
http://www.securityfocus.com/bid/1323
BID:1323
http://archives.neohapsis.com/archives/freebsd/2000-06/0031.html
FREEBSD:FreeBSD-SA-00:21
http://www.osvdb.org/1387
OSVDB:1387
https://exchange.xforce.ibmcloud.com/vulnerabilities/4638
XF:freebsd-ssh-ports(4638)
CVE-2000-0533
Vulnerability in cvconnect in SGI IRIX WorkShop allows local users to overwrite arbitrary files.
2000-10-13
2005-11-02
CVE-2000-0533
http://www.securityfocus.com/bid/1379
BID:1379
ftp://sgigate.sgi.com/security/20000601-01-P
SGI:20000601-01-P
https://exchange.xforce.ibmcloud.com/vulnerabilities/4725
XF:irix-workshop-cvconnect-overwrite(4725)
CVE-2000-0534
The apsfilter software in the FreeBSD ports package does not properly read user filter configurations, which allows local users to execute commands as the lpd user.
2000-10-13
2004-09-02
CVE-2000-0534
http://www.securityfocus.com/bid/1325
BID:1325
FREEBSD:FreeBSD-SA-00:22
http://www.osvdb.org/1389
OSVDB:1389
https://exchange.xforce.ibmcloud.com/vulnerabilities/4617
XF:apsfilter-elevate-privileges(4617)
CVE-2000-0535
OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak keys which may be more easily broken.
2000-07-12
2003-03-21
CVE-2000-0535
http://www.securityfocus.com/bid/1340
BID:1340
http://archives.neohapsis.com/archives/freebsd/2000-06/0083.html
FREEBSD:FreeBSD-SA-00:25
CVE-2000-0536
xinetd 2.1.8.x does not properly restrict connections if hostnames are used for access control and the connecting host does not have a reverse DNS entry.
2000-10-13
2005-11-02
CVE-2000-0536
http://www.securityfocus.com/bid/1381
BID:1381
http://www.synack.net/xinetd/
CONFIRM:http://www.synack.net/xinetd/
http://www.debian.org/security/2000/20000619
DEBIAN:20000619 xinetd: bug in access control mechanism
https://exchange.xforce.ibmcloud.com/vulnerabilities/4986
XF:xinetd-improper-restrictions(4986)
CVE-2000-0537
BRU backup software allows local users to append data to arbitrary files by specifying an alternate configuration file with the BRUEXECLOG environmental variable.
2000-10-13
2005-11-02
CVE-2000-0537
http://www.securityfocus.com/bid/1321
BID:1321
http://archives.neohapsis.com/archives/bugtraq/2000-06/0013.html
BUGTRAQ:20000606 BRU Vulnerability
http://www.calderasystems.com/support/security/advisories/CSSA-2000-018.0.txt
CALDERA:CSSA-2000-018.0
https://exchange.xforce.ibmcloud.com/vulnerabilities/4644
XF:bru-execlog-env-variable(4644)
CVE-2000-0538
ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password.
2000-10-13
2004-09-02
CVE-2000-0538
http://www.allaire.com/handlers/index.cfm?ID=16122&Method=Full
ALLAIRE:ASB00-14
http://www.securityfocus.com/bid/1314
BID:1314
http://marc.info/?l=bugtraq&m=96045469627806&w=2
BUGTRAQ:20000607 New Allaire ColdFusion DoS
http://www.osvdb.org/3399
OSVDB:3399
https://exchange.xforce.ibmcloud.com/vulnerabilities/4611
XF:coldfusion-parse-dos(4611)
CVE-2000-0539
Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet.
2000-10-13
2004-09-02
CVE-2000-0539
http://www.allaire.com/handlers/index.cfm?ID=16290&Method=Full
ALLAIRE:ASB00-015
http://www.securityfocus.com/bid/1386
BID:1386
http://www.osvdb.org/818
OSVDB:818
https://exchange.xforce.ibmcloud.com/vulnerabilities/4774
XF:jrun-read-sample-files(4774)
CVE-2000-0540
JSP sample files in Allaire JRun 2.3.x allow remote attackers to access arbitrary files (e.g. via viewsource.jsp) or obtain configuration information.
2000-10-13
2004-09-02
CVE-2000-0540
http://www.allaire.com/handlers/index.cfm?ID=16290&Method=Full
ALLAIRE:ASB00-015
http://www.securityfocus.com/bid/1386
BID:1386
http://www.osvdb.org/2713
OSVDB:2713
https://exchange.xforce.ibmcloud.com/vulnerabilities/4774
XF:jrun-read-sample-files(4774)
CVE-2000-0541
The Panda Antivirus console on port 2001 allows local users to execute arbitrary commands without authentication via the CMD command.
2001-05-07
2005-11-02
CVE-2000-0541
http://www.securityfocus.com/bid/1359
BID:1359
http://archives.neohapsis.com/archives/bugtraq/2000-06/0164.html
BUGTRAQ:20000617 Infosec.20000617.panda.a
https://exchange.xforce.ibmcloud.com/vulnerabilities/4707
XF:panda-antivirus-remote-admin(4707)
CVE-2000-0542
Tigris remote access server before 11.5.4.22 does not properly record Radius accounting information when a user fails the initial login authentication but subsequently succeeds.
2001-01-22
2005-11-02
CVE-2000-0542
http://www.securityfocus.com/bid/1345
BID:1345
http://archives.neohapsis.com/archives/bugtraq/2000-06/0104.html
BUGTRAQ:20000612 ACC/Ericsson Tigris Accounting Failure
https://exchange.xforce.ibmcloud.com/vulnerabilities/4705
XF:tigris-radius-login-failure(4705)
CVE-2000-0543
The command port for PGP Certificate Server 2.5.0 and 2.5.1 allows remote attackers to cause a denial of service if their hostname does not have a reverse DNS entry and they connect to port 4000.
2000-07-12
2017-12-18
CVE-2000-0543
http://www.securityfocus.com/bid/1343
BID:1343
http://archives.neohapsis.com/archives/bugtraq/2000-06/0107.html
BUGTRAQ:20000614 Remote DoS attack in Networks Associates PGP Certificate Server Version 2.5 Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/4695
XF:pgp-cert-server-dos(4695)
CVE-2000-0544
Windows NT and Windows 2000 hosts allow a remote attacker to cause a denial of service via malformed DCE/RPC SMBwriteX requests that contain an invalid data length.
2000-07-12
2003-05-08
CVE-2000-0544
http://www.securityfocus.com/bid/1304
BID:1304
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0231.html
NTBUGTRAQ:20000604 anonymous SMBwriteX DoS
CVE-2000-0545
Buffer overflow in mailx mail command (aka Mail) on Linux systems allows local users to gain privileges via a long -c (carbon copy) parameter.
2000-07-12
2003-03-21
CVE-2000-0545
http://www.securityfocus.com/bid/1305
BID:1305
http://archives.neohapsis.com/archives/bugtraq/2000-05/0435.html
BUGTRAQ:20000602 /usr/bin/Mail exploit for Slackware 7.0 (mail-slack.c)
http://www.debian.org/security/2000/20000605
DEBIAN:20000605 mailx: mail group exploit in mailx
CVE-2000-0546
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the lastrealm variable in the set_tgtkey function.
2000-07-12
2002-07-23
CVE-2000-0546
http://www.securityfocus.com/bid/1338
BID:1338
http://archives.neohapsis.com/archives/bugtraq/2000-06/0064.html
BUGTRAQ:20000609 Security Advisory: MULTIPLE DENIAL OF SERVICE VULNERABILITIES IN KRB4 KDC
http://www.cert.org/advisories/CA-2000-11.html
CERT:CA-2000-11
http://ciac.llnl.gov/ciac/bulletins/k-051.shtml
CIAC:K-051
http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
CONFIRM:http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
CVE-2000-0547
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the localrealm variable in the process_v4 function.
2000-07-12
2002-07-23
CVE-2000-0547
http://www.securityfocus.com/bid/1338
BID:1338
http://archives.neohapsis.com/archives/bugtraq/2000-06/0064.html
BUGTRAQ:20000609 Security Advisory: MULTIPLE DENIAL OF SERVICE VULNERABILITIES IN KRB4 KDC
http://www.cert.org/advisories/CA-2000-11.html
CERT:CA-2000-11
http://ciac.llnl.gov/ciac/bulletins/k-051.shtml
CIAC:K-051
http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
CONFIRM:http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
CVE-2000-0548
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the e_msg variable in the kerb_err_reply function.
2000-10-13
2004-09-02
CVE-2000-0548
http://archives.neohapsis.com/archives/bugtraq/2000-06/0064.html
BUGTRAQ:20000609 Security Advisory: MULTIPLE DENIAL OF SERVICE VULNERABILITIES IN KRB4 KDC
http://www.cert.org/advisories/CA-2000-11.html
CERT:CA-2000-11
http://ciac.llnl.gov/ciac/bulletins/k-051.shtml
CIAC:K-051
http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
CONFIRM:http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
http://www.osvdb.org/4875
OSVDB:4875
http://www.redhat.com/support/errata/RHSA-2000-031.html
REDHAT:RHSA-2000:031
XF:kerberos-emsg-bo
CVE-2000-0549
Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote attackers to cause a denial of service via a malformed request.
2000-10-13
2004-09-02
CVE-2000-0549
http://archives.neohapsis.com/archives/bugtraq/2000-06/0064.html
BUGTRAQ:20000609 Security Advisory: MULTIPLE DENIAL OF SERVICE VULNERABILITIES IN KRB4 KDC
http://www.cert.org/advisories/CA-2000-11.html
CERT:CA-2000-11
http://ciac.llnl.gov/ciac/bulletins/k-051.shtml
CIAC:K-051
http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
CONFIRM:http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
http://www.redhat.com/support/errata/RHSA-2000-031.html
REDHAT:RHSA-2000:031
CVE-2000-0550
Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote attackers to cause a denial of service.
2000-10-13
2004-09-02
CVE-2000-0550
http://www.securityfocus.com/bid/1465
BID:1465
http://archives.neohapsis.com/archives/bugtraq/2000-06/0064.html
BUGTRAQ:20000609 Security Advisory: MULTIPLE DENIAL OF SERVICE VULNERABILITIES IN KRB4 KDC
http://www.cert.org/advisories/CA-2000-11.html
CERT:CA-2000-11
http://ciac.llnl.gov/ciac/bulletins/k-051.shtml
CIAC:K-051
http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
CONFIRM:http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
http://www.redhat.com/support/errata/RHSA-2000-031.html
REDHAT:RHSA-2000:031
XF:kerberos-free-memory
CVE-2000-0551
The file transfer mechanism in Danware NetOp 6.0 does not provide authentication, which allows remote attackers to access and modify arbitrary files.
2002-03-09
2002-03-01
CVE-2000-0551
http://www.securityfocus.com/bid/1263
BID:1263
http://archives.neohapsis.com/archives/bugtraq/2000-05/0339.html
BUGTRAQ:20000523 I think
https://exchange.xforce.ibmcloud.com/vulnerabilities/4569
XF:danware-netop-bypass-security(4569)
CVE-2000-0552
ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information.
2000-10-13
2005-11-02
CVE-2000-0552
http://www.securityfocus.com/bid/1307
BID:1307
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0237.html
NTBUGTRAQ:20000606 ICQ2000A ICQmail temparary internet link vulnearbility
https://exchange.xforce.ibmcloud.com/vulnerabilities/4607
XF:icq-temp-link(4607)
CVE-2000-0553
Race condition in IPFilter firewall 3.4.3 and earlier, when configured with overlapping "return-rst" and "keep state" rules, allows remote attackers to bypass access restrictions.
2000-10-13
2004-09-02
CVE-2000-0553
http://www.securityfocus.com/bid/1308
BID:1308
http://archives.neohapsis.com/archives/bugtraq/2000-05/0326.html
BUGTRAQ:20000525 Security Vulnerability in IPFilter 3.3.15 and 3.4.3
http://www.osvdb.org/1377
OSVDB:1377
https://exchange.xforce.ibmcloud.com/vulnerabilities/4994
XF:ipfilter-firewall-race-condition(4994)
CVE-2000-0554
Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translated_path hidden form field.
2000-07-12
2003-03-21
CVE-2000-0554
http://www.securityfocus.com/bid/1320
BID:1320
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0246.html
NTBUGTRAQ:20000608 DST2K0010: DoS & Path Revealing Vulnerability in Ceilidh v2.60a
CVE-2000-0555
Ceilidh allows remote attackers to cause a denial of service via a large number of POST requests.
2000-10-13
2005-11-02
CVE-2000-0555
http://www.securityfocus.com/bid/1320
BID:1320
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0246.html
NTBUGTRAQ:20000608 DST2K0010: DoS & Path Revealing Vulnerability in Ceilidh v2.60a
https://exchange.xforce.ibmcloud.com/vulnerabilities/4622
XF:ceilidh-post-dos(4622)
CVE-2000-0556
Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to cause a denial of service by sending a large user name to the user dialog running on port 8002.
2000-10-13
2005-11-02
CVE-2000-0556
http://www.securityfocus.com/bid/1319
BID:1319
http://www.computalynx.net/news/Jun2000/news0806200001.html
CONFIRM:http://www.computalynx.net/news/Jun2000/news0806200001.html
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0248.html
NTBUGTRAQ:20000608 DST2K0011: DoS & BufferOverrun in CMail v2.4.7 WebMail
https://exchange.xforce.ibmcloud.com/vulnerabilities/4625
XF:cmail-long-username-dos(4625)
CVE-2000-0557
Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to execute arbitrary commands via a long GET request.
2000-10-13
2005-11-02
CVE-2000-0557
http://www.securityfocus.com/bid/1318
BID:1318
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0248.html
NTBUGTRAQ:20000608 DST2K0011: DoS & BufferOverrun in CMail v2.4.7 WebMail
https://exchange.xforce.ibmcloud.com/vulnerabilities/4626
XF:cmail-get-overflow-execute(4626)
CVE-2000-0558
Buffer overflow in HP Openview Network Node Manager 6.1 allows remote attackers to execute arbitrary commands via the Alarm service (OVALARMSRV) on port 2345.
2000-10-13
2005-11-02
CVE-2000-0558
http://www.securityfocus.com/bid/1317
BID:1317
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0249.html
NTBUGTRAQ:20000608 DST2K0012: BufferOverrun in HP Openview Network Node Manager v6.1
CVE-2000-0559
eTrust Intrusion Detection System (formerly SessionWall-3) uses weak encryption (XOR) to store administrative passwords in the registry, which allows local users to easily decrypt the passwords.
2000-07-12
2003-03-21
CVE-2000-0559
http://www.securityfocus.com/bid/1341
BID:1341
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.BSO.4.21.0006072124320.28062-100000@bearclaw.bogus.net
BUGTRAQ:20000607 SessionWall-3 Paper + (links to) code
CVE-2000-0561
Buffer overflow in WebBBS 1.15 allows remote attackers to execute arbitrary commands via a long HTTP GET request.
2000-10-13
2004-09-02
CVE-2000-0561
http://www.securityfocus.com/bid/1365
BID:1365
http://archives.neohapsis.com/archives/bugtraq/2000-06/0175.html
BUGTRAQ:20000620 DST2K0018: Multiple BufferOverruns in WebBBS HTTP Server v1.15
http://www.osvdb.org/3544
OSVDB:3544
https://exchange.xforce.ibmcloud.com/vulnerabilities/4742
XF:webbbs-get-request-overflow(4742)
CVE-2000-0562
BlackIce Defender 2.1 and earlier, and BlackIce Pro 2.0.23 and earlier, do not properly block Back Orifice traffic when the security setting is Nervous or lower.
2000-07-12
2003-03-21
CVE-2000-0562
http://archives.neohapsis.com/archives/bugtraq/2000-06/0190.html
BUGTRAQ:20000620 BlackICE by Network ICE Corp vulnerability against Back Orifice 1.2
CVE-2000-0563
The URLConnection function in MacOS Runtime Java (MRJ) 2.1 and earlier and the Microsoft virtual machine (VM) for MacOS allows a malicious web site operator to connect to arbitrary hosts using a HTTP redirection, in violation of the Java security model.
2000-07-12
2003-05-08
CVE-2000-0563
http://www.securityfocus.com/bid/1336
BID:1336
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-05-8&msg=391C95DE2DA.5E3BTAKAGI@java-house.etl.go.jp
BUGTRAQ:20000513 Re: Reappearance of an old IE security bug
http://archives.neohapsis.com/archives/bugtraq/2000-06/0056.html
BUGTRAQ:20000609 Security Holes Found in URLConnection of MRJ and IE of Mac OS (was Re: Reappearance of an old IE security bug)
CVE-2000-0564
The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter.
2000-07-12
2003-03-21
CVE-2000-0564
http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0218.html
NTBUGTRAQ:20000529 ICQ Web Front Remote DoS Attack Vulnerability
CVE-2000-0565
SmartFTP Daemon 0.2 allows a local user to access arbitrary files by uploading and specifying an alternate user configuration file via a .. (dot dot) attack.
2001-01-22
2004-09-02
CVE-2000-0565
http://www.securityfocus.com/bid/1344
BID:1344
http://archives.neohapsis.com/archives/bugtraq/2000-06/0100.html
BUGTRAQ:20000613 SmartFTP Daemon v0.2 Beta Build 9 - Remote Exploit
http://www.osvdb.org/1394
OSVDB:1394
https://exchange.xforce.ibmcloud.com/vulnerabilities/4706
XF:smartftp-directory-traversal(4706)
CVE-2000-0566
makewhatis in Linux man package allows local users to overwrite files via a symlink attack.
2000-10-13
2004-09-02
CVE-2000-0566
http://www.securityfocus.com/bid/1434
BID:1434
BUGTRAQ:20000707 [Security Announce] man update
http://archives.neohapsis.com/archives/bugtraq/2000-07/0390.html
BUGTRAQ:20000727 CONECTIVA LINUX SECURITY ANNOUNCEMENT - MAN
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-021.0.txt
CALDERA:CSSA-2000-021.0
ISS:20000712 Insecure temporary file handling in Linux makewhatis
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:015
MANDRAKE:MDKSA-2000:015
http://www.redhat.com/support/errata/RHSA-2000-041.html
REDHAT:RHSA-2000:041
https://exchange.xforce.ibmcloud.com/vulnerabilities/4900
XF:linux-man-makewhatis-tmp(4900)
CVE-2000-0567
Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0567
http://www.securityfocus.com/bid/1481
BID:1481
BUGTRAQ:20000719 Aaron Drew - Security Advisory: Buffer Overflow in MS Outlook & Outlook Express Email Clients
BUGTRAQ:20000719 Buffer Overflow in MS Outlook Email Clients
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-043
MS:MS00-043
https://exchange.xforce.ibmcloud.com/vulnerabilities/4953
XF:outlook-date-overflow(4953)
CVE-2000-0568
Sybergen Secure Desktop 2.1 does not properly protect against false router advertisements (ICMP type 9), which allows remote attackers to modify default routes.
2001-09-18
2005-11-02
CVE-2000-0568
http://www.securityfocus.com/bid/1417
BID:1417
http://www.securityfocus.com/templates/archive.pike?list=1&msg=4125690E.00524395.00@guardianit.se
BUGTRAQ:20000630 Multiple vulnerabilities in Sybergen Secure Desktop
XF:sybergen-routing-table-modify
CVE-2000-0569
Sybergen Sygate allows remote attackers to cause a denial of service by sending a malformed DNS UDP packet to its internal interface.
2001-09-18
2005-11-02
CVE-2000-0569
http://www.securityfocus.com/bid/1420
BID:1420
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q2/0189.html
WIN2KSEC:20000630 Any LAN user can crash Sygate
https://exchange.xforce.ibmcloud.com/vulnerabilities/5049
XF:sygate-udp-packet-dos(5049)
CVE-2000-0570
FirstClass Internet Services server 5.770, and other versions before 6.1, allows remote attackers to cause a denial of service by sending an email with a long To: mail header.
2002-03-09
2002-02-26
CVE-2000-0570
http://www.securityfocus.com/bid/1421
BID:1421
http://archives.neohapsis.com/archives/bugtraq/2000-06/0295.html
BUGTRAQ:20000627 DoS in FirstClass Internet Services 5.770
http://www.osvdb.org/5718
OSVDB:5718
https://exchange.xforce.ibmcloud.com/vulnerabilities/4843
XF:firstclass-large-bcc-dos(4843)
CVE-2000-0571
LocalWEB HTTP server 1.2.0 allows remote attackers to cause a denial of service via a long GET request.
2000-10-13
2005-11-02
CVE-2000-0571
http://www.securityfocus.com/bid/1423
BID:1423
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-07-8&msg=NCBBKFKDOLAGKIAPMILPCEIHCFAA.labs@ussrback.com
BUGTRAQ:20000703 Remote DoS Attack in LocalWEB HTTP Server 1.2.0 Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/4896
XF:localweb-get-bo(4896)
CVE-2000-0572
The Razor configuration management tool uses weak encryption for its password file, which allows local users to gain privileges.
2000-07-19
2003-03-21
CVE-2000-0572
http://www.securityfocus.com/bid/1424
BID:1424
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-07-8&msg=613309F30B6DD2118C020000F809376C05CABD49@emss03m09.orl.lmco.com
BUGTRAQ:20000704 Recovering Passwords in Visible Systems' Razor
CVE-2000-0573
The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.
2001-05-07
2004-09-02
CVE-2000-0573
ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-2000.02
AUSCERT:AA-2000.02
http://www.securityfocus.com/bid/1387
BID:1387
http://marc.info/?l=bugtraq&m=96171893218000&w=2
BUGTRAQ:20000622 WuFTPD: Providing *remote* root since at least1994
http://marc.info/?l=bugtraq&m=96179429114160&w=2
BUGTRAQ:20000623 WUFTPD 2.6.0 remote root exploit
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000623091822.3321.qmail@fiver.freemessage.com
BUGTRAQ:20000623 ftpd: the advisory version
http://archives.neohapsis.com/archives/bugtraq/2000-07/0017.html
BUGTRAQ:20000702 [Security Announce] wu-ftpd update
http://marc.info/?l=bugtraq&m=96299933720862&w=2
BUGTRAQ:20000707 New Released Version of the WuFTPD Sploit
http://archives.neohapsis.com/archives/bugtraq/2000-06/0244.html
BUGTRAQ:20000723 CONECTIVA LINUX SECURITY ANNOUNCEMENT - WU-FTPD (re-release)
BUGTRAQ:20000929 [slackware-security] wuftpd vulnerability - Slackware 4.0, 7.0, 7.1, -current
http://www.calderasystems.com/support/security/advisories/CSSA-2000-020.0.txt
CALDERA:CSSA-2000-020.0
http://www.cert.org/advisories/CA-2000-13.html
CERT:CA-2000-13
DEBIAN:20000623
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:29.wu-ftpd.asc.v1.1
FREEBSD:FreeBSD-SA-00:29
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2000-009.txt.asc
NETBSD:NetBSD-SA2000-009
http://www.redhat.com/support/errata/RHSA-2000-039.html
REDHAT:RHSA-2000:039
XF:wuftp-format-string-stack-overwrite
https://exchange.xforce.ibmcloud.com/vulnerabilities/4773
XF:wuftp-format-string-stack-overwrite(4773)
CVE-2000-0574
FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), which allows remote attackers to cause a denial of service or execute arbitrary commands.
2000-07-19
2003-03-21
CVE-2000-0574
http://www.securityfocus.com/bid/1425
BID:1425
http://www.securityfocus.com/bid/1438
BID:1438
http://archives.neohapsis.com/archives/bugtraq/2000-07/0031.html
BUGTRAQ:20000705 proftp advisory
http://archives.neohapsis.com/archives/bugtraq/2000-07/0061.html
BUGTRAQ:20000706 ftpd and setproctitle()
http://archives.neohapsis.com/archives/bugtraq/2000-07/0121.html
BUGTRAQ:20000710 opieftpd setproctitle() patches
http://www.cert.org/advisories/CA-2000-13.html
CERT:CA-2000-13
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-009.txt.asc
NETBSD:NetBSD-SA2000-009
CVE-2000-0575
SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is installed on NFS.
2002-03-09
2002-02-26
CVE-2000-0575
http://www.securityfocus.com/bid/1426
BID:1426
http://marc.info/?l=bugtraq&m=96256265914116&w=2
BUGTRAQ:20000630 Kerberos security vulnerability in SSH-1.2.27
https://exchange.xforce.ibmcloud.com/vulnerabilities/4903
XF:ssh-kerberos-tickets-disclosure(4903)
CVE-2000-0576
Oracle Web Listener for AIX versions 4.0.7.0.0 and 4.0.8.1.0 allows remote attackers to cause a denial of service via a malformed URL.
2001-09-18
2005-11-02
CVE-2000-0576
http://www.securityfocus.com/bid/1427
BID:1427
http://archives.neohapsis.com/archives/bugtraq/2000-07/0027.html
BUGTRAQ:20000704 Oracle Web Listener for AIX DoS
CVE-2000-0577
Netscape Professional Services FTP Server 1.3.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2001-05-07
2005-11-02
CVE-2000-0577
http://www.securityfocus.com/bid/1411
BID:1411
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0006211351280.23780-100000@nimue.tpi.pl
BUGTRAQ:20000621 Netscape FTP Server - "Professional" as hell :>
http://archives.neohapsis.com/archives/bugtraq/2000-06/0345.html
BUGTRAQ:20000629 (forw) Re: Netscape ftp Server (fwd)
XF:netscape-ftpserver-chroot
CVE-2000-0578
SGI MIPSPro compilers C, C++, F77 and F90 generate temporary files in /tmp with predictable file names, which could allow local users to insert malicious contents into these files as they are being compiled by another user.
2000-07-19
2003-03-21
CVE-2000-0578
http://www.securityfocus.com/bid/1412
BID:1412
http://archives.neohapsis.com/archives/bugtraq/2000-06/0204.html
BUGTRAQ:20000621 Predictability Problems in IRIX Cron and Compilers
CVE-2000-0579
IRIX crontab creates temporary files with predictable file names and with the umask of the user, which could allow local users to modify another user's crontab file as it is being edited.
2000-10-13
2005-11-02
CVE-2000-0579
http://www.securityfocus.com/bid/1413
BID:1413
http://archives.neohapsis.com/archives/bugtraq/2000-06/0204.html
BUGTRAQ:20000621 Predictability Problems in IRIX Cron and Compilers
XF:irix-cron-modify-crontab
CVE-2000-0580
Windows 2000 Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros to various TCP and UDP ports, which significantly increases the CPU utilization.
2000-07-19
2003-03-21
CVE-2000-0580
http://www.securityfocus.com/bid/1415
BID:1415
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.3.96.1000630161935.4619B-100000@fjord.fscinternet.com
BUGTRAQ:20000630 SecureXpert Advisory [SX-20000620-2]
XF:win2k-cpu-overload-dos
CVE-2000-0581
Windows 2000 Telnet Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros, which causes the server to crash.
2002-03-09
2002-03-01
CVE-2000-0581
http://www.securityfocus.com/bid/1414
BID:1414
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.3.96.1000630161841.4619A-100000@fjord.fscinternet.com
BUGTRAQ:20000630 SecureXpert Advisory [SX-20000620-1]
XF:win2k-telnetserver-dos
CVE-2000-0582
Check Point FireWall-1 4.0 and 4.1 allows remote attackers to cause a denial of service by sending a stream of invalid commands (such as binary zeros) to the SMTP Security Server proxy.
2000-10-13
2004-09-02
CVE-2000-0582
http://www.securityfocus.com/bid/1416
BID:1416
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.3.96.1000630162106.4619C-100000@fjord.fscinternet.com
BUGTRAQ:20000630 SecureXpert Advisory [SX-20000620-3]
http://www.checkpoint.com/techsupport/alerts/list_vun.html#SMTP_Security
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#SMTP_Security
http://www.osvdb.org/1438
OSVDB:1438
XF:fw1-resource-overload-dos
CVE-2000-0583
vchkpw program in vpopmail before version 4.8 does not properly cleanse an untrusted format string used in a call to syslog, which allows remote attackers to cause a denial of service via a USER or PASS command that contains arbitrary formatting directives.
2000-10-13
2005-11-02
CVE-2000-0583
http://www.securityfocus.com/bid/1418
BID:1418
http://www.securityfocus.com/templates/archive.pike?list=1&msg=395BD2A8.5D3396A7@secureaustin.com
BUGTRAQ:20000626 vpopmail-3.4.11 problems
http://www.vpopmail.cx/vpopmail-ChangeLog
CONFIRM:http://www.vpopmail.cx/vpopmail-ChangeLog
XF:vpopmail-format-string
CVE-2000-0584
Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group name.
2000-10-13
2005-11-02
CVE-2000-0584
http://www.securityfocus.com/bid/1445
BID:1445
DEBIAN:20000702
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:31.canna.asc.v1.1
FREEBSD:FreeBSD-SA-00:31
http://shadowpenguin.backsection.net/advisories/advisory038.html
MISC:http://shadowpenguin.backsection.net/advisories/advisory038.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/4912
XF:canna-bin-execute-bo(4912)
CVE-2000-0585
ISC DHCP client program dhclient allows remote attackers to execute arbitrary commands via shell metacharacters.
2000-10-13
2005-11-02
CVE-2000-0585
http://www.securityfocus.com/bid/1388
BID:1388
http://archives.neohapsis.com/archives/bugtraq/2000-06/0247.html
BUGTRAQ:20000624 Possible root exploit in ISC DHCP client.
http://archives.neohapsis.com/archives/bugtraq/2000-07/0014.html
BUGTRAQ:20000702 [Security Announce] dhcp update
http://www.debian.org/security/2000/20000628
DEBIAN:20000628 dhcp client: remote root exploit in dhcp client
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:34.dhclient.asc
FREEBSD:FreeBSD-SA-00:34
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-008.txt.asc
NETBSD:NetBSD-SA2000-008
OPENBSD:20000624 A serious bug in dhclient(8) could allow strings from a malicious dhcp server to be executed in the shell as root.
http://www.novell.com/linux/security/advisories/suse_security_announce_56.html
SUSE:20000711 Security Hole in dhclient < 2.0
https://exchange.xforce.ibmcloud.com/vulnerabilities/4772
XF:openbsd-isc-dhcp(4772)
CVE-2000-0586
Buffer overflow in Dalnet IRC server 4.6.5 allows remote attackers to cause a denial of service or execute arbitrary commands via the SUMMON command.
2000-10-13
2005-11-02
CVE-2000-0586
http://www.securityfocus.com/bid/1404
BID:1404
http://archives.neohapsis.com/archives/vuln-dev/2000-q2/1092.html
VULN-DEV:20000628 dalnet 4.6.5 remote vulnerability
XF:ircd-dalnet-summon-bo
CVE-2000-0587
The privpath directive in glftpd 1.18 allows remote attackers to bypass access restrictions for directories by using the file name completion capability.
2000-10-13
2005-11-02
CVE-2000-0587
http://www.securityfocus.com/bid/1401
BID:1401
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10006261041360.31907-200000@twix.thrijswijk.nl
BUGTRAQ:20000626 Glftpd privpath bugs... +fix
http://archives.neohapsis.com/archives/bugtraq/2000-06/0317.html
BUGTRAQ:20000627 Re: Glftpd privpath bugs... +fix
XF:glftpd-privpath-directive
CVE-2000-0588
SawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration commands.
2000-10-13
2005-11-02
CVE-2000-0588
http://www.securityfocus.com/bid/1402
BID:1402
http://archives.neohapsis.com/archives/bugtraq/2000-06/0271.html
BUGTRAQ:20000626 sawmill5.0.21 old path bug & weak hash algorithm
http://archives.neohapsis.com/archives/bugtraq/2000-07/0080.html
BUGTRAQ:20000706 Patch for Flowerfire Sawmill Vulnerabilities Available
XF:sawmill-file-access
CVE-2000-0589
SawMill 5.0.21 uses weak encryption to store passwords, which allows attackers to easily decrypt the password and modify the SawMill configuration.
2000-07-19
2003-03-21
CVE-2000-0589
http://www.securityfocus.com/bid/1403
BID:1403
http://archives.neohapsis.com/archives/bugtraq/2000-06/0271.html
BUGTRAQ:20000626 sawmill5.0.21 old path bug & weak hash algorithm
http://archives.neohapsis.com/archives/bugtraq/2000-07/0080.html
BUGTRAQ:20000706 Patch for Flowerfire Sawmill Vulnerabilities Available
XF:sawmill-weak-encryption
CVE-2000-0590
Poll It 2.0 CGI script allows remote attackers to read arbitrary files by specifying the file name in the data_dir parameter.
2003-04-02
2002-02-26
CVE-2000-0590
http://www.securityfocus.com/bid/1431
BID:1431
http://archives.neohapsis.com/archives/bugtraq/2000-07/0076.html
BUGTRAQ:20000706 Vulnerability in Poll_It cgi v2.0
https://exchange.xforce.ibmcloud.com/vulnerabilities/4878
XF:http-cgi-pollit-variable-overwrite(4878)
CVE-2000-0591
Novell BorderManager 3.0 and 3.5 allows remote attackers to bypass URL filtering by encoding characters in the requested URL.
2000-10-13
2005-11-02
CVE-2000-0591
http://www.securityfocus.com/bid/1432
BID:1432
http://archives.neohapsis.com/archives/bugtraq/2000-07/0038.html
BUGTRAQ:20000705 Novell BorderManager 3.0 EE - Encoded URL rule bypass
XF:bordermanager-bypass-url-restriction
CVE-2000-0592
Buffer overflows in POP3 service in WinProxy 2.0 and 2.0.1 allow remote attackers to execute arbitrary commands via long USER, PASS, LIST, RETR, or DELE commands.
2000-07-19
2003-03-21
CVE-2000-0592
http://www.securityfocus.com/bid/1400
BID:1400
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200006271417.GFE84146.-BJXON@lac.co.jp
BUGTRAQ:20000627 [SPSadvisory #37]WinProxy 2.0.0/2.0.1 DoS and Exploitable Buffer Overflow
XF:winproxy-command-bo
CVE-2000-0593
WinProxy 2.0 and 2.0.1 allows remote attackers to cause a denial of service by sending an HTTP GET request without listing an HTTP version number.
2002-03-09
2002-02-26
CVE-2000-0593
http://www.securityfocus.com/bid/1400
BID:1400
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200006271417.GFE84146.-BJXON@lac.co.jp
BUGTRAQ:20000627 [SPSadvisory #37]WinProxy 2.0.0/2.0.1 DoS and Exploitable Buffer Overflow
https://exchange.xforce.ibmcloud.com/vulnerabilities/4831
XF:winproxy-get-dos(4831)
CVE-2000-0594
BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters.
2000-10-13
2004-09-02
CVE-2000-0594
http://www.securityfocus.com/bid/1436
BID:1436
http://archives.neohapsis.com/archives/bugtraq/2000-07/0026.html
BUGTRAQ:20000704 BitchX exploit possibly waiting to happen, certain DoS
http://archives.neohapsis.com/archives/bugtraq/2000-07/0105.html
BUGTRAQ:20000707 BitchX update
http://archives.neohapsis.com/archives/bugtraq/2000-07/0098.html
BUGTRAQ:20000707 CONECTIVA LINUX SECURITY ANNOUNCEMENT - BitchX
http://www.calderasystems.com/support/security/advisories/CSSA-2000-022.0.txt
CALDERA:CSSA-2000-022.0
http://archives.neohapsis.com/archives/freebsd/2000-07/0042.html
FREEBSD:FreeBSD-SA-00:32
http://www.redhat.com/support/errata/RHSA-2000-042.html
REDHAT:RHSA-2000:042
http://archives.neohapsis.com/archives/vuln-dev/2000-q3/0018.html
VULN-DEV:20000704 BitchX /ignore bug
https://exchange.xforce.ibmcloud.com/vulnerabilities/4897
XF:irc-bitchx-invite-dos(4897)
CVE-2000-0595
libedit searches for the .editrc file in the current directory instead of the user's home directory, which may allow local users to execute arbitrary commands by installing a modified .editrc in another directory.
2000-10-13
2004-09-02
CVE-2000-0595
http://www.securityfocus.com/bid/1437
BID:1437
http://archives.neohapsis.com/archives/freebsd/2000-07/0035.html
FREEBSD:FreeBSD-SA-00:24
http://www.osvdb.org/1446
OSVDB:1446
XF:bsd-libedit-editrc
CVE-2000-0596
Internet Explorer 5.x does not warn a user before opening a Microsoft Access database file that is referenced within ActiveX OBJECT tags in an HTML document, which could allow remote attackers to execute arbitrary commands, aka the "IE Script" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0596
http://www.securityfocus.com/bid/1398
BID:1398
http://www.securityfocus.com/templates/archive.pike?list=1&msg=000d01bfe0fb$418f59b0$96217aa8@src.bu.edu
BUGTRAQ:20000627 FW: IE 5 and Access 2000 vulnerability - executing programs
http://www.securityfocus.com/templates/archive.pike?list=1&msg=39589359.762392DB@nat.bg
BUGTRAQ:20000627 IE 5 and Access 2000 vulnerability - executing programs
http://www.cert.org/advisories/CA-2000-16.html
CERT:CA-2000-16
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-049
MS:MS00-049
XF:ie-access-vba-code-execute
CVE-2000-0597
Microsoft Office 2000 (Excel and PowerPoint) and PowerPoint 97 are marked as safe for scripting, which allows remote attackers to force Internet Explorer or some email clients to save files to arbitrary locations via the Visual Basic for Applications (VBA) SaveAs function, aka the "Office HTML Script" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0597
http://www.securityfocus.com/bid/1399
BID:1399
http://www.securityfocus.com/templates/archive.pike?list=1&msg=39589349.ED9DBCAB@nat.bg
BUGTRAQ:20000627 IE 5 and Excel 2000, PowerPoint 2000 vulnerability - executing programs
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-049
MS:MS00-049
XF:ie-powerpoint-activex-object-execute
CVE-2000-0598
Fortech Proxy+ allows remote attackers to bypass access restrictions for to the administration service by redirecting their connections through the telnet proxy.
2000-10-13
2005-11-02
CVE-2000-0598
http://www.securityfocus.com/bid/1395
BID:1395
http://archives.neohapsis.com/archives/bugtraq/2000-06/0268.html
BUGTRAQ:20000626 Proxy+ Telnet Gateway Problems
http://www.proxyplus.cz/faq/articles/EN/art01002.htm
MISC:http://www.proxyplus.cz/faq/articles/EN/art01002.htm
XF:fortech-proxy-telnet-gateway
CVE-2000-0599
Buffer overflow in iMesh 1.02 allows remote attackers to execute arbitrary commands via a long string to the iMesh port.
2000-10-13
2005-11-02
CVE-2000-0599
http://www.securityfocus.com/bid/1407
BID:1407
http://archives.neohapsis.com/archives/bugtraq/2000-06/0335.html
BUGTRAQ:20000629 iMesh 1.02 vulnerability
http://www.imesh.com/download/download.html
MISC:http://www.imesh.com/download/download.html
XF:imesh-tcp-port-overflow
CVE-2000-0600
Netscape Enterprise Server in NetWare 5.1 allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed URL.
2002-03-09
2002-02-26
CVE-2000-0600
http://www.securityfocus.com/bid/1393
BID:1393
http://archives.neohapsis.com/archives/bugtraq/2000-06/0264.html
BUGTRAQ:20000626 Netscape Enterprise Server for NetWare Virtual Directory Vulnerab ility
https://exchange.xforce.ibmcloud.com/vulnerabilities/4780
XF:netscape-virtual-directory-bo(4780)
CVE-2000-0601
LeafChat 1.7 IRC client allows a remote IRC server to cause a denial of service by rapidly sending a large amount of error messages.
2000-10-13
2005-11-02
CVE-2000-0601
http://www.securityfocus.com/bid/1396
BID:1396
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.BSF.4.10.10006252056110.74551-100000@unix.za.net
BUGTRAQ:20000625 LeafChat Denial of Service
http://www.leafdigital.com/Software/leafChat/history.html
CONFIRM:http://www.leafdigital.com/Software/leafChat/history.html
XF:irc-leafchat-dos
CVE-2000-0602
Secure Locate (slocate) in Red Hat Linux allows local users to gain privileges via a malformed configuration file that is specified in the LOCATE_PATH environmental variable.
2000-10-13
2005-11-02
CVE-2000-0602
http://www.securityfocus.com/bid/1385
BID:1385
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0006211209500.22969-100000@nimue.tpi.pl
BUGTRAQ:20000621 rh 6.2 - gid compromises, etc
XF:redhat-secure-locate-path
CVE-2000-0603
Microsoft SQL Server 7.0 allows a local user to bypass permissions for stored procedures by referencing them via a temporary stored procedure, aka the "Stored Procedure Permissions" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0603
http://www.securityfocus.com/bid/1444
BID:1444
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-048
MS:MS00-048
https://exchange.xforce.ibmcloud.com/vulnerabilities/4921
XF:mssql-procedure-perms(4921)
CVE-2000-0604
gkermit in Red Hat Linux is improperly installed with setgid uucp, which allows local users to modify files owned by uucp.
2000-10-13
2005-11-02
CVE-2000-0604
http://www.securityfocus.com/bid/1383
BID:1383
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0006211209500.22969-100000@nimue.tpi.pl
BUGTRAQ:20000621 rh 6.2 - gid compromises, etc
XF:redhat-gkermit
CVE-2000-0605
Blackboard CourseInfo 4.0 stores the local and SQL administrator user names and passwords in cleartext in a registry key whose access control allows users to access the passwords.
2000-07-19
2003-03-21
CVE-2000-0605
http://www.securityfocus.com/bid/1460
BID:1460
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0007&L=NTBUGTRAQ&P=R1647
NTBUGTRAQ:20000710 Two issues: Blackboard CourseInfo 4.0 stores admin password in clear text; strange settings on the winreg key.
CVE-2000-0606
Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter.
2000-07-19
2003-03-21
CVE-2000-0606
http://www.securityfocus.com/bid/1371
BID:1371
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0006192340340.19998-100000@ferret.lmh.ox.ac.uk
BUGTRAQ:20000619 Problems with "kon2" package
XF:linux-kon-bo
CVE-2000-0607
Buffer overflow in fld program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via an input file containing long CHARSET_REGISTRY or CHARSET_ENCODING settings.
2000-07-19
2003-03-21
CVE-2000-0607
http://www.securityfocus.com/bid/1371
BID:1371
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0006192340340.19998-100000@ferret.lmh.ox.ac.uk
BUGTRAQ:20000619 Problems with "kon2" package
XF:linux-kon-bo
CVE-2000-0608
NetWin dMailWeb and cwMail 2.6i and earlier allows remote attackers to cause a denial of service via a long POP parameter (pophost).
2000-07-19
2003-03-21
CVE-2000-0608
http://www.securityfocus.com/bid/1376
BID:1376
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-06-15&msg=4.1.20000621113334.00996820@qlink.queensu.ca
BUGTRAQ:20000620 NetWin dMailWeb Denial of Service
XF:dmailweb-long-pophost-dos
CVE-2000-0609
NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to cause a denial of service via a long username parameter.
2000-07-19
2003-03-21
CVE-2000-0609
http://www.securityfocus.com/bid/1376
BID:1376
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-06-15&msg=4.1.20000621113334.00996820@qlink.queensu.ca
BUGTRAQ:20000620 NetWin dMailWeb Denial of Service
XF:dmailweb-long-username-dos
CVE-2000-0610
NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to bypass authentication and use the server for mail relay via a username that contains a carriage return.
2000-10-13
2005-11-02
CVE-2000-0610
http://www.securityfocus.com/bid/1390
BID:1390
http://archives.neohapsis.com/archives/bugtraq/2000-06/0243.html
BUGTRAQ:20000623 NetWin dMailWeb Unrestricted Mail Relay
https://exchange.xforce.ibmcloud.com/vulnerabilities/4770
XF:netwin-dmailweb-newline(4770)
CVE-2000-0611
The default configuration of NetWin dMailWeb and cwMail trusts all POP servers, which allows attackers to bypass normal authentication and cause a denial of service.
2000-10-13
2005-11-02
CVE-2000-0611
http://www.securityfocus.com/bid/1391
BID:1391
http://archives.neohapsis.com/archives/bugtraq/2000-06/0243.html
BUGTRAQ:20000623 NetWin dMailWeb Unrestricted Mail Relay
https://exchange.xforce.ibmcloud.com/vulnerabilities/4771
XF:netwin-dmailweb-auth(4771)
CVE-2000-0612
Windows 95 and Windows 98 do not properly process spoofed ARP packets, which allows remote attackers to overwrite static entries in the cache table.
2000-07-19
2003-03-21
CVE-2000-0612
http://www.securityfocus.com/bid/1406
BID:1406
http://www.securityfocus.com/templates/archive.pike?list=1&msg=395B7E64.9FB3D4DB@starzetz.de
BUGTRAQ:20000629 Buggy ARP handling in Windoze
XF:win-arp-spoofing
CVE-2000-0613
Cisco Secure PIX Firewall does not properly identify forged TCP Reset (RST) packets, which allows remote attackers to force the firewall to close legitimate connections.
2000-10-13
2004-09-02
CVE-2000-0613
http://www.securityfocus.com/bid/1454
BID:1454
http://www.securityfocus.com/templates/archive.pike?list=1&msg=B3D6883199DBD311868100A0C9FC2CDC046B72@protea.citec.net
BUGTRAQ:20000320 PIX DMZ Denial of Service - TCP Resets
http://www.cisco.com/warp/public/707/pixtcpreset-pub.shtml
CISCO:20000711 Cisco Secure PIX Firewall TCP Reset Vulnerability
http://www.osvdb.org/1457
OSVDB:1457
https://exchange.xforce.ibmcloud.com/vulnerabilities/4928
XF:cisco-pix-firewall-tcp(4928)
CVE-2000-0614
Tnef program in Linux systems allows remote attackers to overwrite arbitrary files via TNEF encoded compressed attachments which specify absolute path names for the decompressed output.
2000-07-19
2003-03-21
CVE-2000-0614
http://www.securityfocus.com/bid/1450
BID:1450
http://archives.neohapsis.com/archives/vendor/2000-q3/0002.html
SUSE:20000710 Security Hole in tnef < 0-124
CVE-2000-0615
LPRng 3.6.x improperly installs lpd as setuid root, which can allow local users to append lpd trace and logging messages to files.
2002-03-09
2002-02-21
CVE-2000-0615
http://www.securityfocus.com/bid/1447
BID:1447
http://archives.neohapsis.com/archives/bugtraq/2000-07/0117.html
BUGTRAQ:20000709 LPRng lpd should not be SETUID root
https://exchange.xforce.ibmcloud.com/vulnerabilities/7361
XF:lpd-suid-root(7361)
CVE-2000-0616
Vulnerability in HP TurboIMAGE DBUTIL allows local users to gain additional privileges via DBUTIL.PUB.SYS.
2000-10-13
2005-11-02
CVE-2000-0616
http://www.securityfocus.com/bid/1405
BID:1405
http://archives.neohapsis.com/archives/bugtraq/2000-06/0294.html
HP:HPSBMP0006-007
XF:hp-turboimage-dbutil
CVE-2000-0617
Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long USER environmental variable.
2000-07-19
2003-03-21
CVE-2000-0617
http://archives.neohapsis.com/archives/bugtraq/2000-06/0222.html
BUGTRAQ:20000622 RHL 6.2 xconq package - overflows yield gid games
CVE-2000-0618
Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long DISPLAY environmental variable.
2000-07-19
2003-03-21
CVE-2000-0618
http://archives.neohapsis.com/archives/bugtraq/2000-06/0222.html
BUGTRAQ:20000622 RHL 6.2 xconq package - overflows yield gid games
CVE-2000-0619
Top Layer AppSwitch 2500 allows remote attackers to cause a denial of service via malformed ICMP packets.
2002-03-09
2002-02-26
CVE-2000-0619
http://www.securityfocus.com/bid/1258
BID:1258
http://archives.neohapsis.com/archives/vuln-dev/2000-q2/0680.html
VULN-DEV:20000520 TopLayer layer 7 switch Advisory
http://archives.neohapsis.com/archives/vuln-dev/2000-q2/0921.html
VULN-DEV:20000614 Update on TopLayer Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7364
XF:toplayer-icmp-dos(7364)
CVE-2000-0620
libX11 X library allows remote attackers to cause a denial of service via a resource mask of 0, which causes libX11 to go into an infinite loop.
2001-09-18
2005-11-02
CVE-2000-0620
http://www.securityfocus.com/bid/1409
BID:1409
http://marc.info/?l=bugtraq&m=96146116627474&w=2
BUGTRAQ:20000619 XFree86: Various nasty libX11 holes
https://exchange.xforce.ibmcloud.com/vulnerabilities/4996
XF:libx11-infinite-loop-dos(4996)
CVE-2000-0621
Microsoft Outlook 98 and 2000, and Outlook Express 4.0x and 5.0x, allow remote attackers to read files on the client's system via a malformed HTML message that stores files outside of the cache, aka the "Cache Bypass" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0621
http://www.securityfocus.com/bid/1501
BID:1501
http://www.cert.org/advisories/CA-2000-14.html
CERT:CA-2000-14
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-046
MS:MS00-046
https://exchange.xforce.ibmcloud.com/vulnerabilities/5013
XF:outlook-cache-bypass(5013)
CVE-2000-0622
Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote attackers to execute arbitrary commands via a URL containing a long "keywords" parameter.
2001-05-07
2005-11-02
CVE-2000-0622
http://www.securityfocus.com/bid/1487
BID:1487
http://website.oreilly.com/support/software/wspro25_releasenotes.txt
CONFIRM:http://website.oreilly.com/support/software/wspro25_releasenotes.txt
http://www.nai.com/research/covert/advisories/043.asp
NAI:20000719 O'Reilly WebSite Professional Overflow
https://exchange.xforce.ibmcloud.com/vulnerabilities/4962
XF:website-webfind-bo(4962)
CVE-2000-0623
Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header.
2000-08-03
2003-03-21
CVE-2000-0623
http://www.securityfocus.com/bid/1492
BID:1492
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0007&L=ntbugtraq&F=&S=&P=5946
NTBUGTRAQ:20000719 Alert: Buffer Overrun is O'Reilly WebsitePro httpd32.exe (CISADV000717)
CVE-2000-0624
Buffer overflow in Winamp 2.64 and earlier allows remote attackers to execute arbitrary commands via a long #EXTINF: extension in the M3U playlist.
2000-10-13
2005-11-02
CVE-2000-0624
http://www.securityfocus.com/bid/1496
BID:1496
http://archives.neohapsis.com/archives/bugtraq/2000-07/0289.html
BUGTRAQ:20000720 Winamp M3U playlist parser buffer overflow security vulnerability
http://www.winamp.com/getwinamp/newfeatures.jhtml
CONFIRM:http://www.winamp.com/getwinamp/newfeatures.jhtml
https://exchange.xforce.ibmcloud.com/vulnerabilities/4956
XF:winamp-playlist-parser-bo(4956)
CVE-2000-0625
NetZero 3.0 and earlier uses weak encryption for storing a user's login information, which allows a local user to decrypt the password.
2000-08-03
2003-03-21
CVE-2000-0625
http://www.securityfocus.com/bid/1483
BID:1483
http://www.l0pht.com/advisories/netzero.txt
L0PHT:20000718 NetZero Password Encryption Algorithm
CVE-2000-0626
Buffer overflow in Alibaba web server allows remote attackers to cause a denial of service via a long GET request.
2000-08-03
2003-03-21
CVE-2000-0626
http://www.securityfocus.com/bid/1482
BID:1482
http://archives.neohapsis.com/archives/bugtraq/2000-07/0237.html
BUGTRAQ:20000718 Multiple bugs in Alibaba 2.0
CVE-2000-0627
BlackBoard CourseInfo 4.0 does not properly authenticate users, which allows local users to modify CourseInfo database information and gain privileges by directly calling the supporting CGI programs such as user_update_passwd.pl and user_update_admin.pl.
2000-10-13
2005-11-02
CVE-2000-0627
http://www.securityfocus.com/bid/1486
BID:1486
http://archives.neohapsis.com/archives/bugtraq/2000-07/0254.html
BUGTRAQ:20000718 Blackboard Courseinfo v4.0 User Authentication
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26msg%3D20000719151904.I17986@securityfocus.com
BUGTRAQ:20000719 Security Fix for Blackboard CourseInfo 4.0
https://exchange.xforce.ibmcloud.com/vulnerabilities/4946
XF:blackboard-courseinfo-dbase-modification(4946)
CVE-2000-0628
The source.asp example script in the Apache ASP module Apache::ASP 1.93 and earlier allows remote attackers to modify files.
2000-10-13
2005-11-02
CVE-2000-0628
http://www.securityfocus.com/bid/1457
BID:1457
http://archives.neohapsis.com/archives/bugtraq/2000-07/0142.html
BUGTRAQ:20000710 ANNOUNCE Apache::ASP v1.95 - Security Hole Fixed
http://www.nodeworks.com/asp/changes.html
CONFIRM:http://www.nodeworks.com/asp/changes.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/4931
XF:apache-source-asp-file-write(4931)
CVE-2000-0629
The default configuration of the Sun Java web server 2.0 and earlier allows remote attackers to execute arbitrary commands by uploading Java code to the server via board.html, then directly calling the JSP compiler servlet.
2000-08-03
2014-11-21
CVE-2000-0629
http://www.securityfocus.com/bid/1459
BID:1459
http://archives.neohapsis.com/archives/bugtraq/2000-07/0163.html
BUGTRAQ:20000711 Sun's Java Web Server remote command execution vulnerability
http://www.sun.com/software/jwebserver/faq/jwsca-2000-02.html
MISC:http://www.sun.com/software/jwebserver/faq/jwsca-2000-02.html
CVE-2000-0630
IIS 4.0 and 5.0 allows remote attackers to obtain fragments of source code by appending a +.htr to the URL, a variant of the "File Fragment Reading via .HTR" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0630
http://www.securityfocus.com/bid/1488
BID:1488
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-044
MS:MS00-044
https://exchange.xforce.ibmcloud.com/vulnerabilities/5104
XF:iis-htr-obtain-code(5104)
CVE-2000-0631
An administrative script from IIS 3.0, later included in IIS 4.0 and 5.0, allows remote attackers to cause a denial of service by accessing the script without a particular argument, aka the "Absent Directory Browser Argument" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0631
http://www.securityfocus.com/bid/1476
BID:1476
http://marc.info/?l=bugtraq&m=96390444022878&w=2
BUGTRAQ:20000718 ISBASE Security Advisory(SA2000-02)
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-044
MS:MS00-044
https://exchange.xforce.ibmcloud.com/vulnerabilities/4951
XF:iis-absent-directory-dos(4951)
CVE-2000-0632
Buffer overflow in the web archive component of L-Soft Listserv 1.8d and earlier allows remote attackers to execute arbitrary commands via a long query string.
2000-10-13
2005-11-02
CVE-2000-0632
http://www.securityfocus.com/bid/1490
BID:1490
http://www.lsoft.com/news/default.asp?item=Advisory1
CONFIRM:http://www.lsoft.com/news/default.asp?item=Advisory1
http://www.nai.com/nai_labs/asp_set/advisory/43_Advisory.asp
NAI:20000717 [COVERT-2000-07] LISTSERV Web Archive Remote Overflow
https://exchange.xforce.ibmcloud.com/vulnerabilities/4952
XF:lsoft-listserv-querystring-bo(4952)
CVE-2000-0633
Vulnerability in Mandrake Linux usermode package allows local users to to reboot or halt the system.
2000-10-13
2004-09-02
CVE-2000-0633
http://www.securityfocus.com/bid/1489
BID:1489
http://archives.neohapsis.com/archives/bugtraq/2000-07/0251.html
BUGTRAQ:20000718 MDKSA-2000:020 usermode update
http://archives.neohapsis.com/archives/bugtraq/2000-08/0117.html
BUGTRAQ:20000812 Conectiva Linux security announcement - usermode
http://www.redhat.com/support/errata/RHSA-2000-053.html
REDHAT:RHSA-2000:053
https://exchange.xforce.ibmcloud.com/vulnerabilities/4944
XF:linux-usermode-dos(4944)
CVE-2000-0634
The web administration interface for CommuniGate Pro 3.2.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-10-13
2004-09-02
CVE-2000-0634
http://www.securityfocus.com/bid/1493
BID:1493
http://archives.neohapsis.com/archives/bugtraq/2000-07/0223.html
BUGTRAQ:20000717 S21SEC-003: Vulnerabilities in CommuniGate Pro v3.2.4
http://www.osvdb.org/5774
OSVDB:5774
https://exchange.xforce.ibmcloud.com/vulnerabilities/5105
XF:communigate-pro-file-read(5105)
CVE-2000-0635
The view_page.html sample page in the MiniVend shopping cart program allows remote attackers to execute arbitrary commands via shell metacharacters.
2000-10-13
2005-11-02
CVE-2000-0635
http://www.securityfocus.com/bid/1449
BID:1449
http://archives.neohapsis.com/archives/bugtraq/2000-07/0150.html
BUGTRAQ:20000711 Akopia MiniVend Piped Command Execution Vulnerability
http://www.zdnet.com/zdnn/stories/news/0,4586,2600258,00.html
CONFIRM:http://www.zdnet.com/zdnn/stories/news/0,4586,2600258,00.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/4880
XF:minivend-viewpage-sample(4880)
CVE-2000-0636
HP JetDirect printers versions G.08.20 and H.08.20 and earlier allow remote attackers to cause a denial of service via a malformed FTP quote command.
2000-10-13
2005-11-02
CVE-2000-0636
http://www.securityfocus.com/bid/1491
BID:1491
http://archives.neohapsis.com/archives/bugtraq/2000-07/0265.html
BUGTRAQ:20000719 HP Jetdirect - Invalid FTP Command DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/4947
XF:hp-jetdirect-quote-dos(4947)
CVE-2000-0637
Microsoft Excel 97 and 2000 allows an attacker to execute arbitrary commands by specifying a malicious .dll using the Register.ID function, aka the "Excel REGISTER.ID Function" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0637
http://www.securityfocus.com/bid/1451
BID:1451
http://www.securityfocus.com/templates/archive.pike?list=1&msg=396B3F8F.9244D290@nat.bg
BUGTRAQ:20000711 Excel 2000 vulnerability - executing programs
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-051
MS:MS00-051
https://exchange.xforce.ibmcloud.com/vulnerabilities/5016
XF:excel-register-function(5016)
CVE-2000-0638
bb-hostsvc.sh in Big Brother 1.4h1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack on the HOSTSVC parameter.
2000-10-13
2005-11-02
CVE-2000-0638
http://www.securityfocus.com/bid/1455
BID:1455
http://archives.neohapsis.com/archives/bugtraq/2000-07/0146.html
BUGTRAQ:20000711 BIG BROTHER EXPLOIT
http://archives.neohapsis.com/archives/bugtraq/2000-07/0147.html
BUGTRAQ:20000711 REMOTE EXPLOIT IN ALL CURRENT VERSIONS OF BIG BROTHER
http://bb4.com/README.CHANGES
CONFIRM:http://bb4.com/README.CHANGES
https://exchange.xforce.ibmcloud.com/vulnerabilities/4879
XF:http-cgi-bigbrother-bbhostsvc(4879)
CVE-2000-0639
The default configuration of Big Brother 1.4h2 and earlier does not include proper access restrictions, which allows remote attackers to execute arbitrary commands by using bbd to upload a file whose extension will cause it to be executed as a CGI script by the web server.
2000-10-13
2004-09-02
CVE-2000-0639
http://www.securityfocus.com/bid/1494
BID:1494
http://archives.neohapsis.com/archives/bugtraq/2000-07/0171.html
BUGTRAQ:20000711 Big Brother filename extension vulnerability
http://www.osvdb.org/1472
OSVDB:1472
https://exchange.xforce.ibmcloud.com/vulnerabilities/5103
XF:big-brother-filename-extension(5103)
CVE-2000-0640
Guild FTPd allows remote attackers to determine the existence of files outside the FTP root via a .. (dot dot) attack, which provides different error messages depending on whether the file exists or not.
2000-10-13
2004-09-02
CVE-2000-0640
http://www.securityfocus.com/bid/1452
BID:1452
http://archives.neohapsis.com/archives/bugtraq/2000-07/0114.html
BUGTRAQ:20000708 gnu-pop3d (FTGate problem), Savant Webserver, Guild FTPd
http://www.osvdb.org/573
OSVDB:573
https://exchange.xforce.ibmcloud.com/vulnerabilities/4922
XF:guild-ftpd-disclosure(4922)
CVE-2000-0641
Savant web server allows remote attackers to execute arbitrary commands via a long GET request.
2000-10-13
2005-11-02
CVE-2000-0641
http://www.securityfocus.com/bid/1453
BID:1453
http://archives.neohapsis.com/archives/bugtraq/2000-07/0114.html
BUGTRAQ:20000708 gnu-pop3d (FTGate problem), Savant Webserver, Guild FTPd
https://exchange.xforce.ibmcloud.com/vulnerabilities/4901
XF:savant-get-bo(4901)
CVE-2000-0642
The default configuration of WebActive HTTP Server 1.00 stores the web access log active.log in the document root, which allows remote attackers to view the logs by directly requesting the page.
2000-10-13
2005-11-02
CVE-2000-0642
http://www.securityfocus.com/bid/1497
BID:1497
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200007130827.BAA32671@Rage.Resentment.org
BUGTRAQ:20000711 Lame DoS in WEBactive win65/NT server
https://exchange.xforce.ibmcloud.com/vulnerabilities/5184
XF:webactive-active-log(5184)
CVE-2000-0643
Buffer overflow in WebActive HTTP Server 1.00 allows remote attackers to cause a denial of service via a long URL.
2000-10-13
2005-11-02
CVE-2000-0643
http://www.securityfocus.com/bid/1470
BID:1470
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200007130827.BAA32671@Rage.Resentment.org
BUGTRAQ:20000711 Lame DoS in WEBactive win65/NT server
https://exchange.xforce.ibmcloud.com/vulnerabilities/4949
XF:webactive-long-get-dos(4949)
CVE-2000-0644
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing a STAT command while the LIST command is still executing.
2000-10-13
2004-09-02
CVE-2000-0644
http://www.securityfocus.com/bid/1506
BID:1506
http://archives.neohapsis.com/archives/bugtraq/2000-07/0295.html
BUGTRAQ:20000721 WFTPD/WFTPD Pro 2.41 RC11 vulnerabilities.
http://www.osvdb.org/1477
OSVDB:1477
https://exchange.xforce.ibmcloud.com/vulnerabilities/5003
XF:wftpd-stat-dos(5003)
CVE-2000-0645
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via commands such as STORE UNIQUE (STOU), STORE (STOR), or APPEND (APPE).
2000-08-03
2003-03-21
CVE-2000-0645
http://www.securityfocus.com/bid/1506
BID:1506
http://archives.neohapsis.com/archives/bugtraq/2000-07/0295.html
BUGTRAQ:20000721 WFTPD/WFTPD Pro 2.41 RC11 vulnerabilities.
CVE-2000-0646
WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred.
2000-08-03
2003-03-21
CVE-2000-0646
http://www.securityfocus.com/bid/1506
BID:1506
http://archives.neohapsis.com/archives/bugtraq/2000-07/0295.html
BUGTRAQ:20000721 WFTPD/WFTPD Pro 2.41 RC11 vulnerabilities.
CVE-2000-0647
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server.
2000-08-03
2003-03-21
CVE-2000-0647
http://www.securityfocus.com/bid/1506
BID:1506
http://archives.neohapsis.com/archives/bugtraq/2000-07/0295.html
BUGTRAQ:20000721 WFTPD/WFTPD Pro 2.41 RC11 vulnerabilities.
CVE-2000-0648
WFTPD and WFTPD Pro 2.41 allows local users to cause a denial of service by executing the RENAME TO (RNTO) command before a RENAME FROM (RNFR) command.
2000-08-03
2003-03-21
CVE-2000-0648
http://www.securityfocus.com/bid/1456
BID:1456
http://www.securityfocus.com/templates/archive.pike?list=1&msg=E13BvU6-0007d8-00@dwarf.box.sk
BUGTRAQ:20000711 WFTPD/WFTPD Pro 2.41 RC10 denial-of-service
CVE-2000-0649
IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic authentication and has no realm defined.
2000-08-03
2003-05-08
CVE-2000-0649
http://www.securityfocus.com/bid/1499
BID:1499
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0025.html
NTBUGTRAQ:20000713 IIS4 Basic authentication realm issue
CVE-2000-0650
The default installation of VirusScan 4.5 and NetShield 4.5 has insecure permissions for the registry key that identifies the AutoUpgrade directory, which allows local users to execute arbitrary commands by replacing SETUP.EXE in that directory with a Trojan Horse.
2001-05-07
2004-09-02
CVE-2000-0650
http://www.securityfocus.com/bid/1458
BID:1458
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0007&L=ntbugtraq&F=&S=&P=2753
NTBUGTRAQ:20000711 Potential Vulnerability in McAfee Netshield and VirusScan 4.5
http://www.osvdb.org/1458
OSVDB:1458
http://www.osvdb.org/4200
OSVDB:4200
https://exchange.xforce.ibmcloud.com/vulnerabilities/5177
XF:nai-virusscan-netshield-autoupgrade(5177)
CVE-2000-0651
The ClientTrust program in Novell BorderManager does not properly verify the origin of authentication requests, which could allow remote attackers to impersonate another user by replaying the authentication requests and responses from port 3024 of the victim's machine.
2000-10-13
2005-11-02
CVE-2000-0651
http://www.securityfocus.com/bid/1440
BID:1440
http://www.securityfocus.com/templates/archive.pike?list=1&msg=06256915.00591E18.00@uprrsmtp2.notes.up.com
BUGTRAQ:20000707 Novell Border Manger - Anyone can pose as an authenticated user
https://exchange.xforce.ibmcloud.com/vulnerabilities/5186
XF:novell-bordermanager-verification(5186)
CVE-2000-0652
IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string.
2000-10-13
2005-11-02
CVE-2000-0652
http://www.securityfocus.com/bid/1500
BID:1500
http://archives.neohapsis.com/archives/bugtraq/2000-07/0342.html
BUGTRAQ:20000723 IBM WebSphere default servlet handler showcode vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5012
XF:websphere-showcode(5012)
CVE-2000-0653
Microsoft Outlook Express allows remote attackers to monitor a user's email by creating a persistent browser link to the Outlook Express windows, aka the "Persistent Mail-Browser Link" vulnerability.
2000-08-03
2018-10-12
CVE-2000-0653
http://www.securityfocus.com/bid/1502
BID:1502
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-045
MS:MS00-045
CVE-2000-0654
Microsoft Enterprise Manager allows local users to obtain database passwords via the Data Transformation Service (DTS) package Registered Servers Dialog dialog, aka a variant of the "DTS Password" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0654
http://www.securityfocus.com/bid/1466
BID:1466
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-041
MS:MS00-041
https://exchange.xforce.ibmcloud.com/vulnerabilities/4582
XF:mssql-dts-reveal-passwords(4582)
CVE-2000-0655
Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1.
2000-10-13
2004-09-02
CVE-2000-0655
http://www.securityfocus.com/bid/1503
BID:1503
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26msg%3D200007242356.DAA01274%40false.com
BUGTRAQ:20000724 JPEG COM Marker Processing Vulnerability in Netscape Browsers
http://archives.neohapsis.com/archives/bugtraq/2000-07/0456.html
BUGTRAQ:20000801 MDKSA-2000:027-1 netscape update
http://archives.neohapsis.com/archives/bugtraq/2000-08/0116.html
BUGTRAQ:20000810 Conectiva Linux Security Announcement - netscape
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:39.netscape.asc
FREEBSD:FreeBSD-SA-00:39
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-011.txt.asc
NETBSD:NetBSD-SA2000-011
http://www.redhat.com/support/errata/RHSA-2000-046.html
REDHAT:RHSA-2000:046
http://www.novell.com/linux/security/advisories/suse_security_announce_60.html
SUSE:20000823 Security Hole in Netscape, Versions 4.x, possibly others
http://www.turbolinux.com/pipermail/tl-security-announce/2000-August/000016.html
TURBO:TLSA2000017-1
XF:netscape-jpg-comment
CVE-2000-0656
Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long USER command in the FTP protocol.
2000-08-03
2003-03-21
CVE-2000-0656
http://www.securityfocus.com/bid/1504
BID:1504
http://archives.neohapsis.com/archives/bugtraq/2000-07/0360.html
BUGTRAQ:20000724 AnalogX Proxy DoS
http://www.analogx.com/contents/download/network/proxy.htm
CONFIRM:http://www.analogx.com/contents/download/network/proxy.htm
CVE-2000-0657
Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long HELO command in the SMTP protocol.
2000-08-03
2003-03-21
CVE-2000-0657
http://www.securityfocus.com/bid/1504
BID:1504
http://archives.neohapsis.com/archives/bugtraq/2000-07/0360.html
BUGTRAQ:20000724 AnalogX Proxy DoS
http://www.analogx.com/contents/download/network/proxy.htm
CONFIRM:http://www.analogx.com/contents/download/network/proxy.htm
CVE-2000-0658
Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long USER command in the POP3 protocol.
2000-08-03
2003-03-21
CVE-2000-0658
http://www.securityfocus.com/bid/1504
BID:1504
http://archives.neohapsis.com/archives/bugtraq/2000-07/0360.html
BUGTRAQ:20000724 AnalogX Proxy DoS
http://www.analogx.com/contents/download/network/proxy.htm
CONFIRM:http://www.analogx.com/contents/download/network/proxy.htm
CVE-2000-0659
Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long user ID in a SOCKS4 CONNECT request.
2000-08-03
2003-03-21
CVE-2000-0659
http://www.securityfocus.com/bid/1504
BID:1504
http://archives.neohapsis.com/archives/bugtraq/2000-07/0360.html
BUGTRAQ:20000724 AnalogX Proxy DoS
CVE-2000-0660
The WDaemon web server for WorldClient 2.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-10-13
2004-09-02
CVE-2000-0660
http://www.securityfocus.com/bid/1462
BID:1462
http://archives.neohapsis.com/archives/bugtraq/2000-07/0173.html
BUGTRAQ:20000712 Infosec.20000712.worldclient.2.1
http://www.altn.com/Downloads/WorldClient/Release/RelNotes.txt
CONFIRM:http://www.altn.com/Downloads/WorldClient/Release/RelNotes.txt
http://www.osvdb.org/1459
OSVDB:1459
https://exchange.xforce.ibmcloud.com/vulnerabilities/4913
XF:worldclient-dir-traverse(4913)
CVE-2000-0661
WircSrv IRC Server 5.07s allows remote attackers to cause a denial of service via a long string to the server port.
2000-10-13
2005-11-02
CVE-2000-0661
http://www.securityfocus.com/bid/1448
BID:1448
http://archives.neohapsis.com/archives/bugtraq/2000-07/0120.html
BUGTRAQ:20000710 Remote DoS Attack in WircSrv Irc Server v5.07s Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/4914
XF:wircsrv-character-flood-dos(4914)
CVE-2000-0662
Internet Explorer 5.x and Microsoft Outlook allows remote attackers to read arbitrary files by redirecting the contents of an IFRAME using the DHTML Edit Control (DHTMLED).
2002-03-09
2002-02-26
CVE-2000-0662
http://www.securityfocus.com/bid/1474
BID:1474
http://www.securityfocus.com/templates/archive.pike?list=1&msg=396EF9D5.62EEC625@nat.bg
BUGTRAQ:20000714 IE 5.5 and 5.01 vulnerability - reading at least local and from any host text and parsed html files
https://exchange.xforce.ibmcloud.com/vulnerabilities/5107
XF:ie-dhtmled-file-read(5107)
CVE-2000-0663
The registry entry for the Windows Shell executable (Explorer.exe) in Windows NT and Windows 2000 uses a relative path name, which allows local users to execute arbitrary commands by inserting a Trojan Horse named Explorer.exe into the %Systemdrive% directory, aka the "Relative Shell Path" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0663
http://www.securityfocus.com/bid/1507
BID:1507
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-052
MS:MS00-052
http://www.microsoft.com/technet/support/kb.asp?ID=269049
MSKB:Q269049
https://exchange.xforce.ibmcloud.com/vulnerabilities/5040
XF:explorer-relative-path-name(5040)
CVE-2000-0664
AnalogX SimpleServer:WWW 1.06 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack that uses the %2E URL encoding for the dots.
2000-10-13
2004-09-02
CVE-2000-0664
http://www.securityfocus.com/bid/1508
BID:1508
http://archives.neohapsis.com/archives/bugtraq/2000-07/0374.html
BUGTRAQ:20000726 AnalogX "SimpleServer:WWW" dot dot bug
http://www.analogx.com/contents/download/network/sswww.htm
CONFIRM:http://www.analogx.com/contents/download/network/sswww.htm
http://www.osvdb.org/388
OSVDB:388
https://exchange.xforce.ibmcloud.com/vulnerabilities/4999
XF:analogx-simpleserver-directory-path(4999)
CVE-2000-0665
GAMSoft TelSrv telnet server 1.5 and earlier allows remote attackers to cause a denial of service via a long username.
2000-10-13
2004-09-02
CVE-2000-0665
http://www.securityfocus.com/bid/1478
BID:1478
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0031.html
NTBUGTRAQ:20000717 DoS in Gamsoft TelSrv telnet server for MS Windows 95/98/NT/2k.
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0056.html
NTBUGTRAQ:20000729 TelSrv Reveals Usernames & Passwords After DoS Attack
http://www.osvdb.org/373
OSVDB:373
https://exchange.xforce.ibmcloud.com/vulnerabilities/4945
XF:gamsoft-telsrv-dos(4945)
CVE-2000-0666
rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root privileges.
2000-10-13
2004-09-02
CVE-2000-0666
http://www.securityfocus.com/bid/1480
BID:1480
http://archives.neohapsis.com/archives/bugtraq/2000-07/0206.html
BUGTRAQ:20000716 Lots and lots of fun with rpc.statd
http://archives.neohapsis.com/archives/bugtraq/2000-07/0230.html
BUGTRAQ:20000717 CONECTIVA LINUX SECURITY ANNOUNCEMENT - nfs-utils
http://archives.neohapsis.com/archives/bugtraq/2000-07/0236.html
BUGTRAQ:20000718 Trustix Security Advisory - nfs-utils
http://archives.neohapsis.com/archives/bugtraq/2000-07/0260.html
BUGTRAQ:20000718 [Security Announce] MDKSA-2000:021 nfs-utils update
http://www.calderasystems.com/support/security/advisories/CSSA-2000-025.0.txt
CALDERA:CSSA-2000-025.0
http://www.cert.org/advisories/CA-2000-17.html
CERT:CA-2000-17
DEBIAN:20000719a
http://www.redhat.com/support/errata/RHSA-2000-043.html
REDHAT:RHSA-2000:043
https://exchange.xforce.ibmcloud.com/vulnerabilities/4939
XF:linux-rpcstatd-format-overwrite(4939)
CVE-2000-0667
Vulnerability in gpm in Caldera Linux allows local users to delete arbitrary files or conduct a denial of service.
2000-08-03
2003-03-21
CVE-2000-0667
http://www.securityfocus.com/bid/1512
BID:1512
http://archives.neohapsis.com/archives/bugtraq/2000-07/0273.html
CALDERA:CSSA-2000-024.0
CVE-2000-0668
pam_console PAM module in Linux systems allows a user to access the system console and reboot the system when a display manager such as gdm or kdm has XDMCP enabled.
2000-10-13
2004-09-02
CVE-2000-0668
http://www.securityfocus.com/bid/1513
BID:1513
http://archives.neohapsis.com/archives/bugtraq/2000-07/0398.html
BUGTRAQ:20000727 CONECTIVA LINUX SECURITY ANNOUNCEMENT - PAM
http://archives.neohapsis.com/archives/bugtraq/2000-07/0455.html
BUGTRAQ:20000801 MDKSA-2000:029 pam update
http://www.redhat.com/support/errata/RHSA-2000-044.html
REDHAT:RHSA-2000:044
https://exchange.xforce.ibmcloud.com/vulnerabilities/5001
XF:linux-pam-console(5001)
CVE-2000-0669
Novell NetWare 5.0 allows remote attackers to cause a denial of service by flooding port 40193 with random data.
2000-10-13
2005-11-02
CVE-2000-0669
http://www.securityfocus.com/bid/1467
BID:1467
http://www.securityfocus.com/templates/archive.pike?list=1&msg=000501bfeab5$9330c3d0$d801a8c0@dimuthu.baysidegrp.com.au
BUGTRAQ:20000711 Remote Denial Of Service -- NetWare 5.0 with SP 5
XF:netware-port40193-dos
CVE-2000-0670
The cvsweb CGI script in CVSWeb 1.80 allows remote attackers with write access to a CVS repository to execute arbitrary commands via shell metacharacters.
2000-10-13
2005-11-02
CVE-2000-0670
http://www.securityfocus.com/bid/1469
BID:1469
http://archives.neohapsis.com/archives/bugtraq/2000-07/0178.html
BUGTRAQ:20000712 cvsweb: remote shell for cvs committers
http://archives.neohapsis.com/archives/bugtraq/2000-07/0196.html
BUGTRAQ:20000714 MDKSA-2000:019 cvsweb update
DEBIAN:20000719b
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:37.cvsweb.asc
FREEBSD:FreeBSD-SA-00:37
http://www.turbolinux.com/pipermail/tl-security-announce/2000-August/000015.html
TURBO:TLSA2000016-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/4925
XF:cvsweb-shell-access(4925)
CVE-2000-0671
Roxen web server earlier than 2.0.69 allows allows remote attackers to bypass access restrictions, list directory contents, and read source code by inserting a null character (%00) to the URL.
2000-10-13
2005-11-02
CVE-2000-0671
http://www.securityfocus.com/bid/1510
BID:1510
http://archives.neohapsis.com/archives/bugtraq/2000-07/0307.html
BUGTRAQ:20000721 Roxen Web Server Vulnerability
http://archives.neohapsis.com/archives/bugtraq/2000-07/0321.html
BUGTRAQ:20000721 Roxen security alert: Problems with URLs containing null characters.
https://exchange.xforce.ibmcloud.com/vulnerabilities/4965
XF:roxen-null-char-url(4965)
CVE-2000-0672
The default configuration of Jakarta Tomcat does not restrict access to the /admin context, which allows remote attackers to read arbitrary files by directly calling the administrative servlets to add a context for the root directory.
2001-01-22
2005-11-02
CVE-2000-0672
http://www.securityfocus.com/bid/1548
BID:1548
http://archives.neohapsis.com/archives/bugtraq/2000-07/0309.html
BUGTRAQ:20000721 Jakarta-tomcat.../admin
https://exchange.xforce.ibmcloud.com/vulnerabilities/5160
XF:jakarta-tomcat-admin(5160)
CVE-2000-0673
The NetBIOS Name Server (NBNS) protocol does not perform authentication, which allows remote attackers to cause a denial of service by sending a spoofed Name Conflict or Name Release datagram, aka the "NetBIOS Name Server Protocol Spoofing" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0673
http://www.securityfocus.com/bid/1514
BID:1514
http://www.securityfocus.com/bid/1515
BID:1515
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-047
MS:MS00-047
http://www.nai.com/research/covert/advisories/044.asp
NAI:20000727 Windows NetBIOS Name Conflicts
https://exchange.xforce.ibmcloud.com/vulnerabilities/5035
XF:netbios-name-server-spoofing(5035)
CVE-2000-0674
ftp.pl CGI program for Virtual Visions FTP browser allows remote attackers to read directories outside of the document root via a .. (dot dot) attack.
2000-10-13
2005-11-02
CVE-2000-0674
http://www.securityfocus.com/bid/1471
BID:1471
http://archives.neohapsis.com/archives/bugtraq/2000-07/0177.html
BUGTRAQ:20000712 ftp.pl vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5187
XF:virtualvision-ftp-browser(5187)
CVE-2000-0675
Buffer overflow in Infopulse Gatekeeper 3.5 and earlier allows remote attackers to execute arbitrary commands via a long string.
2000-10-13
2005-11-02
CVE-2000-0675
http://www.securityfocus.com/bid/1477
BID:1477
http://www.securityfocus.com/templates/archive.pike?list=1&msg=00af01bfece2$a52cbd80$367e1ec4@kungphusion
BUGTRAQ:20000713 The MDMA Crew's GateKeeper Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/4948
XF:gatekeeper-long-string-bo(4948)
CVE-2000-0676
Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demonstrated by Brown Orifice.
2000-10-13
2004-09-02
CVE-2000-0676
http://www.securityfocus.com/bid/1546
BID:1546
http://archives.neohapsis.com/archives/bugtraq/2000-08/0019.html
BUGTRAQ:20000804 Dangerous Java/Netscape Security Hole
http://archives.neohapsis.com/archives/bugtraq/2000-08/0115.html
BUGTRAQ:20000810 MDKSA-2000:033 Netscape Java vulnerability
http://archives.neohapsis.com/archives/bugtraq/2000-08/0236.html
BUGTRAQ:20000818 Conectiva Linux Security Announcement - netscape
http://archives.neohapsis.com/archives/bugtraq/2000-08/0265.html
BUGTRAQ:20000821 MDKSA-2000:036 - netscape update
http://www.calderasystems.com/support/security/advisories/CSSA-2000-027.1.txt
CALDERA:CSSA-2000-027.1
http://www.cert.org/advisories/CA-2000-15.html
CERT:CA-2000-15
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:39.netscape.asc
FREEBSD:FreeBSD-SA-00:39
http://www.redhat.com/support/errata/RHSA-2000-054.html
REDHAT:RHSA-2000:054
http://www.novell.com/linux/security/advisories/suse_security_announce_60.html
SUSE:20000823 Security Hole in Netscape, Versions 4.x, possibly others
XF:java-brownorifice
CVE-2000-0677
Buffer overflow in IBM Net.Data db2www CGI program allows remote attackers to execute arbitrary commands via a long PATH_INFO environmental variable.
2000-10-13
2005-11-02
CVE-2000-0677
http://xforce.iss.net/alerts/advise60.php
ISS:20000907 Buffer Overflow in IBM Net.Data db2www CGI program.
https://exchange.xforce.ibmcloud.com/vulnerabilities/4976
XF:ibm-netdata-db2www-bo(4976)
CVE-2000-0678
PGP 5.5.x through 6.5.3 does not properly check if an Additional Decryption Key (ADK) is stored in the signed portion of a public certificate, which allows an attacker who can modify a victim's public certificate to decrypt any data that has been encrypted with the modified certificate.
2000-10-13
2004-09-02
CVE-2000-0678
http://www.securityfocus.com/bid/1606
BID:1606
http://www.cert.org/advisories/CA-2000-18.html
CERT:CA-2000-18
http://www.osvdb.org/4354
OSVDB:4354
CVE-2000-0679
The CVS 1.10.8 client trusts pathnames that are provided by the CVS server, which allows the server to force the client to create arbitrary files.
2001-01-22
2005-11-02
CVE-2000-0679
http://www.securityfocus.com/bid/1523
BID:1523
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26msg%3Dhvou2daoebb.fsf%40serein.m17n.org
BUGTRAQ:20000728 cvs security problem
XF:cvs-client-creates-file
CVE-2000-0680
The CVS 1.10.8 server does not properly restrict users from creating arbitrary Checkin.prog or Update.prog programs, which allows remote CVS committers to modify or create Trojan horse programs with the Checkin.prog or Update.prog names, then performing a CVS commit action.
2000-09-21
2005-11-02
CVE-2000-0680
http://www.securityfocus.com/bid/1524
BID:1524
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26msg%3Dhvou2daoebb.fsf%40serein.m17n.org
BUGTRAQ:20000728 cvs security problem
CVE-2000-0681
Buffer overflow in BEA WebLogic server proxy plugin allows remote attackers to execute arbitrary commands via a long URL with a .JSP extension.
2000-10-13
2005-11-02
CVE-2000-0681
http://www.securityfocus.com/bid/1570
BID:1570
http://archives.neohapsis.com/archives/bugtraq/2000-08/0186.html
BUGTRAQ:20000815 BEA Weblogic server proxy library vulnerabilities
XF:weblogic-plugin-bo
CVE-2000-0682
BEA WebLogic 5.1.x allows remote attackers to read source code for parsed pages by inserting /ConsoleHelp/ into the URL, which invokes the FileServlet.
2000-10-13
2004-09-02
CVE-2000-0682
http://www.securityfocus.com/bid/1518
BID:1518
http://archives.neohapsis.com/archives/bugtraq/2000-07/0410.html
BUGTRAQ:20000728 BEA's WebLogic force handlers show code vulnerability
http://developer.bea.com/alerts/security_000731.html
CONFIRM:http://developer.bea.com/alerts/security_000731.html
http://www.osvdb.org/1481
OSVDB:1481
XF:weblogic-fileservlet-show-code
CVE-2000-0683
BEA WebLogic 5.1.x allows remote attackers to read source code for parsed pages by inserting /*.shtml/ into the URL, which invokes the SSIServlet.
2000-10-13
2004-09-02
CVE-2000-0683
http://www.securityfocus.com/bid/1517
BID:1517
http://archives.neohapsis.com/archives/bugtraq/2000-07/0410.html
BUGTRAQ:20000728 BEA's WebLogic force handlers show code vulnerability
http://developer.bea.com/alerts/security_000728.html
CONFIRM:http://developer.bea.com/alerts/security_000728.html
http://www.osvdb.org/1480
OSVDB:1480
CVE-2000-0684
BEA WebLogic 5.1.x does not properly restrict access to the JSPServlet, which could allow remote attackers to compile and execute Java JSP code by directly invoking the servlet on any source file.
2000-10-13
2005-11-02
CVE-2000-0684
http://www.securityfocus.com/bid/1525
BID:1525
http://archives.neohapsis.com/archives/bugtraq/2000-07/0434.html
BUGTRAQ:20000731 BEA's WebLogic *.jsp/*.jhtml remote command execution
http://developer.bea.com/alerts/security_000731.html
CONFIRM:http://developer.bea.com/alerts/security_000731.html
XF:html-malicious-tags
CVE-2000-0685
BEA WebLogic 5.1.x does not properly restrict access to the PageCompileServlet, which could allow remote attackers to compile and execute Java JHTML code by directly invoking the servlet on any source file.
2000-10-13
2005-11-02
CVE-2000-0685
http://www.securityfocus.com/bid/1525
BID:1525
http://archives.neohapsis.com/archives/bugtraq/2000-07/0434.html
BUGTRAQ:20000731 BEA's WebLogic *.jsp/*.jhtml remote command execution
http://developer.bea.com/alerts/security_000731.html
CONFIRM:http://developer.bea.com/alerts/security_000731.html
XF:html-malicious-tags
CVE-2000-0686
Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the fromfile parameter.
2000-09-21
2003-03-21
CVE-2000-0686
http://www.securityfocus.com/bid/1630
BID:1630
http://archives.neohapsis.com/archives/bugtraq/2000-08/0310.html
BUGTRAQ:20000823 Auction WeaverT LITE 1.0
CVE-2000-0687
Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the catdir parameter.
2000-09-21
2003-03-21
CVE-2000-0687
http://www.securityfocus.com/bid/1630
BID:1630
http://archives.neohapsis.com/archives/bugtraq/2000-08/0310.html
BUGTRAQ:20000823 Auction WeaverT LITE 1.0
CVE-2000-0688
Subscribe Me LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the subscribe.pl script with the setpwd parameter.
2000-09-21
2016-10-17
CVE-2000-0688
http://www.securityfocus.com/bid/1607
BID:1607
http://marc.info/?l=bugtraq&m=96722957421029&w=2
BUGTRAQ:20000823 Re: Subscribe Me CGI Vulnerability
http://archives.neohapsis.com/archives/bugtraq/2000-08/0292.html
BUGTRAQ:20000823 Subscribe Me Vulnerability
http://www.cgiscriptcenter.com/subscribe/
CONFIRM:http://www.cgiscriptcenter.com/subscribe/
CVE-2000-0689
Account Manager LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the amadmin.pl script with the setpasswd parameter.
2000-09-21
2017-07-10
CVE-2000-0689
http://www.securityfocus.com/bid/1604
BID:1604
http://archives.neohapsis.com/archives/bugtraq/2000-08/0291.html
BUGTRAQ:20000823 Account Manager CGI Vulnerability
http://www.cgiscriptcenter.com/acctlite/
CONFIRM:http://www.cgiscriptcenter.com/acctlite/
http://www.osvdb.org/13341
OSVDB:13341
https://exchange.xforce.ibmcloud.com/vulnerabilities/5125
XF:account-manager-overwrite-password(5125)
CVE-2000-0690
Auction Weaver CGI script 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the fromfile parameter.
2000-09-21
2016-11-17
CVE-2000-0690
http://archives.neohapsis.com/archives/bugtraq/2000-08/0370.html
BUGTRAQ:20000830 More problems with Auction Weaver & CGI Script Center.
http://archives.neohapsis.com/archives/bugtraq/2000-08/0452.html
BUGTRAQ:20000902 Re: More problems with Auction Weaver & CGI Script Center.
CVE-2000-0691
The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file.
2000-09-21
2002-07-23
CVE-2000-0691
http://www.securityfocus.com/bid/1612
BID:1612
http://archives.neohapsis.com/archives/bugtraq/2000-08/0329.html
BUGTRAQ:20000826 Advisory: mgetty local compromise
http://www.calderasystems.com/support/security/advisories/CSSA-2000-029.0.txt
CALDERA:CSSA-2000-029.0
http://archives.neohapsis.com/archives/bugtraq/2000-08/0330.html
CONFIRM:http://archives.neohapsis.com/archives/bugtraq/2000-08/0330.html
CVE-2000-0692
ISS RealSecure 3.2.1 and 3.2.2 allows remote attackers to cause a denial of service via a flood of fragmented packets with the SYN flag set.
2000-09-21
2003-03-21
CVE-2000-0692
http://www.securityfocus.com/bid/1597
BID:1597
http://archives.neohapsis.com/archives/bugtraq/2000-08/0267.html
BUGTRAQ:20000822 DOS on RealSecure 3.2
XF:realsecure-rskill-dos
CVE-2000-0693
pgxconfig in the Raptor GFX configuration tool uses a relative path name for a system call to the "cp" program, which allows local users to execute arbitrary commands by modifying their path to point to an alternate "cp" program.
2001-05-07
2004-09-02
CVE-2000-0693
http://www.securityfocus.com/bid/1563
BID:1563
http://archives.neohapsis.com/archives/bugtraq/2000-07/0463.html
BUGTRAQ:20000802 Local root compromise in PGX Config Sun Sparc Solaris
http://www.osvdb.org/1501
OSVDB:1501
CVE-2000-0694
pgxconfig in the Raptor GFX configuration tool allows local users to gain privileges via a symlink attack.
2001-05-07
2004-09-02
CVE-2000-0694
http://archives.neohapsis.com/archives/bugtraq/2000-07/0463.html
BUGTRAQ:20000802 Local root compromise in PGX Config Sun Sparc Solaris
http://www.osvdb.org/5740
OSVDB:5740
CVE-2000-0695
Buffer overflows in pgxconfig in the Raptor GFX configuration tool allow local users to gain privileges via command line options.
2000-09-21
2003-03-21
CVE-2000-0695
http://archives.neohapsis.com/archives/bugtraq/2000-07/0463.html
BUGTRAQ:20000802 Local root compromise in PGX Config Sun Sparc Solaris
CVE-2000-0696
The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts, which allows remote attackers to add user accounts to the interface by directly calling the admin CGI script.
2000-09-21
2017-12-18
CVE-2000-0696
http://www.securityfocus.com/bid/1554
BID:1554
http://seclists.org/bugtraq/2000/Aug/0105.html
BUGTRAQ:20000807 Vulnerabilities in Sun Solaris AnswerBook2 dwhttpd server
http://www.s21sec.com/en/avisos/s21sec-004-en.txt
MISC:http://www.s21sec.com/en/avisos/s21sec-004-en.txt
http://archives.neohapsis.com/archives/sun/2000-q3/0001.html
SUN:00196
https://exchange.xforce.ibmcloud.com/vulnerabilities/5069
XF:solaris-answerbook2-admin-interface(5069)
CVE-2000-0697
The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands via shell metacharacters.
2000-09-21
2008-09-17
CVE-2000-0697
http://www.securityfocus.com/bid/1556
BID:1556
http://seclists.org/bugtraq/2000/Aug/0105.html
BUGTRAQ:20000807 Vulnerabilities in Sun Solaris AnswerBook2 dwhttpd server
http://www.s21sec.com/en/avisos/s21sec-004-en.txt
MISC:http://www.s21sec.com/en/avisos/s21sec-004-en.txt
http://archives.neohapsis.com/archives/sun/2000-q3/0001.html
SUN:00196
http://www.iss.net/security_center/static/5058.php
XF:solaris-answerbook2-remote-execution(5058)
CVE-2000-0698
Minicom 1.82.1 and earlier on some Linux systems allows local users to create arbitrary files owned by the uucp user via a symlink attack.
2001-01-22
2005-11-02
CVE-2000-0698
http://www.securityfocus.com/bid/1599
BID:1599
http://www.securityfocus.com/archive/1/77361
BUGTRAQ:20000819 RH 6.1 / 6.2 minicom vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5151
XF:minicom-capture-groupown(5151)
CVE-2000-0699
Format string vulnerability in ftpd in HP-UX 10.20 allows remote attackers to cause a denial of service or execute arbitrary commands via format strings in the PASS command.
2002-03-09
2002-02-21
CVE-2000-0699
http://www.securityfocus.com/bid/1560
BID:1560
http://archives.neohapsis.com/archives/bugtraq/2000-08/0028.html
BUGTRAQ:20000806 HPUX FTPd vulnerability
CVE-2000-0700
Cisco Gigabit Switch Routers (GSR) with Fast Ethernet / Gigabit Ethernet cards, from IOS versions 11.2(15)GS1A up to 11.2(19)GS0.2 and some versions of 12.0, do not properly handle line card failures, which allows remote attackers to bypass ACLs or force the interface to stop forwarding packets.
2000-10-13
2009-03-01
CVE-2000-0700
http://www.securityfocus.com/bid/1541
BID:1541
http://www.cisco.com/warp/public/707/gsraclbypassdos-pub.shtml
CISCO:20000803 Possible Access Control Bypass and Denial of Service in Gigabit Switch Routers Using Gigabit Ethernet or Fast Ethernet Cards
http://www.osvdb.org/793
OSVDB:793
http://www.osvdb.org/798
OSVDB:798
CVE-2000-0701
The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges.
2000-09-21
2004-08-17
CVE-2000-0701
http://www.securityfocus.com/bid/1539
BID:1539
http://www.securityfocus.com/archive/1/73220
BUGTRAQ:20000801 Advisory: mailman local compromise
http://archives.neohapsis.com/archives/bugtraq/2000-07/0474.html
BUGTRAQ:20000802 CONECTIVA LINUX SECURITY ANNOUNCEMENT - mailman
http://archives.neohapsis.com/archives/bugtraq/2000-07/0479.html
BUGTRAQ:20000802 MDKSA-2000:030 - Linux-Mandrake not affected by mailman problem
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000802105050.A11733@rak.isternet.sk
CONFIRM:http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000802105050.A11733@rak.isternet.sk
http://www.redhat.com/support/errata/RHSA-2000-030.html
REDHAT:RHSA-2000:030
CVE-2000-0702
The net.init rc script in HP-UX 11.00 (S008net.init) allows local users to overwrite arbitrary files via a symlink attack that points from /tmp/stcp.conf to the targeted file.
2001-01-22
2005-11-02
CVE-2000-0702
http://www.securityfocus.com/bid/1602
BID:1602
http://archives.neohapsis.com/archives/bugtraq/2000-08/0261.html
BUGTRAQ:20000821 [HackersLab bugpaper] HP-UX net.init rc script
https://exchange.xforce.ibmcloud.com/vulnerabilities/5131
XF:hp-netinit-symlink(5131)
CVE-2000-0703
suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence.
2000-10-13
2004-09-02
CVE-2000-0703
http://www.securityfocus.com/bid/1547
BID:1547
http://archives.neohapsis.com/archives/bugtraq/2000-08/0022.html
BUGTRAQ:20000805 sperl 5.00503 (and newer ;) exploit
http://archives.neohapsis.com/archives/bugtraq/2000-08/0086.html
BUGTRAQ:20000808 MDKSA-2000:031 perl update
http://archives.neohapsis.com/archives/bugtraq/2000-08/0113.html
BUGTRAQ:20000810 Conectiva Linux security announcemente - PERL
http://archives.neohapsis.com/archives/bugtraq/2000-08/0153.html
BUGTRAQ:20000814 Trustix Security Advisory - perl and mailx
http://www.calderasystems.com/support/security/advisories/CSSA-2000-026.0.txt
CALDERA:CSSA-2000-026.0
DEBIAN:20000810
http://www.redhat.com/support/errata/RHSA-2000-048.html
REDHAT:RHSA-2000:048
http://www.novell.com/linux/security/advisories/suse_security_announce_59.html
SUSE:20000810 Security Hole in perl, all versions
http://www.turbolinux.com/pipermail/tl-security-announce/2000-August/000017.html
TURBO:TLSA2000018-1
XF:perl-shell-escape
CVE-2000-0704
Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands.
2000-09-21
2017-07-10
CVE-2000-0704
http://www.securityfocus.com/bid/1603
BID:1603
http://www.osvdb.org/11080
OSVDB:11080
ftp://sgigate.sgi.com/security/20000803-01-A
SGI:20000803-01-A
https://exchange.xforce.ibmcloud.com/vulnerabilities/5163
XF:irix-worldview-wnn-bo(5163)
CVE-2000-0705
ntop running in web mode allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-10-13
2004-09-02
CVE-2000-0705
http://www.securityfocus.com/bid/1550
BID:1550
http://archives.neohapsis.com/archives/bugtraq/2000-07/0459.html
BUGTRAQ:20000802 [ Hackerslab bug_paper ] ntop web mode vulnerabliity
http://www.osvdb.org/1496
OSVDB:1496
http://www.redhat.com/support/errata/RHSA-2000-049.html
REDHAT:RHSA-2000:049
XF:ntop-remote-file-access
CVE-2000-0706
Buffer overflows in ntop running in web mode allows remote attackers to execute arbitrary commands.
2000-10-13
2004-09-02
CVE-2000-0706
http://www.securityfocus.com/bid/1576
BID:1576
http://www.debian.org/security/2000/20000830
DEBIAN:20000830 ntop: Still remotely exploitable using buffer overflows
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:36.ntop.asc
FREEBSD:FreeBSD-SA-00:36
http://www.osvdb.org/1513
OSVDB:1513
XF:ntop-bo
CVE-2000-0707
PCCS MySQLDatabase Admin Tool Manager 1.2.4 and earlier installs the file dbconnect.inc within the web root, which allows remote attackers to obtain sensitive information such as the administrative password.
2000-10-13
2005-11-02
CVE-2000-0707
http://www.securityfocus.com/bid/1557
BID:1557
http://archives.neohapsis.com/archives/bugtraq/2000-08/0015.html
BUGTRAQ:20000804 PCCS MySQL DB Admin Tool v1.2.3- Advisory
http://pccs-linux.com/public/view.php3?bn=agora_pccslinux&key=965951324
CONFIRM:http://pccs-linux.com/public/view.php3?bn=agora_pccslinux&key=965951324
XF:pccs-mysql-admin-tool
CVE-2000-0708
Buffer overflow in Pragma Systems TelnetServer 2000 version 4.0 allows remote attackers to cause a denial of service via a long series of null characters to the rexec port.
2000-10-13
2005-11-02
CVE-2000-0708
http://www.securityfocus.com/bid/1605
BID:1605
http://www.pragmasys.com/TelnetServer/
CONFIRM:http://www.pragmasys.com/TelnetServer/
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0008&L=NTBUGTRAQ&P=R4247
NTBUGTRAQ:20000824 Remote DoS Attack in Pragma TelnetServer 2000 (Remote Execute Daemon) Vulnerability
XF:telnetserver-rpc-bo
CVE-2000-0709
The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to cause a denial of service in some components by requesting a URL whose name includes a standard DOS device name.
2000-09-21
2003-03-21
CVE-2000-0709
http://www.securityfocus.com/bid/1608
BID:1608
http://archives.neohapsis.com/archives/bugtraq/2000-08/0288.html
BUGTRAQ:20000823 Xato Advisory: FrontPage DOS Device DoS
http://msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp
CONFIRM:http://msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp
CVE-2000-0710
The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.
2000-09-21
2017-07-11
CVE-2000-0710
http://www.securityfocus.com/bid/1608
BID:1608
http://archives.neohapsis.com/archives/bugtraq/2000-08/0288.html
BUGTRAQ:20000823 Xato Advisory: FrontPage DOS Device DoS
http://msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp
CONFIRM:http://msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp
CVE-2000-0711
Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstrated by Brown Orifice.
2000-10-13
2005-11-02
CVE-2000-0711
http://www.securityfocus.com/bid/1545
BID:1545
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000805020429.11774.qmail@securityfocus.com
BUGTRAQ:20000805 Dangerous Java/Netscape Security Hole
http://www.securityfocus.com/templates/archive.pike?list=1&msg=3999922128E.EE84TAKAGI@java-house.etl.go.jp
BUGTRAQ:20000816 JDK 1.1.x Listening Socket Vulnerability (was Re: BrownOrifice can break firewalls!)
http://www.cert.org/advisories/CA-2000-15.html
CERT:CA-2000-15
CVE-2000-0712
Linux Intrusion Detection System (LIDS) 0.9.7 allows local users to gain root privileges when LIDS is disabled via the security=0 boot option.
2000-10-13
2004-09-02
CVE-2000-0712
http://www.securityfocus.com/bid/1549
BID:1549
http://archives.neohapsis.com/archives/bugtraq/2000-07/0486.html
BUGTRAQ:2000803 LIDS severe bug
http://www.lids.org/changelog.html
CONFIRM:http://www.lids.org/changelog.html
http://www.egroups.com/message/lids/1038
MISC:http://www.egroups.com/message/lids/1038
http://www.osvdb.org/1495
OSVDB:1495
CVE-2000-0713
Buffer overflow in Adobe Acrobat 4.05, Reader, Business Tools, and Fill In products that handle PDF files allows attackers to execute arbitrary commands via a long /Registry or /Ordering specifier.
2000-09-21
2003-03-21
CVE-2000-0713
http://www.securityfocus.com/bid/1509
BID:1509
http://archives.neohapsis.com/archives/bugtraq/2000-07/0382.html
BUGTRAQ:20000726 [SPSadvisory#39]Adobe Acrobat Series PDF File Buffer Overflow
http://www.adobe.com/misc/pdfsecurity.html
CONFIRM:http://www.adobe.com/misc/pdfsecurity.html
CVE-2000-0714
umb-scheme 3.2-11 for Red Hat Linux is installed with world-writeable files.
2000-09-21
2004-08-17
CVE-2000-0714
http://www.securityfocus.com/bid/1551
BID:1551
http://www.redhat.com/support/errata/RHSA-2000-047.html
REDHAT:RHSA-2000:047
CVE-2000-0715
DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite arbitrary files via a symlink attack on a temporary file.
2000-09-21
2001-12-16
CVE-2000-0715
http://www.securityfocus.com/bid/1552
BID:1552
http://seclists.org/bugtraq/2000/Jun/0298.html
BUGTRAQ:20000622 Re: rh 6.2 - gid compromises, etc [+ MORE!!!]
http://seclists.org/bugtraq/2000/Aug/0082.html
BUGTRAQ:20000805 Diskcheck 3.1.1 Symlink Vulnerability
http://seclists.org/bugtraq/2000/Aug/0096.html
BUGTRAQ:20000807 Re: Diskcheck 3.1.1 Symlink Vulnerability
CVE-2000-0716
WorldClient email client in MDaemon 2.8 includes the session ID in the referer field of an HTTP request when the user clicks on a URL, which allows the visited web site to hijack the session ID and read the user's email.
2001-01-22
2016-09-15
CVE-2000-0716
http://www.securityfocus.com/bid/1553
BID:1553
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0008&L=ntbugtraq&F=&S=&P=459
NTBUGTRAQ:20000809 Session hijacking in Alt-N's MDaemon 2.8
https://exchange.xforce.ibmcloud.com/vulnerabilities/5070
XF:mdaemon-session-id-hijack(5070)
CVE-2000-0717
GoodTech FTP server allows remote attackers to cause a denial of service via a large number of RNTO commands.
2001-05-07
2005-11-02
CVE-2000-0717
http://www.securityfocus.com/bid/1619
BID:1619
http://www.securityfocus.com/templates/archive.pike?list=1&msg=02ff01c0124c$e9387660$0201a8c0@aviram
BUGTRAQ:20000830 [EXPL] GoodTech's FTP Server vulnerable to a DoS (RNTO)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5166
XF:ftp-goodtech-rnto-dos(5166)
CVE-2000-0718
A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp directory before they are installed.
2000-10-13
2005-11-02
CVE-2000-0718
http://www.securityfocus.com/bid/1567
BID:1567
http://archives.neohapsis.com/archives/bugtraq/2000-08/0146.html
BUGTRAQ:20000812 MDKSA-2000:034 MandrakeUpdate update
CVE-2000-0719
VariCAD 7.0 is installed with world-writeable files, which allows local users to replace the VariCAD programs with a Trojan horse program.
2000-09-21
2001-12-16
CVE-2000-0719
http://archives.neohapsis.com/archives/bugtraq/2000-08/0126.html
BUGTRAQ:20000810 VariCAD 7.0 premission vulnerability
CVE-2000-0720
news.cgi in GWScripts News Publisher does not properly authenticate requests to add an author to the author index, which allows remote attackers to add new authors by directly posting an HTTP request to the new.cgi program with an addAuthor parameter, and setting the Referer to the news.cgi program.
2001-05-07
2005-11-02
CVE-2000-0720
http://www.securityfocus.com/bid/1621
BID:1621
http://www.securityfocus.com/templates/archive.pike?list=1&msg=003301c0123b$18f8c1a0$953b29d4@e8s9s4
BUGTRAQ:20000829 News Publisher CGI Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5169
XF:news-publisher-add-author(5169)
CVE-2000-0721
The FSserial, FlagShip_c, and FlagShip_p programs in the FlagShip package are installed world-writeable, which allows local users to replace them with Trojan horses.
2000-09-21
2003-05-08
CVE-2000-0721
http://www.securityfocus.com/bid/1586
BID:1586
http://archives.neohapsis.com/archives/bugtraq/2000-08/0114.html
BUGTRAQ:20000810 FlagShip v4.48.7449 premission vulnerability
CVE-2000-0722
Helix GNOME Updater helix-update 0.5 and earlier allows local users to install arbitrary RPM packages by creating the /tmp/helix-install installation directory before root has begun installing packages.
2000-09-21
2003-03-21
CVE-2000-0722
http://www.securityfocus.com/bid/1593
BID:1593
http://www.securityfocus.com/templates/archive.pike?list=1&msg=E13QAYl-0007il-00@the-village.bc.nu
BUGTRAQ:20000819 Multiple Local Vulnerabilities in Helix Gnome Installer
http://archives.neohapsis.com/archives/bugtraq/2000-08/0240.html
BUGTRAQ:20000820 Helix Code Security Advisory - Helix GNOME Update
http://archives.neohapsis.com/archives/bugtraq/2000-08/0251.html
BUGTRAQ:20000820 [Helix Beta] Helix Code Security Advisory - Helix GNOME Installer
CVE-2000-0723
Helix GNOME Updater helix-update 0.5 and earlier does not properly create /tmp directories, which allows local users to create empty system configuration files such as /etc/config.d/bashrc, /etc/config.d/csh.cshrc, and /etc/rc.config.
2000-09-21
2003-03-21
CVE-2000-0723
http://www.securityfocus.com/bid/1596
BID:1596
http://www.securityfocus.com/templates/archive.pike?list=1&msg=E13QAYl-0007il-00@the-village.bc.nu
BUGTRAQ:20000819 Multiple Local Vulnerabilities in Helix Gnome Installer
http://archives.neohapsis.com/archives/bugtraq/2000-08/0251.html
BUGTRAQ:20000820 [Helix Beta] Helix Code Security Advisory - Helix GNOME Installer
CVE-2000-0724
The go-gnome Helix GNOME pre-installer allows local users to overwrite arbitrary files via a symlink attack on various files in /tmp, including uudecode, snarf, and some installer files.
2000-09-21
2003-03-21
CVE-2000-0724
http://www.securityfocus.com/bid/1622
BID:1622
http://archives.neohapsis.com/archives/bugtraq/2000-08/0356.html
BUGTRAQ:20000829 Helix Code Security Advisory - go-gnome pre-installer
http://archives.neohapsis.com/archives/bugtraq/2000-08/0351.html
BUGTRAQ:20000829 More Helix Code installation problems (go-gnome)
CVE-2000-0725
Zope before 2.2.1 does not properly restrict access to the getRoles method, which allows users who can edit DTML to add or modify roles by modifying the roles list that is included in a request.
2000-10-13
2004-09-02
CVE-2000-0725
http://www.securityfocus.com/bid/1577
BID:1577
http://archives.neohapsis.com/archives/bugtraq/2000-08/0198.html
BUGTRAQ:20000816 MDKSA-2000:035 Zope update
http://archives.neohapsis.com/archives/bugtraq/2000-08/0259.html
BUGTRAQ:20000821 Conectiva Linux Security Announcement - Zope
http://www.zope.org/Products/Zope/Hotfix_08_09_2000/security_alert
CONFIRM:http://www.zope.org/Products/Zope/Hotfix_08_09_2000/security_alert
http://www.debian.org/security/2000/20000821
DEBIAN:20000821 zope: unauthorized escalation of privilege (update)
http://www.redhat.com/support/errata/RHSA-2000-052.html
REDHAT:RHSA-2000:052
CVE-2000-0726
CGIMail.exe CGI program in Stalkerlab Mailers 1.1.2 allows remote attackers to read arbitrary files by specifying the file in the $Attach$ hidden form variable.
2001-05-07
2005-11-02
CVE-2000-0726
http://www.securityfocus.com/bid/1623
BID:1623
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000829194618.H7744@thathost.com
BUGTRAQ:20000829 Stalker's CGImail Gives Read Access to All Server Files
https://exchange.xforce.ibmcloud.com/vulnerabilities/5165
XF:mailers-cgimail-spoof(5165)
CVE-2000-0727
xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL's, which allows an attacker to execute arbitrary commands via a URL that contains shell metacharacters.
2000-10-13
2004-09-02
CVE-2000-0727
http://www.securityfocus.com/bid/1624
BID:1624
http://marc.info/?l=bugtraq&m=96766355023239&w=2
BUGTRAQ:20000829 MDKSA-2000:041 - xpdf update
http://marc.info/?l=bugtraq&m=96886599829687&w=2
BUGTRAQ:20000913 Conectiva Linux Security Announcement - xpdf
http://www.calderasystems.com/support/security/advisories/CSSA-2000-031.0.txt
CALDERA:CSSA-2000-031.0
http://www.debian.org/security/2000/20000910a
DEBIAN:20000910 xpdf: local exploit
http://www.redhat.com/support/errata/RHSA-2000-060.html
REDHAT:RHSA-2000:060
CVE-2000-0728
xpdf PDF viewer client earlier than 0.91 allows local users to overwrite arbitrary files via a symlink attack.
2000-10-13
2004-09-02
CVE-2000-0728
http://www.securityfocus.com/bid/1624
BID:1624
http://marc.info/?l=bugtraq&m=96766355023239&w=2
BUGTRAQ:20000829 MDKSA-2000:041 - xpdf update
http://marc.info/?l=bugtraq&m=96886599829687&w=2
BUGTRAQ:20000913 Conectiva Linux Security Announcement - xpdf
http://www.calderasystems.com/support/security/advisories/CSSA-2000-031.0.txt
CALDERA:CSSA-2000-031.0
DEBIAN:20000910a
http://www.redhat.com/support/errata/RHSA-2000-060.html
REDHAT:RHSA-2000:060
CVE-2000-0729
FreeBSD 5.x, 4.x, and 3.x allows local users to cause a denial of service by executing a program with a malformed ELF image header.
2001-01-22
2004-09-02
CVE-2000-0729
http://www.securityfocus.com/bid/1625
BID:1625
http://archives.neohapsis.com/archives/freebsd/2000-08/0337.html
FREEBSD:FreeBSD-SA-00:41
http://www.osvdb.org/1534
OSVDB:1534
https://exchange.xforce.ibmcloud.com/vulnerabilities/5967
XF:freebsd-elf-dos(5967)
CVE-2000-0730
Vulnerability in newgrp command in HP-UX 11.0 allows local users to gain privileges.
2000-10-13
2009-03-01
CVE-2000-0730
http://www.securityfocus.com/bid/1580
BID:1580
http://archives.neohapsis.com/archives/bugtraq/2000-08/0144.html
HP:HPSBUX0008-118
CVE-2000-0731
Directory traversal vulnerability in Worm HTTP server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2001-05-07
2004-09-02
CVE-2000-0731
http://www.securityfocus.com/bid/1626
BID:1626
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0111.html
NTBUGTRAQ:20000825 DST2K0023: Directory Traversal Possible & Denial of Service in Wo rm HTTP Server
http://www.osvdb.org/1535
OSVDB:1535
https://exchange.xforce.ibmcloud.com/vulnerabilities/5148
XF:wormhttp-dir-traverse(5148)
CVE-2000-0732
Worm HTTP server allows remote attackers to cause a denial of service via a long URL.
2001-01-22
2005-11-02
CVE-2000-0732
http://www.securityfocus.com/bid/1626
BID:1626
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0111.html
NTBUGTRAQ:20000825 DST2K0023: Directory Traversal Possible & Denial of Service in Wo rm HTTP Server
https://exchange.xforce.ibmcloud.com/vulnerabilities/5149
XF:wormhttp-filename-dos(5149)
CVE-2000-0733
Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request.
2000-10-13
2005-11-02
CVE-2000-0733
http://www.securityfocus.com/bid/1572
BID:1572
http://archives.neohapsis.com/archives/bugtraq/2000-08/0154.html
BUGTRAQ:20000814 [LSD] IRIX telnetd remote vulnerability
ftp://sgigate.sgi.com/security/20000801-02-P
SGI:20000801-02-P
CVE-2000-0734
eEye IRIS 1.01 beta allows remote attackers to cause a denial of service via a large number of UDP connections.
2000-09-21
2016-10-17
CVE-2000-0734
http://www.securityfocus.com/bid/1627
BID:1627
http://marc.info/?l=bugtraq&m=96774637326591&w=2
BUGTRAQ:20000831 Remote DoS Attack in Eeye Iris 1.01 and SpyNet CaptureNet v3.12
CVE-2000-0735
Buffer overflow in Becky! Internet Mail client 1.26.03 and earlier allows remote attackers to cause a denial of service via a long Content-type: MIME header when the user replies to a message.
2000-09-21
2003-03-21
CVE-2000-0735
http://www.securityfocus.com/bid/1588
BID:1588
http://archives.neohapsis.com/archives/bugtraq/2000-08/0234.html
BUGTRAQ:20000818 Becky! Internet Mail Buffer overflow
http://member.nifty.ne.jp/rimarts/becky-e/Readme.txt
CONFIRM:http://member.nifty.ne.jp/rimarts/becky-e/Readme.txt
CVE-2000-0736
Buffer overflow in Becky! Internet Mail client 1.26.04 and earlier allows remote attackers to cause a denial of service via a long Content-type: MIME header when the user forwards a message.
2000-09-21
2003-03-21
CVE-2000-0736
http://www.securityfocus.com/bid/1588
BID:1588
http://archives.neohapsis.com/archives/bugtraq/2000-08/0234.html
BUGTRAQ:20000818 Becky! Internet Mail Buffer overflow
http://member.nifty.ne.jp/rimarts/becky-e/Readme.txt
CONFIRM:http://member.nifty.ne.jp/rimarts/becky-e/Readme.txt
CVE-2000-0737
The Service Control Manager (SCM) in Windows 2000 creates predictable named pipes, which allows a local user with console access to gain administrator privileges, aka the "Service Control Manager Named Pipe Impersonation" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0737
http://www.securityfocus.com/bid/1535
BID:1535
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-053
MS:MS00-053
CVE-2000-0738
WebShield SMTP 4.5 allows remote attackers to cause a denial of service by sending e-mail with a From: address that has a . (period) at the end, which causes WebShield to continuously send itself copies of the e-mail.
2001-01-22
2005-11-02
CVE-2000-0738
http://www.securityfocus.com/bid/1589
BID:1589
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0101.html
NTBUGTRAQ:20000818 WebShield SMTP infinite loop DoS Attack
https://exchange.xforce.ibmcloud.com/vulnerabilities/5100
XF:webshield-smtp-dos(5100)
CVE-2000-0739
Directory traversal vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTPS request to the enrollment server.
2002-03-09
2002-02-21
CVE-2000-0739
http://www.securityfocus.com/bid/1537
BID:1537
http://archives.neohapsis.com/archives/bugtraq/2000-07/0473.html
BUGTRAQ:20000802 NAI Net Tools PKI Server vulnerabilities
http://download.nai.com/products/licensed/pgp/hf3pki10.txt
CONFIRM:http://download.nai.com/products/licensed/pgp/hf3pki10.txt
http://www.osvdb.org/1489
OSVDB:1489
https://exchange.xforce.ibmcloud.com/vulnerabilities/5066
XF:nettools-pki-dir-traverse(5066)
CVE-2000-0740
Buffer overflow in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary commands via a long URL in the HTTPS port.
2002-03-09
2002-02-21
CVE-2000-0740
http://www.securityfocus.com/bid/1536
BID:1536
http://archives.neohapsis.com/archives/bugtraq/2000-07/0473.html
BUGTRAQ:20000802 NAI Net Tools PKI Server vulnerabilities
http://download.nai.com/products/licensed/pgp/hf3pki10.txt
CONFIRM:http://download.nai.com/products/licensed/pgp/hf3pki10.txt
http://www.osvdb.org/1488
OSVDB:1488
https://exchange.xforce.ibmcloud.com/vulnerabilities/5026
XF:nai-nettools-strong-bo(5026)
CVE-2000-0741
Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary code via format strings in a URL with a .XUDA extension.
2002-03-09
2002-02-21
CVE-2000-0741
http://www.securityfocus.com/bid/1538
BID:1538
http://archives.neohapsis.com/archives/bugtraq/2000-07/0473.html
BUGTRAQ:20000802 NAI Net Tools PKI Server vulnerabilities
http://download.nai.com/products/licensed/pgp/hf3pki10.txt
CONFIRM:http://download.nai.com/products/licensed/pgp/hf3pki10.txt
http://www.osvdb.org/1490
OSVDB:1490
CVE-2000-0742
The IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability.
2001-05-07
2005-11-02
CVE-2000-0742
http://www.securityfocus.com/bid/1544
BID:1544
http://www.securityfocus.com/templates/archive.pike?list=1&mid=63120
BUGTRAQ:20000602 ipx storm
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-054
MS:MS00-054
https://exchange.xforce.ibmcloud.com/vulnerabilities/5079
XF:win-ipx-ping-packet(5079)
CVE-2000-0743
Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value.
2000-10-13
2005-11-02
CVE-2000-0743
http://www.securityfocus.com/bid/1569
BID:1569
http://archives.neohapsis.com/archives/bugtraq/2000-08/0112.html
BUGTRAQ:20000810 Remote vulnerability in Gopherd 2.x
CVE-2000-0744
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2000-0743. Reason: This candidate is a duplicate of CVE-2000-0743. Notes: All CVE users should reference CVE-2000-0743 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
2000-10-13
2022-08-16
CVE-2000-0744
CVE-2000-0745
admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd parameter.
2000-10-13
2004-09-02
CVE-2000-0745
http://www.securityfocus.com/bid/1592
BID:1592
http://archives.neohapsis.com/archives/bugtraq/2000-08/0243.html
BUGTRAQ:20000821 Vuln. in all sites using PHP-Nuke, versions less than 3
http://www.osvdb.org/1521
OSVDB:1521
CVE-2000-0746
Vulnerabilities in IIS 4.0 and 5.0 do not properly protect against cross-site scripting (CSS) attacks. They allow a malicious web site operator to embed scripts in a link to a trusted site, which are returned without quoting in an error message back to the client. The client then executes those scripts in the same context as the trusted site, aka the "IIS Cross-Site Scripting" vulnerabilities.
2000-09-21
2018-10-12
CVE-2000-0746
http://www.securityfocus.com/bid/1594
BID:1594
http://www.securityfocus.com/bid/1595
BID:1595
http://www.securityfocus.com/templates/archive.pike?list=1&msg=39A12BD6.E811BF4F@nat.bg
BUGTRAQ:20000821 IIS 5.0 cross site scripting vulnerability - using .shtml files or /_vti_bin/shtml.dll
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-060
MS:MS00-060
CVE-2000-0747
The logrotate script for OpenLDAP before 1.2.11 in Conectiva Linux sends an improper signal to the kernel log daemon (klogd) and kills it.
2004-09-01
2004-07-22
CVE-2000-0747
http://archives.neohapsis.com/archives/bugtraq/2000-07/0379.html
BUGTRAQ:20000726 CONECTIVA LINUX SECURITY ANNOUNCEMENT - OPENLDAP
https://exchange.xforce.ibmcloud.com/vulnerabilities/5036
XF:openldap-logrotate-script-dos(5036)
CVE-2000-0748
OpenLDAP 1.2.11 and earlier improperly installs the ud binary with group write permissions, which could allow any user in that group to replace the binary with a Trojan horse.
2000-09-21
2001-12-16
CVE-2000-0748
http://www.securityfocus.com/bid/1511
BID:1511
http://archives.neohapsis.com/archives/bugtraq/2000-07/0375.html
BUGTRAQ:20000726 Group-writable executable in OpenLDAP
CVE-2000-0749
Buffer overflow in the Linux binary compatibility module in FreeBSD 3.x through 5.x allows local users to gain root privileges via long filenames in the linux shadow file system.
2001-01-22
2004-09-02
CVE-2000-0749
http://www.securityfocus.com/bid/1628
BID:1628
http://archives.neohapsis.com/archives/freebsd/2000-08/0338.html
FREEBSD:FreeBSD-SA-00:42
http://www.osvdb.org/1536
OSVDB:1536
https://exchange.xforce.ibmcloud.com/vulnerabilities/5968
XF:freebsd-linux-module-bo(5968)
CVE-2000-0750
Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name.
2000-10-13
2004-09-02
CVE-2000-0750
http://www.securityfocus.com/bid/1558
BID:1558
http://archives.neohapsis.com/archives/bugtraq/2000-08/0064.html
BUGTRAQ:20000808 OpenBSD 2.7 / NetBSD 1.4.2 mopd buffer overflow
http://archives.neohapsis.com/archives/freebsd/2000-08/0336.html
FREEBSD:FreeBSD-SA-00:40
http://cvsweb.netbsd.org/bsdweb.cgi/basesrc/usr.sbin/mopd/mopd/process.c.diff?r1=1.7&r2=1.8&f=h
MISC:http://cvsweb.netbsd.org/bsdweb.cgi/basesrc/usr.sbin/mopd/mopd/process.c.diff?r1=1.7&r2=1.8&f=h
http://www.openbsd.org/errata.html#mopd
OPENBSD:20000705 Mopd contained a buffer overflow.
http://www.redhat.com/support/errata/RHSA-2000-050.html
REDHAT:RHSA-2000:050
CVE-2000-0751
mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands.
2000-10-13
2004-09-02
CVE-2000-0751
http://www.securityfocus.com/bid/1559
BID:1559
http://archives.neohapsis.com/archives/bugtraq/2000-08/0064.html
BUGTRAQ:20000808 OpenBSD 2.7 / NetBSD 1.4.2 mopd buffer overflow
http://archives.neohapsis.com/archives/freebsd/2000-08/0336.html
FREEBSD:FreeBSD-SA-00:40
http://cvsweb.netbsd.org/bsdweb.cgi/basesrc/usr.sbin/mopd/mopd/process.c.diff?r1=1.7&r2=1.8&f=h
MISC:http://cvsweb.netbsd.org/bsdweb.cgi/basesrc/usr.sbin/mopd/mopd/process.c.diff?r1=1.7&r2=1.8&f=h
http://www.openbsd.org/errata.html#mopd
OPENBSD:20000705 Mopd contained a buffer overflow.
http://www.redhat.com/support/errata/RHSA-2000-050.html
REDHAT:RHSA-2000:050
CVE-2000-0752
Buffer overflows in brouted in FreeBSD and possibly other OSes allows local users to gain root privileges via long command line arguments.
2000-09-21
2003-05-08
CVE-2000-0752
http://www.securityfocus.com/bid/1629
BID:1629
http://archives.neohapsis.com/archives/freebsd/2000-08/0339.html
FREEBSD:FreeBSD-SA-00:43
CVE-2000-0753
The Microsoft Outlook mail client identifies the physical path of the sender's machine within a winmail.dat attachment to Rich Text Format (RTF) files.
2002-03-09
2002-02-25
CVE-2000-0753
http://www.securityfocus.com/bid/1631
BID:1631
http://www.securityfocus.com/archive/1/78240
BUGTRAQ:20000824 Outlook winmail.dat
http://www.securityfocus.com/archive/1/201422
BUGTRAQ:20010802 Outlook 2000 Rich Text information disclosure
https://exchange.xforce.ibmcloud.com/vulnerabilities/5508
XF:outlook-reveal-path(5508)
CVE-2000-0754
Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords.
2000-10-13
2005-11-02
CVE-2000-0754
http://www.securityfocus.com/bid/1581
BID:1581
http://archives.neohapsis.com/archives/bugtraq/2000-08/0144.html
HP:HPSBUX0008-119
CVE-2000-0755
Vulnerability in the newgrp command in HP-UX 11.00 allows local users to gain privileges.
2000-09-21
2003-03-21
CVE-2000-0755
http://www.securityfocus.com/bid/1581
BID:1581
http://archives.neohapsis.com/archives/bugtraq/2000-08/0144.html
HP:HPSBUX0008-118
CVE-2000-0756
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows attackers to cause a denial of service.
2000-09-21
2003-03-21
CVE-2000-0756
http://www.securityfocus.com/bid/1633
BID:1633
http://www.securityfocus.com/templates/archive.pike?list=1&msg=Springmail.105.967737080.0.16997300@www.springmail.com
BUGTRAQ:20000831 vCard DoS on Outlook 2000
CVE-2000-0757
The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed.
2000-09-21
2001-12-16
CVE-2000-0757
http://www.securityfocus.com/bid/1555
BID:1555
http://archives.neohapsis.com/archives/bugtraq/2000-08/0074.html
BUGTRAQ:20000808 Exploit for Totalbill...
CVE-2000-0758
The web interface for Lyris List Manager 3 and 4 allows list subscribers to obtain administrative access by modifying the value of the list_admin hidden form field.
2000-10-13
2005-11-02
CVE-2000-0758
http://www.securityfocus.com/bid/1584
BID:1584
http://archives.neohapsis.com/archives/bugtraq/2000-08/0149.html
BUGTRAQ:20000811 Lyris List Manager Administration Hole
http://www.lyris.com/lm/lm_updates.html
CONFIRM:http://www.lyris.com/lm/lm_updates.html
CVE-2000-0759
Jakarta Tomcat 3.1 under Apache reveals physical path information when a remote attacker requests a URL that does not exist, which generates an error message that includes the physical path.
2000-09-21
2005-07-02
CVE-2000-0759
http://www.securityfocus.com/bid/1531
BID:1531
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26date%3D2000-07-15%26msg%3DPine.SUN.3.96.1000719184401.17782A-100000@grex.cyberspace.org
BUGTRAQ:20000719 [LoWNOISE] Tomcat 3.1 Path Revealing Problem.
http://www.iss.net/security_center/static/4967.php
XF:tomcat-error-path-reveal(4967)
CVE-2000-0760
The Snoop servlet in Jakarta Tomcat 3.1 and 3.0 under Apache reveals sensitive system information when a remote attacker requests a nonexistent URL with a .snp extension.
2000-09-21
2001-12-16
CVE-2000-0760
http://www.securityfocus.com/bid/1532
BID:1532
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26date%3D2000-07-15%26msg%3DPine.SUN.3.96.1000719235404.24004A-100000@grex.cyberspace.org
BUGTRAQ:20000719 [LoWNOISE] Snoop Servlet (Tomcat 3.1 and 3.0)
XF:tomcat-snoop-info
CVE-2000-0761
OS2/Warp 4.5 FTP server allows remote attackers to cause a denial of service via a long username.
2000-10-13
2005-11-02
CVE-2000-0761
http://www.securityfocus.com/bid/1582
BID:1582
http://archives.neohapsis.com/archives/bugtraq/2000-08/0166.html
BUGTRAQ:20000815 OS/2 Warp 4.5 FTP Server DoS
ftp://ftp.software.ibm.com/ps/products/tcpip/fixes/v4.3os2/ic27721/README
CONFIRM:ftp://ftp.software.ibm.com/ps/products/tcpip/fixes/v4.3os2/ic27721/README
CVE-2000-0762
The default installation of eTrust Access Control (formerly SeOS) uses a default encryption key, which allows remote attackers to spoof the eTrust administrator and gain privileges.
2001-01-22
2004-09-02
CVE-2000-0762
http://www.securityfocus.com/bid/1583
BID:1583
http://www.securityfocus.com/templates/archive.pike?list=1&msg=004601c003a1$ba473260$ddeaa2cd@itradefair.net
BUGTRAQ:20000811 eTrust Access Control - Root compromise for default install
http://support.ca.com/techbases/eTrust/etrust_access_control-response.html
CONFIRM:http://support.ca.com/techbases/eTrust/etrust_access_control-response.html
http://www.osvdb.org/1517
OSVDB:1517
https://exchange.xforce.ibmcloud.com/vulnerabilities/5076
XF:etrust-access-control-default(5076)
CVE-2000-0763
xlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option.
2000-10-13
2005-11-02
CVE-2000-0763
http://www.securityfocus.com/bid/1585
BID:1585
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000815231724.A14694@subterrain.net
BUGTRAQ:20000816 xlock vulnerability
http://archives.neohapsis.com/archives/bugtraq/2000-08/0212.html
BUGTRAQ:20000817 Conectiva Linux Security Announcement - xlockmore
http://archives.neohapsis.com/archives/bugtraq/2000-08/0294.html
BUGTRAQ:20000823 MDKSA-2000:038 - xlockmore update
http://www.debian.org/security/2000/20000816
DEBIAN:20000816 xlockmore: possible shadow file compromise
http://archives.neohapsis.com/archives/freebsd/2000-08/0340.html
FREEBSD:FreeBSD-SA-00:44.xlockmore
CVE-2000-0764
Intel Express 500 series switches allow a remote attacker to cause a denial of service via a malformed IP packet.
2001-01-22
2005-11-02
CVE-2000-0764
http://www.securityfocus.com/bid/1609
BID:1609
http://archives.neohapsis.com/archives/bugtraq/2000-08/0338.html
BUGTRAQ:20000828 Intel Express Switch 500 series DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5154
XF:intel-express-switch-dos(5154)
CVE-2000-0765
Buffer overflow in the HTML interpreter in Microsoft Office 2000 allows an attacker to execute arbitrary commands via a long embedded object tag, aka the "Microsoft Office HTML Object Tag" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0765
http://www.securityfocus.com/bid/1561
BID:1561
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-056
MS:MS00-056
CVE-2000-0766
Buffer overflow in vqSoft vqServer 1.4.49 allows remote attackers to cause a denial of service or possibly gain privileges via a long HTTP GET request.
2001-01-22
2005-11-02
CVE-2000-0766
http://www.securityfocus.com/bid/1610
BID:1610
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008270354.UAA10952@user4.hushmail.com
BUGTRAQ:20000819 D.o.S Vulnerability in vqServer
https://exchange.xforce.ibmcloud.com/vulnerabilities/5152
XF:vqserver-get-dos(5152)
CVE-2000-0767
The ActiveX control for invoking a scriptlet in Internet Explorer 4.x and 5.x renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka the "Scriptlet Rendering" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0767
http://www.securityfocus.com/bid/1564
BID:1564
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-055
MS:MS00-055
CVE-2000-0768
A function in Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a variant of the "Frame Domain Verification" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0768
http://www.securityfocus.com/bid/1564
BID:1564
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-055
MS:MS00-055
CVE-2000-0769
O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.exe.
2000-09-21
2016-10-17
CVE-2000-0769
http://www.securityfocus.com/bid/1611
BID:1611
http://marc.info/?l=bugtraq&m=96715834610888&w=2
BUGTRAQ:20000824 WebServer Pro 2.3.7 Vulnerability
CVE-2000-0770
IIS 4.0 and 5.0 does not properly restrict access to certain types of files when their parent folders have less restrictive permissions, which could allow remote attackers to bypass access restrictions to some files, aka the "File Permission Canonicalization" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0770
http://www.securityfocus.com/bid/1565
BID:1565
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-057
MS:MS00-057
CVE-2000-0771
Microsoft Windows 2000 allows local users to cause a denial of service by corrupting the local security policy via malformed RPC traffic, aka the "Local Security Policy Corruption" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0771
http://www.securityfocus.com/bid/1613
BID:1613
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-062
MS:MS00-062
CVE-2000-0772
The installation of Tumbleweed Messaging Management System (MMS) 4.6 and earlier (formerly Worldtalk Worldsecure) creates a default account "sa" with no password.
2000-09-21
2017-12-18
CVE-2000-0772
http://www.securityfocus.com/bid/1562
BID:1562
http://archives.neohapsis.com/archives/bugtraq/2000-08/0098.html
BUGTRAQ:20000810 Tumbleweed Worldsecure (MMS) BLANK 'sa' account password vulnerability
http://thompson.tumbleweed.com/NewKB/bulletin/UPFiles/sa-official.htm
CONFIRM:http://thompson.tumbleweed.com/NewKB/bulletin/UPFiles/sa-official.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/5072
XF:tumbleweed-mms-blank-password(5072)
CVE-2000-0773
Bajie HTTP web server 0.30a allows remote attackers to read arbitrary files via a URL that contains a "....", a variant of the dot dot directory traversal attack.
2004-09-01
2004-07-22
CVE-2000-0773
http://www.securityfocus.com/bid/1522
BID:1522
http://archives.neohapsis.com/archives/bugtraq/2000-07/0426.html
BUGTRAQ:20000731 Two security flaws in Bajie Webserver
https://exchange.xforce.ibmcloud.com/vulnerabilities/5021
XF:bajie-view-arbitrary-files(5021)
CVE-2000-0774
The sample Java servlet "test" in Bajie HTTP web server 0.30a reveals the real pathname of the web document root.
2000-09-21
2001-12-16
CVE-2000-0774
http://www.securityfocus.com/bid/1521
BID:1521
http://archives.neohapsis.com/archives/bugtraq/2000-07/0426.html
BUGTRAQ:20000731 Two security flaws in Bajie Webserver
CVE-2000-0775
Buffer overflow in RobTex Viking server earlier than 1.06-370 allows remote attackers to cause a denial of service or execute arbitrary commands via a long HTTP GET request, or long Unless-Modified-Since, If-Range, or If-Modified-Since headers.
2000-09-21
2003-05-08
CVE-2000-0775
http://www.securityfocus.com/bid/1614
BID:1614
http://www.securityfocus.com/templates/archive.pike?list=1&msg=399a01c01122$0d7f2310$0201a8c0@aviram
BUGTRAQ:20000828 [NT] Viking security vulnerabilities enable remote code execution (long URL, date parsing)
http://www.robtex.com/viking/bugs.htm
CONFIRM:http://www.robtex.com/viking/bugs.htm
CVE-2000-0776
Mediahouse Statistics Server 5.02x allows remote attackers to execute arbitrary commands via a long HTTP GET request.
2002-03-09
2002-02-21
CVE-2000-0776
http://www.securityfocus.com/bid/1568
BID:1568
http://archives.neohapsis.com/archives/bugtraq/2000-08/0118.html
BUGTRAQ:20000810 [DeepZone Advisory] Statistics Server 5.02x stack overflow (Win2k remote exploit)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5113
XF:mediahouse-stats-livestats-bo(5113)
CVE-2000-0777
The password protection feature of Microsoft Money can store the password in plaintext, which allows attackers with physical access to the system to obtain the password, aka the "Money Password" vulnerability.
2000-10-13
2005-11-02
CVE-2000-0777
http://www.securityfocus.com/bid/1615
BID:1615
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-061
MS:MS00-061
CVE-2000-0778
IIS 5.0 allows remote attackers to obtain source code for .ASP files and other scripts via an HTTP GET request with a "Translate: f" header, aka the "Specialized Header" vulnerability.
2000-10-13
2004-09-02
CVE-2000-0778
http://www.securityfocus.com/bid/1578
BID:1578
http://www.securityfocus.com/templates/archive.pike?list=1&msg=080D5336D882D211B56B0060080F2CD696A7C9@beta.mia.cz
BUGTRAQ:20000815 Translate:f summary, history and thoughts
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-058
MS:MS00-058
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0008&L=ntbugtraq&F=&S=&P=5212
NTBUGTRAQ:20000816 Translate: f
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A927
OVAL:oval:org.mitre.oval:def:927
CVE-2000-0779
Checkpoint Firewall-1 with the RSH/REXEC setting enabled allows remote attackers to bypass access restrictions and connect to a RSH/REXEC client via malformed connection requests.
2000-10-13
2004-09-02
CVE-2000-0779
http://www.securityfocus.com/bid/1534
BID:1534
http://www.checkpoint.com/techsupport/alerts/list_vun.html#Improper_stderr
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#Improper_stderr
http://www.osvdb.org/1487
OSVDB:1487
CVE-2000-0780
The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack.
2000-10-13
2005-11-02
CVE-2000-0780
http://www.securityfocus.com/bid/1617
BID:1617
http://marc.info/?l=bugtraq&m=96767207207553&w=2
BUGTRAQ:20000830 Vulnerability Report On IPSWITCH's IMail
http://www.ipswitch.com/Support/IMail/news.html
CONFIRM:http://www.ipswitch.com/Support/IMail/news.html
CVE-2000-0781
uagentsetup in ARCServeIT Client Agent 6.62 does not properly check for the existence or ownership of a temporary file which is moved to the agent.cfg configuration file, which allows local users to execute arbitrary commands by modifying the temporary file before it is moved.
2004-09-01
2004-07-22
CVE-2000-0781
http://www.securityfocus.com/bid/1519
BID:1519
http://archives.neohapsis.com/archives/bugtraq/2000-07/0431.html
BUGTRAQ:20000728 Client Agent 6.62 for Unix Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5023
XF:arcserveit-clientagent-temp-file(5023)
CVE-2000-0782
netauth.cgi program in Netwin Netauth 4.2e and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-10-13
2005-11-02
CVE-2000-0782
http://www.securityfocus.com/bid/1587
BID:1587
http://www.securityfocus.com/templates/archive.pike?list=1&msg=NEBBJCLKGNOGCOIOBJNAGEHLCPAA.marc@eeye.com
BUGTRAQ:20000817 Netauth: Web Based Email Management System
http://netwinsite.com/netauth/updates.htm
CONFIRM:http://netwinsite.com/netauth/updates.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/5090
XF:netwin-netauth-dir-traverse(5090)
CVE-2000-0783
Watchguard Firebox II allows remote attackers to cause a denial of service by sending a malformed URL to the authentication service on port 4100.
2001-01-22
2005-11-02
CVE-2000-0783
http://www.securityfocus.com/bid/1573
BID:1573
http://archives.neohapsis.com/archives/bugtraq/2000-08/0162.html
BUGTRAQ:20000815 Watchguard Firebox Authentication DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5098
XF:firebox-url-dos(5098)
CVE-2000-0784
sshd program in the Rapidstream 2.1 Beta VPN appliance has a hard-coded "rsadmin" account with a null password, which allows remote attackers to execute arbitrary commands via ssh.
2000-09-21
2003-03-21
CVE-2000-0784
http://www.securityfocus.com/bid/1574
BID:1574
http://archives.neohapsis.com/archives/bugtraq/2000-08/0216.html
BUGTRAQ:20000816 Remote Root Compromise On All RapidStream VPN Appliances
CVE-2000-0785
WircSrv IRC Server 5.07s allows IRC operators to read arbitrary files via the importmotd command, which sets the Message of the Day (MOTD) to the specified file.
2000-09-21
2016-10-17
CVE-2000-0785
http://marc.info/?l=bugtraq&m=96353027909756&w=2
BUGTRAQ:20000713 More wIRCSrv stupidity
CVE-2000-0786
GNU userv 1.0.0 and earlier does not properly perform file descriptor swapping, which can corrupt the USERV_GROUPS and USERV_GIDS environmental variables and allow local users to bypass some access restrictions.
2000-10-13
2005-11-02
CVE-2000-0786
http://www.securityfocus.com/bid/1516
BID:1516
http://archives.neohapsis.com/archives/bugtraq/2000-07/0389.html
BUGTRAQ:20000726 userv security boundary tool 1.0.1 (SECURITY FIX)
http://marc.info/?l=bugtraq&m=96473640717095&w=2
CONFIRM:http://marc.info/?l=bugtraq&m=96473640717095&w=2
http://www.debian.org/security/2000/20000727
DEBIAN:20000727 userv: local exploit
CVE-2000-0787
IRC Xchat client versions 1.4.2 and earlier allows remote attackers to execute arbitrary commands by encoding shell metacharacters into a URL which XChat uses to launch a web browser.
2000-10-13
2004-09-02
CVE-2000-0787
http://www.securityfocus.com/bid/1601
BID:1601
http://archives.neohapsis.com/archives/bugtraq/2000-08/0215.html
BUGTRAQ:20000817 XChat URL handler vulnerabilty
http://archives.neohapsis.com/archives/bugtraq/2000-08/0301.html
BUGTRAQ:20000824 MDKSA-2000:039 - xchat update
http://archives.neohapsis.com/archives/bugtraq/2000-08/0305.html
BUGTRAQ:20000825 Conectiva Linux Security Announcement - xchat
http://www.redhat.com/support/errata/RHSA-2000-055.html
REDHAT:RHSA-2000:055
CVE-2000-0788
The Mail Merge tool in Microsoft Word does not prompt the user before executing Visual Basic (VBA) scripts in an Access database, which could allow an attacker to execute arbitrary commands.
2002-03-09
2002-02-26
CVE-2000-0788
http://www.securityfocus.com/bid/1566
BID:1566
http://www.securityfocus.com/templates/archive.pike?list=1&msg=398EB9CA.27E03A9C@nat.bg
BUGTRAQ:20000807 MS Word and MS Access vulnerability - executing arbitrary programs, may be exploited by IE/Outlook
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-071
MS:MS00-071
https://exchange.xforce.ibmcloud.com/vulnerabilities/5322
XF:word-mail-merge(5322)
CVE-2000-0789
WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges.
2000-09-21
2001-12-16
CVE-2000-0789
http://archives.neohapsis.com/archives/bugtraq/2000-08/0201.html
BUGTRAQ:20000816 WinU 4/5 weak password vulnerability
CVE-2000-0790
The web-based folder display capability in Microsoft Internet Explorer 5.5 on Windows 98 allows local users to insert Trojan horse programs by modifying the Folder.htt file and using the InvokeVerb method in the ShellDefView ActiveX control to specify a default execute option for the first file that is listed in the folder.
2002-03-09
2002-02-26
CVE-2000-0790
http://www.securityfocus.com/bid/1571
BID:1571
http://www.securityfocus.com/templates/archive.pike?list=1&msg=3998370D.732A03F1@nat.bg
BUGTRAQ:20000828 IE 5.5/5.x for Win98 may execute arbitrary files that can be accessed thru Microsoft Networking. Also local Administrator compromise at least on default Windows 2000.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5097
XF:ie-folder-remote-exe(5097)
CVE-2000-0791
Trustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows local users to replace it with a Trojan horse.
2000-09-21
2003-03-21
CVE-2000-0791
http://www.securityfocus.com/bid/1575
BID:1575
http://archives.neohapsis.com/archives/bugtraq/2000-08/0179.html
BUGTRAQ:20000815 Trustix security advisory - apache-ssl
CVE-2000-0792
Gnome Lokkit firewall package before 0.41 does not properly restrict access to some ports, even if a user does not make any services available.
2000-10-13
2004-09-02
CVE-2000-0792
http://www.securityfocus.com/bid/1590
BID:1590
http://archives.neohapsis.com/archives/bugtraq/2000-08/0252.html
BUGTRAQ:20000819 Security update for Gnome-Lokkit
http://www.osvdb.org/1520
OSVDB:1520
CVE-2000-0793
Norton AntiVirus 5.00.01C with the Novell Netware client does not properly restart the auto-protection service after the first user has logged off of the system.
2000-09-21
2001-12-16
CVE-2000-0793
http://www.securityfocus.com/bid/1533
BID:1533
http://www.securityfocus.com/templates/archive.pike?list=1&msg=398222C5@zathras.cc.vt.edu
BUGTRAQ:20000728 Norton Antivirus Protection Disabled under Novell Netware
CVE-2000-0794
Buffer overflow in IRIX libgl.so library allows local users to gain root privileges via a long HOME variable to programs such as (1) gmemusage and (2) gr_osview.
2000-09-21
2006-07-04
CVE-2000-0794
http://www.securityfocus.com/bid/1527
BID:1527
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558@ix.put.poznan.pl
BUGTRAQ:20000802 [LSD] some unpublished LSD exploit codes
http://www.osvdb.org/8568
OSVDB:8568
http://www.iss.net/security_center/static/5063.php
XF:irix-libgl-bo(5063)
CVE-2000-0795
Buffer overflow in lpstat in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long -n option.
2002-03-09
2001-12-16
CVE-2000-0795
http://www.securityfocus.com/bid/1529
BID:1529
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558@ix.put.poznan.pl
BUGTRAQ:20000802 [LSD] some unpublished LSD exploit codes
http://www.osvdb.org/1485
OSVDB:1485
CVE-2000-0796
Buffer overflow in dmplay in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long command line option.
2002-03-09
2002-02-21
CVE-2000-0796
http://www.securityfocus.com/bid/1528
BID:1528
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558@ix.put.poznan.pl
BUGTRAQ:20000802 [LSD] some unpublished LSD exploit codes
http://www.osvdb.org/1484
OSVDB:1484
https://exchange.xforce.ibmcloud.com/vulnerabilities/5064
XF:irix-dmplay-bo(5064)
CVE-2000-0797
Buffer overflow in gr_osview in IRIX 6.2 and 6.3 allows local users to gain privileges via a long -D option.
2004-09-01
2004-08-17
CVE-2000-0797
http://www.securityfocus.com/bid/1526
BID:1526
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558@ix.put.poznan.pl
BUGTRAQ:20000802 [LSD] some unpublished LSD exploit codes
http://www.osvdb.org/3815
OSVDB:3815
ftp://patches.sgi.com/support/free/security/advisories/20040104-01-P.asc
SGI:20040104-01-P
https://exchange.xforce.ibmcloud.com/vulnerabilities/5062
XF:irix-grosview-bo(5062)
CVE-2000-0798
The truncate function in IRIX 6.x does not properly check for privileges when the file is in the xfs file system, which allows local users to delete the contents of arbitrary files.
2000-09-21
2006-06-25
CVE-2000-0798
http://www.securityfocus.com/bid/1540
BID:1540
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558@ix.put.poznan.pl
BUGTRAQ:20000802 [LSD] some unpublished LSD exploit codes
http://www.osvdb.org/8569
OSVDB:8569
CVE-2000-0799
inpview in InPerson in SGI IRIX 5.3 through IRIX 6.5.10 allows local users to gain privileges via a symlink attack on the .ilmpAAA temporary file.
2001-09-18
2005-11-02
CVE-2000-0799
http://www.securityfocus.com/bid/1530
BID:1530
http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558@ix.put.poznan.pl
BUGTRAQ:20000802 [LSD] some unpublished LSD exploit codes
ftp://patches.sgi.com/support/free/security/advisories/20001101-01-I
SGI:20001101-01-I
https://exchange.xforce.ibmcloud.com/vulnerabilities/5065
XF:irix-inpview-symlink(5065)
CVE-2000-0800
String parsing error in rpc.kstatd in the linuxnfs or knfsd packages in SuSE and possibly other Linux systems allows remote attackers to gain root privileges.
2000-09-21
2002-10-25
CVE-2000-0800
http://www.novell.com/linux/security/advisories/suse_security_announce_58.html
SUSE:20000810 Security Hole in knfsd, all versions
CVE-2000-0801
Buffer overflow in bdf program in HP-UX 11.00 may allow local users to gain root privileges via a long -t option.
2000-09-21
2001-12-16
CVE-2000-0801
http://www.securityfocus.com/bid/1520
BID:1520
http://archives.neohapsis.com/archives/bugtraq/2000-07/0388.html
BUGTRAQ:20000727 [ Hackerslab bug_paper ] HP-UX bdf -t option buffer overflow vul.
CVE-2000-0802
The BAIR program does not properly restrict access to the Internet Explorer Internet options menu, which allows local users to obtain access to the menu by modifying the registry key that starts BAIR.
2000-09-21
2016-10-17
CVE-2000-0802
http://marc.info/?l=bugtraq&m=96430372326912&w=2
BUGTRAQ:20000722 More bad censorware
XF:bair-security-removal
CVE-2000-0803
GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff.
2001-05-07
2005-11-02
CVE-2000-0803
ISS:20001004 GNU Groff utilities read untrusted commands from current working directory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5280
XF:gnu-groff-utilities(5280)
CVE-2000-0804
Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass the directionality check via fragmented TCP connection requests or reopening closed TCP connection requests, aka "One-way Connection Enforcement Bypass."
2001-01-22
2004-09-02
CVE-2000-0804
http://www.checkpoint.com/techsupport/alerts/list_vun.html#One-way_Connection
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#One-way_Connection
http://www.osvdb.org/4419
OSVDB:4419
https://exchange.xforce.ibmcloud.com/vulnerabilities/5468
XF:fw1-remote-bypass(5468)
CVE-2000-0805
Check Point VPN-1/FireWall-1 4.1 and earlier improperly retransmits encapsulated FWS packets, even if they do not come from a valid FWZ client, aka "Retransmission of Encapsulated Packets."
2001-01-22
2004-09-02
CVE-2000-0805
http://www.checkpoint.com/techsupport/alerts/list_vun.html#Retransmission_of
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#Retransmission_of
http://www.osvdb.org/4415
OSVDB:4415
https://exchange.xforce.ibmcloud.com/vulnerabilities/5469
XF:fw1-client-spoof(5469)
CVE-2000-0806
The inter-module authentication mechanism (fwa1) in Check Point VPN-1/FireWall-1 4.1 and earlier may allow remote attackers to conduct a denial of service, aka "Inter-module Communications Bypass."
2001-01-22
2004-09-02
CVE-2000-0806
http://www.checkpoint.com/techsupport/alerts/list_vun.html#Inter-module_Communications
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#Inter-module_Communications
http://www.osvdb.org/4413
OSVDB:4413
https://exchange.xforce.ibmcloud.com/vulnerabilities/5162
XF:fw1-fwa1-auth-replay(5162)
CVE-2000-0807
The OPSEC communications authentication mechanism (fwn1) in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to spoof connections, aka the "OPSEC Authentication Vulnerability."
2001-01-22
2004-09-02
CVE-2000-0807
http://www.checkpoint.com/techsupport/alerts/list_vun.html#OPSEC_Authentication
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#OPSEC_Authentication
http://www.osvdb.org/4420
OSVDB:4420
https://exchange.xforce.ibmcloud.com/vulnerabilities/5471
XF:fw1-opsec-auth-spoof(5471)
CVE-2000-0808
The seed generation mechanism in the inter-module S/Key authentication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass authentication via a brute force attack, aka "One-time (s/key) Password Authentication."
2001-01-22
2004-09-02
CVE-2000-0808
http://www.checkpoint.com/techsupport/alerts/list_vun.html#One-time_Password
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#One-time_Password
http://www.osvdb.org/4421
OSVDB:4421
https://exchange.xforce.ibmcloud.com/vulnerabilities/5137
XF:fw1-localhost-auth(5137)
CVE-2000-0809
Buffer overflow in Getkey in the protocol checker in the inter-module communication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to cause a denial of service.
2001-01-22
2004-09-02
CVE-2000-0809
http://www.checkpoint.com/techsupport/alerts/list_vun.html#Getkey_Buffer
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#Getkey_Buffer
http://www.osvdb.org/4422
OSVDB:4422
https://exchange.xforce.ibmcloud.com/vulnerabilities/5139
XF:fw1-getkey-bo(5139)
CVE-2000-0810
Auction Weaver 1.0 through 1.04 does not properly validate the names of form fields, which allows remote attackers to delete arbitrary files and directories via a .. (dot dot) attack.
2001-01-22
2004-09-02
CVE-2000-0810
http://www.securityfocus.com/bid/1782
BID:1782
BUGTRAQ:20001016 File deletion and other bugs in Auction Weaver LITE 1.0 - 1.04
http://www.osvdb.org/1600
OSVDB:1600
https://exchange.xforce.ibmcloud.com/vulnerabilities/5371
XF:auction-weaver-delete-files(5371)
CVE-2000-0811
Auction Weaver 1.0 through 1.04 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the username or bidfile form fields.
2001-01-22
2004-09-02
CVE-2000-0811
http://www.securityfocus.com/bid/1783
BID:1783
BUGTRAQ:20001016 File deletion and other bugs in Auction Weaver LITE 1.0 - 1.04
http://www.osvdb.org/4053
OSVDB:4053
https://exchange.xforce.ibmcloud.com/vulnerabilities/5372
XF:auction-weaver-username-bidfile(5372)
CVE-2000-0812
The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag.
2000-10-18
2017-12-18
CVE-2000-0812
http://www.securityfocus.com/bid/1600
BID:1600
http://www.securityfocus.com/templates/advisory.html?id=2542
MISC:http://www.securityfocus.com/templates/advisory.html?id=2542
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/197&type=0&nav=sec.sba
SUN:00197
https://exchange.xforce.ibmcloud.com/vulnerabilities/5135
XF:sunjava-webadmin-bbs(5135)
CVE-2000-0813
Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers ("FTP Bounce") via invalid FTP commands that are processed improperly by FireWall-1, aka "FTP Connection Enforcement Bypass."
2001-01-22
2004-09-02
CVE-2000-0813
http://www.checkpoint.com/techsupport/alerts/list_vun.html#FTP_Connection
CONFIRM:http://www.checkpoint.com/techsupport/alerts/list_vun.html#FTP_Connection
http://www.osvdb.org/4434
OSVDB:4434
https://exchange.xforce.ibmcloud.com/vulnerabilities/5474
XF:fw1-ftp-redirect(5474)
CVE-2000-0816
Linux tmpwatch --fuser option allows local users to execute arbitrary commands by creating files whose names contain shell metacharacters.
2001-05-07
2004-09-02
CVE-2000-0816
http://www.securityfocus.com/bid/1785
BID:1785
http://xforce.iss.net/alerts/advise64.php
ISS:20001006 Insecure call of external programs in Red Hat Linux tmpwatch
http://www.linux-mandrake.com/en/security/MDKSA-2000-056.php3?dis=7.1
MANDRAKE:MDKSA-2000:056
http://www.redhat.com/support/errata/RHSA-2000-080.html
REDHAT:RHSA-2000:080
https://exchange.xforce.ibmcloud.com/vulnerabilities/5320
XF:linux-tmpwatch-fuser(5320)
CVE-2000-0817
Buffer overflow in the HTTP protocol parser for Microsoft Network Monitor (Netmon) allows remote attackers to execute arbitrary commands via malformed data, aka the "Netmon Protocol Parsing" vulnerability.
2000-11-29
2018-10-12
CVE-2000-0817
http://xforce.iss.net/alerts/index.php
ISS:20001101 Buffer Overflow in Microsoft Windows NT 4.0 and Windows 2000 Network Monitor
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-083
MS:MS00-083
https://exchange.xforce.ibmcloud.com/vulnerabilities/5399
XF:network-monitor-bo(5399)
CVE-2000-0818
The default installation for the Oracle listener program 7.3.4, 8.0.6, and 8.1.6 allows an attacker to cause logging information to be appended to arbitrary files and execute commands via the SET TRC_FILE or SET LOG_FILE commands.
2001-05-07
2005-11-02
CVE-2000-0818
http://otn.oracle.com/deploy/security/pdf/listener_alert.pdf
CONFIRM:http://otn.oracle.com/deploy/security/pdf/listener_alert.pdf
http://xforce.iss.net/alerts/advise66.php
ISS:20001025 Vulnerability in the Oracle Listener Program
https://exchange.xforce.ibmcloud.com/vulnerabilities/5380
XF:oracle-listener-connect-statements(5380)
CVE-2000-0824
The unsetenv function in glibc 2.1.1 does not properly unset an environmental variable if the variable is provided twice to a program, which could allow local users to execute arbitrary commands in setuid programs by specifying their own duplicate environmental variables such as LD_PRELOAD or LD_LIBRARY_PATH.
2001-01-22
2004-09-02
CVE-2000-0824
http://www.securityfocus.com/bid/1639
BID:1639
http://www.securityfocus.com/bid/648
BID:648
http://marc.info/?l=bugtraq&m=93760201002154&w=2
BUGTRAQ:19990917 A few bugs...
http://www.securityfocus.com/archive/1/79537
BUGTRAQ:20000831 glibc unsetenv bug
http://archives.neohapsis.com/archives/bugtraq/2000-08/0436.html
BUGTRAQ:20000902 Conectiva Linux Security Announcement - glibc
http://archives.neohapsis.com/archives/bugtraq/2000-08/0509.html
BUGTRAQ:20000905 Conectiva Linux Security Announcement - glibc
http://archives.neohapsis.com/archives/bugtraq/2000-08/0525.html
BUGTRAQ:20000906 [slackware-security]: glibc 2.1.3 vulnerabilities patched
http://www.calderasystems.com/support/security/advisories/CSSA-2000-028.0.txt
CALDERA:CSSA-2000-028.0
http://www.debian.org/security/2000/20000902
DEBIAN:20000902 glibc: local root exploit
http://www.linux-mandrake.com/en/updates/MDKSA-2000-040.php3
MANDRAKE:MDKSA-2000:040
http://www.linux-mandrake.com/en/updates/MDKSA-2000-045.php3
MANDRAKE:MDKSA-2000:045
http://www.redhat.com/support/errata/RHSA-2000-057.html
REDHAT:RHSA-2000:057
http://www.novell.com/linux/security/advisories/adv5_draht_glibc_txt.html
SUSE:20000924 glibc locale security problem
http://www.turbolinux.com/pipermail/tl-security-announce/2000-September/000020.html
TURBO:TLSA2000020-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/5173
XF:glibc-ld-unsetenv(5173)
CVE-2000-0825
Ipswitch Imail 6.0 allows remote attackers to cause a denial of service via a large number of connections in which a long Host: header is sent, which causes a thread to crash.
2002-03-09
2002-02-26
CVE-2000-0825
http://www.securityfocus.com/bid/2011
BID:2011
http://marc.info/?l=bugtraq&m=96659012127444&w=2
BUGTRAQ:20000817 Imail Web Service Remote DoS Attack v.2
http://marc.info/?l=ntbugtraq&m=96654521004571&w=2
NTBUGTRAQ:20000817 Imail Web Service Remote DoS Attack v.2
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q3/0071.html
WIN2KSEC:20000817 Imail Web Service Remote DoS Attack v.2
https://exchange.xforce.ibmcloud.com/vulnerabilities/5475
XF:ipswitch-imail-remote-dos(5475)
CVE-2000-0826
Buffer overflow in ddicgi.exe program in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long GET request.
2000-10-18
2017-12-18
CVE-2000-0826
http://www.atstake.com/research/advisories/2000/a090800-1.txt
ATSTAKE:A090800-1
http://www.securityfocus.com/bid/1657
BID:1657
https://exchange.xforce.ibmcloud.com/vulnerabilities/5210
XF:documentdirect-get-bo(5210)
CVE-2000-0827
Buffer overflow in the web authorization form of Mobius DocumentDirect for the Internet 1.2 allows remote attackers to cause a denial of service or execute arbitrary commands via a long username.
2000-10-18
2017-12-18
CVE-2000-0827
http://www.atstake.com/research/advisories/2000/a090800-1.txt
ATSTAKE:A090800-1
http://www.securityfocus.com/bid/1657
BID:1657
https://exchange.xforce.ibmcloud.com/vulnerabilities/5211
XF:documentdirect-username-bo(5211)
CVE-2000-0828
Buffer overflow in ddicgi.exe in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long User-Agent parameter.
2000-10-18
2017-12-18
CVE-2000-0828
http://www.atstake.com/research/advisories/2000/a090800-1.txt
ATSTAKE:A090800-1
http://www.securityfocus.com/bid/1657
BID:1657
https://exchange.xforce.ibmcloud.com/vulnerabilities/5212
XF:documentdirect-user-agent-bo(5212)
CVE-2000-0829
The tmpwatch utility in Red Hat Linux forks a new process for each directory level, which allows local users to cause a denial of service by creating deeply nested directories in /tmp or /var/tmp/.
2001-05-07
2004-09-02
CVE-2000-0829
http://www.securityfocus.com/bid/1664
BID:1664
http://www.securityfocus.com/archive/1/81364
BUGTRAQ:20000909 tmpwatch: local DoS : fork()bomb as root
http://www.redhat.com/support/errata/RHSA-2000-080.html
REDHAT:RHSA-2000:080
https://exchange.xforce.ibmcloud.com/vulnerabilities/5217
XF:linux-tmpwatch-fork-dos(5217)
CVE-2000-0830
annclist.exe in webTV for Windows allows remote attackers to cause a denial of service by via a large, malformed UDP packet to ports 22701 through 22705.
2002-03-09
2002-02-26
CVE-2000-0830
http://www.securityfocus.com/bid/1671
BID:1671
http://www.securityfocus.com/archive/1/81852
BUGTRAQ:20000913 trivial DoS in webTV
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-074
MS:MS00-074
https://exchange.xforce.ibmcloud.com/vulnerabilities/5216
XF:webtv-udp-dos(5216)
CVE-2000-0831
Buffer overflow in Fastream FTP++ 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long username.
2000-10-18
2003-03-21
CVE-2000-0831
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q3/0109.html
WIN2KSEC:20000912 DST2K0027: DoS in Faststream FTP++ 2.0
CVE-2000-0832
Htgrep CGI program allows remote attackers to read arbitrary files by specifying the full pathname in the hdr parameter.
2000-10-18
2017-12-18
CVE-2000-0832
http://archives.neohapsis.com/archives/bugtraq/2000-08/0208.html
BUGTRAQ:20000817 Htgrep CGI Arbitrary File Viewing Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5476
XF:htgrep-cgi-view-files(5476)
CVE-2000-0833
Buffer overflow in WinSMTP 1.06f and 2.X allows remote attackers to cause a denial of service via a long (1) USER or (2) HELO command.
2000-10-18
2017-12-18
CVE-2000-0833
http://www.securityfocus.com/bid/1680
BID:1680
http://www.securityfocus.com/archive/1/81693
BUGTRAQ:2000911 WinSMTPD remote exploit/DoS problem
https://exchange.xforce.ibmcloud.com/vulnerabilities/5255
XF:winsmtp-helo-bo(5255)
CVE-2000-0834
The Windows 2000 telnet client attempts to perform NTLM authentication by default, which allows remote attackers to capture and replay the NTLM challenge/response via a telnet:// URL that points to the malicious server, aka the "Windows 2000 Telnet Client NTLM Authentication" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0834
http://www.atstake.com/research/advisories/2000/a091400-1.txt
ATSTAKE:A091400-1
http://www.securityfocus.com/bid/1683
BID:1683
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-067
MS:MS00-067
https://exchange.xforce.ibmcloud.com/vulnerabilities/5242
XF:win2k-telnet-ntlm-authentication(5242)
CVE-2000-0835
search.dll Sambar ISAPI Search utility in Sambar Server 4.4 Beta 3 allows remote attackers to read arbitrary directories by specifying the directory in the query parameter.
2000-10-18
2010-01-14
CVE-2000-0835
http://www.securityfocus.com/bid/1684
BID:1684
http://archives.neohapsis.com/archives/bugtraq/2000-09/0175.html
BUGTRAQ:20000915 Sambar Server search CGI vulnerability
CVE-2000-0836
Buffer overflow in CamShot WebCam Trial2.6 allows remote attackers to execute arbitrary commands via a long Authorization header.
2000-10-18
2017-12-18
CVE-2000-0836
http://www.securityfocus.com/bid/1685
BID:1685
http://archives.neohapsis.com/archives/bugtraq/2000-09/0176.html
BUGTRAQ:20000915 [NEWS] Vulnerability in CamShot server (Authorization)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5246
XF:camshot-password-bo(5246)
CVE-2000-0837
FTP Serv-U 2.5e allows remote attackers to cause a denial of service by sending a large number of null bytes.
2001-01-22
2005-11-02
CVE-2000-0837
http://www.securityfocus.com/bid/1543
BID:1543
http://www.securityfocus.com/archive/1/73843
BUGTRAQ:20000804 FTP Serv-U 2.5e vulnerability.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5029
XF:servu-null-character-dos(5029)
CVE-2000-0838
Fastream FUR HTTP server 1.0b allows remote attackers to cause a denial of service via a long GET request.
2002-03-09
2002-02-26
CVE-2000-0838
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q3/0111.html
WIN2KSEC:20000914 DST2K0028: DoS in FUR HTTP Server v1.0b
https://exchange.xforce.ibmcloud.com/vulnerabilities/5237
XF:fur-get-dos(5237)
CVE-2000-0839
WinCOM LPD 1.00.90 allows remote attackers to cause a denial of service via a large number of LPD options to the LPD port (515).
2002-03-09
2002-02-26
CVE-2000-0839
http://www.securityfocus.com/bid/1701
BID:1701
http://archives.neohapsis.com/archives/bugtraq/2000-09/0212.html
BUGTRAQ:20000919 VIGILANTE-2000013: WinCOM LPD DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5258
XF:wincom-lpd-dos(5258)
CVE-2000-0840
Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long USER command.
2000-10-18
2017-12-18
CVE-2000-0840
http://www.securityfocus.com/bid/1652
BID:1652
http://archives.neohapsis.com/archives/bugtraq/2000-09/0001.html
BUGTRAQ:20000906 [NEWS] XMail vulnerable to a remotely exploitable buffer overflow (APOP, USER)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5192
XF:xmail-long-user-bo(5192)
CVE-2000-0841
Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long APOP command.
2000-10-18
2017-12-18
CVE-2000-0841
http://www.securityfocus.com/bid/1652
BID:1652
http://archives.neohapsis.com/archives/bugtraq/2000-09/0001.html
BUGTRAQ:20000906 [NEWS] XMail vulnerable to a remotely exploitable buffer overflow (APOP, USER)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5191
XF:xmail-long-apop-bo(5191)
CVE-2000-0842
The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-10-18
2003-03-21
CVE-2000-0842
http://www.securityfocus.com/bid/1663
BID:1663
http://archives.neohapsis.com/archives/bugtraq/2000-09/0086.html
BUGTRAQ:20000911 SCO scohelhttp documentation webserver exposes local files
CVE-2000-0843
Buffer overflow in pam_smb and pam_ntdom pluggable authentication modules (PAM) allow remote attackers to execute arbitrary commands via a login with a long user name.
2000-10-18
2003-03-21
CVE-2000-0843
http://www.securityfocus.com/bid/1666
BID:1666
http://archives.neohapsis.com/archives/bugtraq/2000-09/0073.html
BUGTRAQ:20000910 (SRADV00002) Remote root compromise through pam_smb and pam_ntdom
http://archives.neohapsis.com/archives/bugtraq/2000-09/0114.html
BUGTRAQ:20000911 Conectiva Linux Security Announcement - pam_smb
http://www.debian.org/security/2000/20000911
DEBIAN:20000911 libpam-smb: remote root exploit
http://www.linux-mandrake.com/en/security/MDKSA-2000-047.php3
MANDRAKE:MDKSA-2000:047
http://www.novell.com/linux/security/advisories/adv8_draht_pam_smb_txt.html
SUSE:20000913 pam_smb remotely exploitable buffer overflow
CVE-2000-0844
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
2001-01-22
2004-09-02
CVE-2000-0844
http://archives.neohapsis.com/archives/bugtraq/2000-10/0427.html
AIXAPAR:IY13753
http://www.securityfocus.com/bid/1634
BID:1634
http://archives.neohapsis.com/archives/bugtraq/2000-08/0436.html
BUGTRAQ:20000902 Conectiva Linux Security Announcement - glibc
http://archives.neohapsis.com/archives/bugtraq/2000-08/0457.html
BUGTRAQ:20000904 UNIX locale format string vulnerability
http://www.calderasystems.com/support/security/advisories/CSSA-2000-030.0.txt
CALDERA:CSSA-2000-030.0
http://archives.neohapsis.com/archives/tru64/2000-q4/0000.html
COMPAQ:SSRT0689U
http://www.debian.org/security/2000/20000902
DEBIAN:20000902 glibc: local root exploit
http://www.redhat.com/support/errata/RHSA-2000-057.html
REDHAT:RHSA-2000:057
ftp://patches.sgi.com/support/free/security/advisories/20000901-01-P
SGI:20000901-01-P
http://www.novell.com/linux/security/advisories/adv5_draht_glibc_txt.html
SUSE:20000906 glibc locale security problem
http://www.turbolinux.com/pipermail/tl-security-announce/2000-September/000020.html
TURBO:TLSA2000020-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/5176
XF:unix-locale-format-string(5176)
CVE-2000-0845
kdebug daemon (kdebugd) in Digital Unix 4.0F allows remote attackers to read arbitrary files by specifying the full file name in the initialization packet.
2000-10-18
2003-03-21
CVE-2000-0845
http://archives.neohapsis.com/archives/bugtraq/2000-09/0204.html
BUGTRAQ:20000918 [ENIGMA] Digital UNIX/Tru64 UNIX remote kdebug Vulnerability
CVE-2000-0846
Buffer overflow in Darxite 0.4 and earlier allows a remote attacker to execute arbitrary commands via a long username or password.
2001-01-22
2005-11-02
CVE-2000-0846
http://www.securityfocus.com/bid/1598
BID:1598
http://archives.neohapsis.com/archives/bugtraq/2000-08/0256.html
BUGTRAQ:20000821 Darxite daemon remote exploit/DoS problem
https://exchange.xforce.ibmcloud.com/vulnerabilities/5134
XF:darxite-login-bo(5134)
CVE-2000-0847
Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header.
2001-01-22
2005-11-02
CVE-2000-0847
http://www.securityfocus.com/bid/1646
BID:1646
http://www.securityfocus.com/bid/1687
BID:1687
http://archives.neohapsis.com/archives/bugtraq/2000-08/0437.html
BUGTRAQ:20000901 More about UW c-client library
http://archives.neohapsis.com/archives/bugtraq/2000-08/0425.html
BUGTRAQ:20000901 UW c-client library vulnerability
http://archives.neohapsis.com/archives/freebsd/2000-09/0108.html
FREEBSD:FreeBSD-SA-00:47.pine
https://exchange.xforce.ibmcloud.com/vulnerabilities/5223
XF:c-client-dos(5223)
CVE-2000-0848
Buffer overflow in IBM WebSphere web application server (WAS) allows remote attackers to execute arbitrary commands via a long Host: request header.
2001-01-22
2005-11-02
CVE-2000-0848
http://www.securityfocus.com/bid/1691
BID:1691
http://archives.neohapsis.com/archives/bugtraq/2000-09/0192.html
BUGTRAQ:20000915 WebSphere application server plugin issue & vendor fix
http://www-4.ibm.com/software/webservers/appserv/doc/v3022/fxpklst.htm#Security
MISC:http://www-4.ibm.com/software/webservers/appserv/doc/v3022/fxpklst.htm#Security
https://exchange.xforce.ibmcloud.com/vulnerabilities/5252
XF:websphere-header-dos(5252)
CVE-2000-0849
Race condition in Microsoft Windows Media server allows remote attackers to cause a denial of service in the Windows Media Unicast Service via a malformed request, aka the "Unicast Service Race Condition" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0849
http://www.securityfocus.com/bid/1655
BID:1655
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-064
MS:MS00-064
https://exchange.xforce.ibmcloud.com/vulnerabilities/5193
XF:unicast-service-dos(5193)
CVE-2000-0850
Netegrity SiteMinder before 4.11 allows remote attackers to bypass its authentication mechanism by appending "$/FILENAME.ext" (where ext is .ccc, .class, or .jpg) to the requested URL.
2001-01-22
2005-11-02
CVE-2000-0850
http://www.atstake.com/research/advisories/2000/a091100-1.txt
ATSTAKE:A091100-1
http://www.securityfocus.com/bid/1681
BID:1681
https://exchange.xforce.ibmcloud.com/vulnerabilities/5230
XF:siteminder-bypass-authentication(5230)
CVE-2000-0851
Buffer overflow in the Still Image Service in Windows 2000 allows local users to gain additional privileges via a long WM_USER message, aka the "Still Image Service Privilege Escalation" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0851
http://www.atstake.com/research/advisories/2000/a090700-1.txt
ATSTAKE:A090700-1
http://www.securityfocus.com/bid/1651
BID:1651
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-065
MS:MS00-065
https://exchange.xforce.ibmcloud.com/vulnerabilities/5203
XF:w2k-still-image-service(5203)
CVE-2000-0852
Multiple buffer overflows in eject on FreeBSD and possibly other OSes allows local users to gain root privileges.
2001-01-22
2004-09-02
CVE-2000-0852
http://www.securityfocus.com/bid/1686
BID:1686
http://archives.neohapsis.com/archives/freebsd/2000-09/0110.html
FREEBSD:FreeBSD-SA-00:49
http://www.osvdb.org/1559
OSVDB:1559
https://exchange.xforce.ibmcloud.com/vulnerabilities/5248
XF:freebsd-eject-port(5248)
CVE-2000-0853
YaBB Bulletin Board 9.1.2000 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2001-01-22
2005-11-02
CVE-2000-0853
http://www.securityfocus.com/bid/1668
BID:1668
http://archives.neohapsis.com/archives/bugtraq/2000-09/0072.html
BUGTRAQ:20000909 YaBB 1.9.2000 Vulnerabilitie
https://exchange.xforce.ibmcloud.com/vulnerabilities/5254
XF:yabb-file-access(5254)
CVE-2000-0854
When a Microsoft Office 2000 document is launched, the directory of that document is first used to locate DLL's such as riched20.dll and msi.dll, which could allow an attacker to execute arbitrary commands by inserting a Trojan Horse DLL into the same directory as the document.
2001-05-07
2005-11-02
CVE-2000-0854
http://www.securityfocus.com/bid/1699
BID:1699
http://archives.neohapsis.com/archives/bugtraq/2000-09/0277.html
BUGTRAQ:20000922 Eudora + riched20.dll affects WinZip v8.0 as well
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0155.html
NTBUGTRAQ:20000921 Mitigators for possible exploit of Eudora via Guninski #21,2000
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q3/0117.html
WIN2KSEC:20000918 Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases
https://exchange.xforce.ibmcloud.com/vulnerabilities/5263
XF:office-dll-execution(5263)
CVE-2000-0855
SunFTP build 9(1) allows remote attackers to cause a denial of service by connecting to the server and disconnecting before sending a newline.
2000-10-18
2003-05-08
CVE-2000-0855
http://www.securityfocus.com/bid/1637
BID:1637
http://archives.neohapsis.com/archives/bugtraq/2000-08/0408.html
BUGTRAQ:20000901 [EXPL] SunFTP vulnerable to two Denial-of-Service attacks (long buffer, half-open)
CVE-2000-0856
Buffer overflow in SunFTP build 9(1) allows remote attackers to cause a denial of service or possibly execute arbitrary commands via a long GET request.
2001-05-07
2005-11-02
CVE-2000-0856
http://www.securityfocus.com/bid/1638
BID:1638
http://archives.neohapsis.com/archives/bugtraq/2000-08/0408.html
BUGTRAQ:20000901 [EXPL] SunFTP vulnerable to two Denial-of-Service attacks (long buffer, half-open)
CVE-2000-0857
The logging capability in muh 2.05d IRC server does not properly cleanse user-injected format strings, which allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed nickname.
2000-10-18
2017-12-18
CVE-2000-0857
http://www.securityfocus.com/bid/1665
BID:1665
http://archives.neohapsis.com/archives/bugtraq/2000-09/0068.html
BUGTRAQ:20000909 Re: format string bug in muh
http://archives.neohapsis.com/archives/bugtraq/2000-09/0067.html
BUGTRAQ:20000909 format string bug in muh
https://exchange.xforce.ibmcloud.com/vulnerabilities/5215
XF:muh-log-dos(5215)
CVE-2000-0858
Vulnerability in Microsoft Windows NT 4.0 allows remote attackers to cause a denial of service in IIS by sending it a series of malformed requests which cause INETINFO.EXE to fail, aka the "Invalid URL" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0858
http://www.securityfocus.com/bid/1642
BID:1642
http://www.securityfocus.com/archive/1/80413
BUGTRAQ:20000906 VIGILANTE-2000009: "Invalid URL" DoS
http://archives.neohapsis.com/archives/vendor/2000-q3/0065.html
MS:MS00-063
https://exchange.xforce.ibmcloud.com/vulnerabilities/5202
XF:iis-invald-url-dos(5202)
CVE-2000-0859
The web configuration server for NTMail V5 and V6 allows remote attackers to cause a denial of service via a series of partial HTTP requests.
2002-03-09
2002-03-01
CVE-2000-0859
http://www.securityfocus.com/bid/1640
BID:1640
http://archives.neohapsis.com/archives/bugtraq/2000-08/0471.html
BUGTRAQ:20000904 VIGILANTE-2000008: NTMail Configuration Service DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5182
XF:ntmail-incomplete-http-requests(5182)
CVE-2000-0860
The file upload capability in PHP versions 3 and 4 allows remote attackers to read arbitrary files by setting hidden form fields whose names match the names of internal PHP script variables.
2001-01-22
2005-11-02
CVE-2000-0860
http://www.securityfocus.com/bid/1649
BID:1649
http://archives.neohapsis.com/archives/bugtraq/2000-08/0455.html
BUGTRAQ:20000903 (SRADV00001) Arbitrary file disclosure through PHP file upload
http://archives.neohapsis.com/archives/bugtraq/2000-08/0477.html
BUGTRAQ:20000904 Re: [PHP-DEV] RE: (SRADV00001) Arbitrary file disclosure through PHP file upload
http://cvsweb.php.net/viewcvs.cgi/php4/main/rfc1867.c.diff?r1=1.38%3Aphp_4_0_2&tr1=1.1&r2=text&tr2=1.45&diff_format=u
CONFIRM:http://cvsweb.php.net/viewcvs.cgi/php4/main/rfc1867.c.diff?r1=1.38%3Aphp_4_0_2&tr1=1.1&r2=text&tr2=1.45&diff_format=u
http://archives.neohapsis.com/archives/bugtraq/2000-09/0150.html
MANDRAKE:MDKSA-2000:048
https://exchange.xforce.ibmcloud.com/vulnerabilities/5190
XF:php-file-upload(5190)
CVE-2000-0861
Mailman 1.1 allows list administrators to execute arbitrary commands via shell metacharacters in the %(listname) macro expansion.
2001-01-22
2005-11-02
CVE-2000-0861
http://www.securityfocus.com/bid/1667
BID:1667
http://archives.neohapsis.com/archives/bugtraq/2000-09/0040.html
BUGTRAQ:20000907 Mailman 1.1 + external archiver vulnerability
http://archives.neohapsis.com/archives/freebsd/2000-09/0112.html
FREEBSD:FreeBSD-SA-00:51
https://exchange.xforce.ibmcloud.com/vulnerabilities/5493
XF:mailman-execute-external-commands(5493)
CVE-2000-0862
Vulnerability in an administrative interface utility for Allaire Spectra 1.0.1 allows remote attackers to read and modify sensitive configuration information.
2001-01-22
2005-11-02
CVE-2000-0862
http://archives.neohapsis.com/archives/vendor/2000-q3/0059.html
ALLAIRE:ASB00-23
https://exchange.xforce.ibmcloud.com/vulnerabilities/5466
XF:allaire-spectra-admin-access(5466)
CVE-2000-0863
Buffer overflow in listmanager earlier than 2.105.1 allows local users to gain additional privileges.
2001-01-22
2005-11-02
CVE-2000-0863
http://archives.neohapsis.com/archives/freebsd/2000-09/0111.html
FREEBSD:FreeBSD-SA-00:50
https://exchange.xforce.ibmcloud.com/vulnerabilities/5503
XF:listmanager-port-bo(5503)
CVE-2000-0864
Race condition in the creation of a Unix domain socket in GNOME esound 0.2.19 and earlier allows a local user to change the permissions of arbitrary files and directories, and gain additional privileges, via a symlink attack.
2001-01-22
2004-09-02
CVE-2000-0864
http://www.securityfocus.com/bid/1659
BID:1659
http://archives.neohapsis.com/archives/bugtraq/2000-09/0095.html
BUGTRAQ:20000911 Patch for esound-0.2.19
http://archives.neohapsis.com/archives/bugtraq/2000-10/0118.html
BUGTRAQ:20001006 Immunix OS Security Update for esound
http://www.debian.org/security/2000/20001008
DEBIAN:20001008 esound: race condition
http://archives.neohapsis.com/archives/freebsd/2000-08/0365.html
FREEBSD:FreeBSD-SA-00:45
http://archives.neohapsis.com/archives/bugtraq/2000-09/0328.htm
MANDRAKE:MDKSA-2000:051
http://www.redhat.com/support/errata/RHSA-2000-077.html
REDHAT:RHSA-2000:077
http://www.novell.com/linux/security/advisories/esound_daemon_race_condition.html
SUSE:20001012 esound daemon race condition
https://exchange.xforce.ibmcloud.com/vulnerabilities/5213
XF:gnome-esound-symlink(5213)
CVE-2000-0865
Buffer overflow in dvtermtype in Tridia Double Vision 3.07.00 allows local users to gain root privileges via a long terminal type argument.
2001-01-22
2005-11-02
CVE-2000-0865
http://www.securityfocus.com/bid/1697
BID:1697
http://archives.neohapsis.com/archives/bugtraq/2000-09/0185.html
BUGTRAQ:20000916 Advisory: Tridia DoubleVision / SCO UnixWare
https://exchange.xforce.ibmcloud.com/vulnerabilities/5261
XF:doublevision-dvtermtype-bo(5261)
CVE-2000-0866
Interbase 6 SuperServer for Linux allows an attacker to cause a denial of service via a query containing 0 bytes.
2000-10-18
2017-12-18
CVE-2000-0866
http://www.securityfocus.com/bid/1654
BID:1654
http://archives.neohapsis.com/archives/bugtraq/2000-09/0027.html
BUGTRAQ:20000907 SEGFAULTING Interbase 6 SS Linux
https://exchange.xforce.ibmcloud.com/vulnerabilities/5205
XF:interbase-query-dos(5205)
CVE-2000-0867
Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.
2001-01-22
2007-07-11
CVE-2000-0867
http://archives.neohapsis.com/archives/bugtraq/2000-09/0193.html
BUGTRAQ:20000917 klogd format bug
http://marc.info/?l=bugtraq&m=97726239017741&w=2
BUGTRAQ:20000918 Conectiva Linux Security Announcement - sysklogd
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-032.0.txt
CALDERA:CSSA-2000-032.0
DEBIAN:20000919
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:050
MANDRAKE:MDKSA-2000:050
http://www.osvdb.org/5824
OSVDB:5824
http://www.redhat.com/support/errata/RHSA-2000-061.html
REDHAT:RHSA-2000:061
http://www.novell.com/linux/security/advisories/adv9_draht_syslogd_txt.html
SUSE:20000920 syslogd + klogd format string parsing error
http://www.turbolinux.com/pipermail/tl-security-announce/2000-September/000023.html
TURBO:TLSA2000022-2
https://exchange.xforce.ibmcloud.com/vulnerabilities/5259
XF:klogd-format-string(5259)
CVE-2000-0868
The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/.
2001-01-22
2005-11-02
CVE-2000-0868
http://www.atstake.com/research/advisories/2000/a090700-2.txt
ATSTAKE:A090700-2
http://www.securityfocus.com/bid/1658
BID:1658
http://archives.neohapsis.com/archives/linux/suse/2000-q3/0906.html
SUSE:20000907
https://exchange.xforce.ibmcloud.com/vulnerabilities/5197
XF:suse-apache-cgi-source-code(5197)
CVE-2000-0869
The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary directories via the PROPFIND HTTP request method.
2001-01-22
2016-09-15
CVE-2000-0869
http://www.atstake.com/research/advisories/2000/a090700-3.txt
ATSTAKE:A090700-3
http://www.securityfocus.com/bid/1656
BID:1656
http://archives.neohapsis.com/archives/linux/suse/2000-q3/0906.html
SUSE:20000907
https://exchange.xforce.ibmcloud.com/vulnerabilities/5204
XF:apache-webdav-directory-listings(5204)
CVE-2000-0870
Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string.
2001-01-22
2004-09-02
CVE-2000-0870
http://www.securityfocus.com/bid/1675
BID:1675
http://archives.neohapsis.com/archives/bugtraq/2000-09/0089.html
BUGTRAQ:20000911[EXPL] EFTP vulnerable to two DoS attacks
http://www.osvdb.org/1555
OSVDB:1555
https://exchange.xforce.ibmcloud.com/vulnerabilities/5219
XF:eftp-bo(5219)
CVE-2000-0871
Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server.
2001-01-22
2004-09-02
CVE-2000-0871
http://www.securityfocus.com/bid/1677
BID:1677
http://archives.neohapsis.com/archives/bugtraq/2000-09/0089.html
BUGTRAQ:20000911[EXPL] EFTP vulnerable to two DoS attacks
http://www.osvdb.org/409
OSVDB:409
https://exchange.xforce.ibmcloud.com/vulnerabilities/5220
XF:eftp-newline-dos(5220)
CVE-2000-0872
explorer.php in PhotoAlbum 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-10-18
2017-12-18
CVE-2000-0872
http://www.securityfocus.com/bid/1650
BID:1650
http://archives.neohapsis.com/archives/bugtraq/2000-09/0015.html
BUGTRAQ:20000906 PhotoAlbum 0.9.9 explorer.php Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5198
XF:phpphoto-dir-traverse(5198)
CVE-2000-0873
netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface statistics and possibly hide evidence of unusual network activities.
2001-01-22
2005-11-02
CVE-2000-0873
http://www.securityfocus.com/bid/1660
BID:1660
http://archives.neohapsis.com/archives/bugtraq/2000-08/0454.html
BUGTRAQ:20000903 aix allows clearing the interface stats
https://exchange.xforce.ibmcloud.com/vulnerabilities/5214
XF:aix-clear-netstat(5214)
CVE-2000-0874
Eudora mail client includes the absolute path of the sender's host within a virtual card (VCF).
2001-05-07
2004-09-02
CVE-2000-0874
http://www.securityfocus.com/bid/1653
BID:1653
http://www.securityfocus.com/archive/1/80888
BUGTRAQ:20000907 Eudora disclosure
http://www.osvdb.org/1545
OSVDB:1545
https://exchange.xforce.ibmcloud.com/vulnerabilities/5206
XF:eudora-path-disclosure(5206)
CVE-2000-0875
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to cause a denial of service by sending a long string of unprintable characters.
2001-05-07
2005-11-02
CVE-2000-0875
http://archives.neohapsis.com/archives/bugtraq/2000-08/0488.html
BUGTRAQ:20000905 WFTPD/WFTPD Pro 2.41 RC12 vulnerabilities
http://www.wftpd.com/bug_gpf.htm
CONFIRM:http://www.wftpd.com/bug_gpf.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/5194
XF:wftpd-long-string-dos(5194)
CVE-2000-0876
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname.
2001-05-07
2004-09-02
CVE-2000-0876
http://archives.neohapsis.com/archives/bugtraq/2000-08/0488.html
BUGTRAQ:20000905 WFTPD/WFTPD Pro 2.41 RC12 vulnerabilities
http://www.osvdb.org/5829
OSVDB:5829
https://exchange.xforce.ibmcloud.com/vulnerabilities/5196
XF:wftpd-path-disclosure(5196)
CVE-2000-0877
mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attach_file parameter, which MailForm then sends to the attacker.
2001-09-18
2005-11-02
CVE-2000-0877
http://www.securityfocus.com/bid/1670
BID:1670
http://archives.neohapsis.com/archives/bugtraq/2000-09/0092.html
BUGTRAQ:20000911 Unsafe passing of variables to mailform.pl in MailForm V2.0
https://exchange.xforce.ibmcloud.com/vulnerabilities/5224
XF:mailform-attach-file(5224)
CVE-2000-0878
The mailto CGI script allows remote attacker to execute arbitrary commands via shell metacharacters in the emailadd form field.
2001-01-22
2005-11-02
CVE-2000-0878
http://www.securityfocus.com/bid/1669
BID:1669
http://archives.neohapsis.com/archives/bugtraq/2000-09/0088.html
BUGTRAQ:20000911 Fwd: Poor variable checking in mailto.cgi
https://exchange.xforce.ibmcloud.com/vulnerabilities/5241
XF:mailto-piped-address(5241)
CVE-2000-0879
LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to start and stop various LPD services.
2000-10-18
2017-12-18
CVE-2000-0879
http://www.securityfocus.com/bid/1643
BID:1643
http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.html
BUGTRAQ:20000906 Multiple Security Holes in LPPlus
https://exchange.xforce.ibmcloud.com/vulnerabilities/5199
XF:lpplus-permissions-dos(5199)
CVE-2000-0880
LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file.
2000-10-18
2017-12-18
CVE-2000-0880
http://www.securityfocus.com/bid/1643
BID:1643
http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.html
BUGTRAQ:20000906 Multiple Security Holes in LPPlus
https://exchange.xforce.ibmcloud.com/vulnerabilities/5200
XF:lpplus-process-perms-dos(5200)
CVE-2000-0881
The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files.
2000-10-18
2017-12-18
CVE-2000-0881
http://www.securityfocus.com/bid/1644
BID:1644
http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.html
BUGTRAQ:20000906 Multiple Security Holes in LPPlus
https://exchange.xforce.ibmcloud.com/vulnerabilities/5201
XF:lpplus-dccscan-file-read(5201)
CVE-2000-0882
Intel Express 500 series switches allow a remote attacker to cause a denial of service via a malformed ICMP packet, which causes the CPU to crash.
2000-10-18
2003-05-08
CVE-2000-0882
http://www.securityfocus.com/bid/1647
BID:1647
http://archives.neohapsis.com/archives/bugtraq/2000-08/0533.html
BUGTRAQ:20000906 VIGILANTE-2000010: Intel Express Switch series 500 DoS #2
CVE-2000-0883
The default configuration of mod_perl for Apache as installed on Mandrake Linux 6.1 through 7.1 sets the /perl/ directory to be browseable, which allows remote attackers to list the contents of that directory.
2001-01-22
2005-11-02
CVE-2000-0883
http://www.securityfocus.com/bid/1678
BID:1678
http://archives.neohapsis.com/archives/bugtraq/2000-09/0111.html
MANDRAKE:MDKSA-2000:046
https://exchange.xforce.ibmcloud.com/vulnerabilities/5257
XF:linux-mod-perl(5257)
CVE-2000-0884
IIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root, and possibly execute arbitrary commands, via malformed URLs that contain UNICODE encoded characters, aka the "Web Server Folder Traversal" vulnerability.
2001-01-22
2004-09-02
CVE-2000-0884
http://www.securityfocus.com/bid/1806
BID:1806
BUGTRAQ:20001017 IIS %c1%1c remote command execution
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-078
MS:MS00-078
http://www.osvdb.org/436
OSVDB:436
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A44
OVAL:oval:org.mitre.oval:def:44
https://exchange.xforce.ibmcloud.com/vulnerabilities/5377
XF:iis-unicode-translation(5377)
CVE-2000-0885
Buffer overflows in Microsoft Network Monitor (Netmon) allow remote attackers to execute arbitrary commands via a long Browser Name in a CIFS Browse Frame, a long SNMP community name, or a long username or filename in an SMB session, aka the "Netmon Protocol Parsing" vulnerability. NOTE: It is highly likely that this candidate will be split into multiple candidates.
2000-11-29
2018-10-12
CVE-2000-0885
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-083
MS:MS00-083
NAI:20001101 Multiple Network Monitor Overflows
https://exchange.xforce.ibmcloud.com/vulnerabilities/5399
XF:network-monitor-bo(5399)
CVE-2000-0886
IIS 5.0 allows remote attackers to execute arbitrary commands via a malformed request for an executable file whose name is appended with operating system commands, aka the "Web Server File Request Parsing" vulnerability.
2001-01-22
2004-09-02
CVE-2000-0886
http://www.securityfocus.com/bid/1912
BID:1912
http://www.securityfocus.com/templates/archive.pike?mid=143604&list=1&fromthread=0&end=2000-11-11&threads=0&start=2000-11-05&
BUGTRAQ:20001107 NSFOCUS SA2000-07 : Microsoft IIS 4.0/5.0 CGI File Name Inspection Vulnerability
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-086
MS:MS00-086
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A191
OVAL:oval:org.mitre.oval:def:191
https://exchange.xforce.ibmcloud.com/vulnerabilities/5470
XF:iis-invalid-filename-passing(5470)
CVE-2000-0887
named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by making a compressed zone transfer (ZXFR) request and performing a name service query on an authoritative record that is not cached, aka the "zxfr bug."
2001-01-22
2004-09-02
CVE-2000-0887
http://www.securityfocus.com/bid/1923
BID:1923
http://www.securityfocus.com/archive/1/143843
BUGTRAQ:20001107 BIND 8.2.2-P5 Possible DOS
http://archives.neohapsis.com/archives/bugtraq/2000-11/0217.html
BUGTRAQ:20001115 Trustix Security Advisory - bind and openssh (and modutils)
http://www.cert.org/advisories/CA-2000-20.html
CERT:CA-2000-20
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000338
CONECTIVA:CLSA-2000:338
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000339
CONECTIVA:CLSA-2000:339
http://www.debian.org/security/2000/20001112
DEBIAN:20001112 bind: remote Denial of Service
IBM:ERS-SVA-E01-2000:005.1
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:067
MANDRAKE:MDKSA-2000:067
http://www.redhat.com/support/errata/RHSA-2000-107.html
REDHAT:RHSA-2000:107
http://archives.neohapsis.com/archives/linux/suse/2000-q4/0657.html
SUSE:SuSE-SA:2000:45
VULN-DEV:20001107 Possible DOS in Bind 8.2.2-P5
VULN-DEV:20001109 Re: Possible DOS in Bind 8.2.2-P5
https://exchange.xforce.ibmcloud.com/vulnerabilities/5540
XF:bind-zxfr-dos(5540)
CVE-2000-0888
named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by sending an SRV record to the server, aka the "srv bug."
2001-01-22
2004-09-02
CVE-2000-0888
http://www.cert.org/advisories/CA-2000-20.html
CERT:CA-2000-20
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000338
CONECTIVA:CLSA-2000:338
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000339
CONECTIVA:CLSA-2000:339
http://www.debian.org/security/2000/20001112
DEBIAN:20001112 bind: remote Denial of Service
IBM:ERS-SVA-E01-2000:005.1
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:067
MANDRAKE:MDKSA-2000:067
http://www.redhat.com/support/errata/RHSA-2000-107.html
REDHAT:RHSA-2000:107
http://archives.neohapsis.com/archives/linux/suse/2000-q4/0657.html
SUSE:SuSE-SA:2000:45
https://exchange.xforce.ibmcloud.com/vulnerabilities/5814
XF:bind-srv-dos(5814)
CVE-2000-0889
Two Sun security certificates have been compromised, which could allow attackers to insert malicious code such as applets and make it appear that it is signed by Sun.
2001-02-02
2003-03-21
CVE-2000-0889
http://www.cert.org/advisories/CA-2000-19.html
CERT:CA-2000-19
http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/198&type=0&nav=sec.sba
SUN:00198
CVE-2000-0890
periodic in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows local users to overwrite arbitrary files via a symlink attack.
2001-05-07
2004-09-02
CVE-2000-0890
http://www.securityfocus.com/bid/2325
BID:2325
http://www.kb.cert.org/vuls/id/626919
CERT-VN:VU#626919
FREEBSD:FreeBSD-SA-01:12
http://www.osvdb.org/1754
OSVDB:1754
https://exchange.xforce.ibmcloud.com/vulnerabilities/6047
XF:periodic-temp-file-symlink(6047)
CVE-2000-0891
A default ECL in Lotus Notes before 5.02 allows remote attackers to execute arbitrary commands by attaching a malicious program in an email message that is automatically executed when the user opens the email.
2002-03-09
2002-02-26
CVE-2000-0891
http://www.kb.cert.org/vuls/id/5962
CERT-VN:VU#5962
http://www.notes.net/R5FixList.nsf/Search%21SearchView&Query=CBAT45TU9S
CONFIRM:http://www.notes.net/R5FixList.nsf/Search!SearchView&Query=CBAT45TU9S
https://exchange.xforce.ibmcloud.com/vulnerabilities/5045
XF:lotus-notes-bypass-ecl(5045)
CVE-2000-0892
Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL.
2002-03-09
2002-02-26
CVE-2000-0892
http://www.kb.cert.org/vuls/id/22404
CERT-VN:VU#22404
https://exchange.xforce.ibmcloud.com/vulnerabilities/6644
XF:telnet-obtain-env-variable(6644)
CVE-2000-0893
The presence of the Distributed GL Daemon (dgld) service on port 5232 on SGI IRIX systems allows remote attackers to identify the target host as an SGI system.
2001-02-02
2001-12-09
CVE-2000-0893
http://www.kb.cert.org/vuls/id/28027
CERT-VN:VU#28027
CVE-2000-0894
HTTP server on the WatchGuard SOHO firewall does not properly restrict access to administrative functions such as password resets or rebooting, which allows attackers to cause a denial of service or conduct unauthorized activities.
2004-09-01
2004-08-17
CVE-2000-0894
http://www.securityfocus.com/bid/2119
BID:2119
http://xforce.iss.net/alerts/advise70.php
ISS:20001214 Multiple vulnerabilities in the WatchGuard SOHO Firewall
http://www.osvdb.org/4404
OSVDB:4404
https://exchange.xforce.ibmcloud.com/vulnerabilities/5554
XF:watchguard-soho-web-auth(5554)
CVE-2000-0895
Buffer overflow in HTTP server on the WatchGuard SOHO firewall allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long GET request.
2004-09-01
2004-08-17
CVE-2000-0895
http://www.securityfocus.com/bid/2114
BID:2114
http://xforce.iss.net/alerts/advise70.php
ISS:20001214 Multiple vulnerabilities in the WatchGuard SOHO Firewall
http://www.osvdb.org/4403
OSVDB:4403
https://exchange.xforce.ibmcloud.com/vulnerabilities/5218
XF:watchguard-soho-web-dos(5218)
CVE-2000-0896
WatchGuard SOHO firewall allows remote attackers to cause a denial of service via a flood of fragmented IP packets, which causes the firewall to drop connections and stop forwarding packets.
2001-05-07
2004-09-02
CVE-2000-0896
http://www.securityfocus.com/bid/2113
BID:2113
http://xforce.iss.net/alerts/advise70.php
ISS:20001214 Multiple vulnerabilities in the WatchGuard SOHO Firewall
http://www.osvdb.org/1690
OSVDB:1690
https://exchange.xforce.ibmcloud.com/vulnerabilities/5749
XF:watchguard-soho-fragmented-packets(5749)
CVE-2000-0897
Small HTTP Server 2.03 and earlier allows remote attackers to cause a denial of service by repeatedly requesting a URL that references a directory that does not contain an index.html file, which consumes memory that is not released after the request is completed.
2001-09-18
2005-11-02
CVE-2000-0897
http://www.securityfocus.com/bid/1941
BID:1941
http://marc.info/?l=bugtraq&m=97421834001092&w=2
BUGTRAQ:20001114 Vulnerabilites in SmallHTTP Server
http://home.lanck.net/mf/srv/index.htm
CONFIRM:http://home.lanck.net/mf/srv/index.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/5524
XF:small-http-nofile-dos(5524)
CVE-2000-0898
Small HTTP Server 2.01 does not properly process Server Side Includes (SSI) tags that contain null values, which allows local users, and possibly remote attackers, to cause the server to crash by inserting the SSI into an HTML file.
2000-12-19
2016-10-17
CVE-2000-0898
http://marc.info/?l=bugtraq&m=97421834001092&w=2
BUGTRAQ:20001114 Vulnerabilites in SmallHTTP Server
CVE-2000-0899
Small HTTP Server 2.01 allows remote attackers to cause a denial of service by connecting to the server and sending out multiple GET, HEAD, or POST requests and closing the connection before the server responds to the requests.
2000-12-19
2016-10-17
CVE-2000-0899
http://www.securityfocus.com/bid/1942
BID:1942
http://marc.info/?l=bugtraq&m=97421834001092&w=2
BUGTRAQ:20001114 Vulnerabilites in SmallHTTP Server
CVE-2000-0900
Directory traversal vulnerability in ssi CGI program in thttpd 2.19 and earlier allows remote attackers to read arbitrary files via a "%2e%2e" string, a variation of the .. (dot dot) attack.
2001-01-22
2005-11-02
CVE-2000-0900
http://www.securityfocus.com/bid/1737
BID:1737
http://archives.neohapsis.com/archives/bugtraq/2000-10/0025.html
BUGTRAQ:20001002 thttpd ssi: retrieval of arbitrary world-readable files
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:73.thttpd.asc
FREEBSD:FreeBSD-SA-00:73
https://exchange.xforce.ibmcloud.com/vulnerabilities/5313
XF:acme-thttpd-ssi(5313)
CVE-2000-0901
Format string vulnerability in screen 3.9.5 and earlier allows local users to gain root privileges via format characters in the vbell_msg initialization variable.
2001-01-22
2004-09-02
CVE-2000-0901
http://www.securityfocus.com/bid/1641
BID:1641
http://www.securityfocus.com/archive/1/80178
BUGTRAQ:20000905 screen 3.9.5 root vulnerability
http://archives.neohapsis.com/archives/bugtraq/2000-08/0530.html
BUGTRAQ:20000906 Screen-3.7.6 local compromise
DEBIAN:20000902a
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:46.screen.asc
FREEBSD:FreeBSD-SA-00:46
http://www.linux-mandrake.com/en/updates/MDKSA-2000-044.php3
MANDRAKE:MDKSA-2000:044
http://www.redhat.com/support/errata/RHSA-2000-058.html
REDHAT:RHSA-2000:058
http://www.novell.com/linux/security/advisories/adv6_draht_screen_txt.html
SUSE:20000906 screen format string parsing security problem
https://exchange.xforce.ibmcloud.com/vulnerabilities/5188
XF:screen-format-string(5188)
CVE-2000-0902
getalbum.php in PhotoAlbum before 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-11-29
2017-12-18
CVE-2000-0902
http://www.securityfocus.com/archive/1/80858
BUGTRAQ:20000907 Re: PhotoAlbum 0.9.9 explorer.php Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5209
XF:phpphotoalbum-getalbum-directory-traversal(5209)
CVE-2000-0903
Directory traversal vulnerability in Voyager web server 2.01B in the demo disks for QNX 405 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2000-11-29
2003-05-08
CVE-2000-0903
http://www.securityfocus.com/bid/1648
BID:1648
http://www.securityfocus.com/archive/1/79956
BUGTRAQ:20000901 Multiple QNX Voyager Issues
CVE-2000-0904
Voyager web server 2.01B in the demo disks for QNX 405 stores sensitive web client information in the .photon directory in the web document root, which allows remote attackers to obtain that information.
2000-11-29
2003-05-08
CVE-2000-0904
http://www.securityfocus.com/bid/1648
BID:1648
http://www.securityfocus.com/archive/1/79956
BUGTRAQ:20000901 Multiple QNX Voyager Issues
CVE-2000-0905
QNX Embedded Resource Manager in Voyager web server 2.01B in the demo disks for QNX 405 allows remote attackers to read sensitive system statistics information via the embedded.html web page.
2000-11-29
2003-05-08
CVE-2000-0905
http://www.securityfocus.com/bid/1648
BID:1648
http://www.securityfocus.com/archive/1/79956
BUGTRAQ:20000901 Multiple QNX Voyager Issues
CVE-2000-0906
Directory traversal vulnerability in Moreover.com cached_feed.cgi script version 4.July.00 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the category or format parameters.
2000-11-29
2017-12-18
CVE-2000-0906
http://www.securityfocus.com/bid/1762
BID:1762
http://archives.neohapsis.com/archives/bugtraq/2000-10/0013.html
BUGTRAQ:20001002 Moreover Cached_Feed CGI Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5334
XF:moreover-cgi-dir-traverse(5334)
CVE-2000-0907
EServ 2.92 Build 2982 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long HELO and MAIL FROM commands.
2000-11-29
2003-03-21
CVE-2000-0907
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q3/0131.html
WIN2KSEC:20000925 DST2K0030: DoS in EServ 2.92 Build 2982
CVE-2000-0908
BrowseGate 2.80 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long Authorization or Referer MIME headers in the HTTP request.
2001-01-22
2005-11-02
CVE-2000-0908
http://www.securityfocus.com/bid/1702
BID:1702
http://marc.info/?l=bugtraq&m=96956211605302&w=2
BUGTRAQ:20000921 DST2K0031: DoS in BrowseGate(Home) v2.80(H)
http://www.netcplus.com/browsegate.htm#BGLatest
CONFIRM:http://www.netcplus.com/browsegate.htm#BGLatest
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q3/0128.html
WIN2KSEC:20000921 DST2K0031: DoS in BrowseGate(Home) v2.80(H)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5270
XF:browsegate-http-dos(5270)
CVE-2000-0909
Buffer overflow in the automatic mail checking component of Pine 4.21 and earlier allows remote attackers to execute arbitrary commands via a long From: header.
2001-01-22
2004-09-02
CVE-2000-0909
http://www.securityfocus.com/bid/1709
BID:1709
http://www.securityfocus.com/archive/1/84901
BUGTRAQ:20000922 [ no subject ]
http://archives.neohapsis.com/archives/bugtraq/2000-10/0441.html
BUGTRAQ:20001031 FW: Pine 4.30 now available
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:59.pine.asc
FREEBSD:FreeBSD-SA-00:59
http://www.linux-mandrake.com/en/security/MDKSA-2000-073.php3
MANDRAKE:MDKSA-2000:073
http://www.redhat.com/support/errata/RHSA-2000-102.html
REDHAT:RHSA-2000:102
https://exchange.xforce.ibmcloud.com/vulnerabilities/5283
XF:pine-check-mail-bo(5283)
CVE-2000-0910
Horde library 1.02 allows attackers to execute arbitrary commands via shell metacharacters in the "from" address.
2001-01-22
2005-11-02
CVE-2000-0910
http://www.securityfocus.com/bid/1674
BID:1674
http://archives.neohapsis.com/archives/bugtraq/2000-09/0051.html
BUGTRAQ:20000908 horde library bug - unchecked from-address
http://ssl.coc-ag.de/sec/hordelib-1.2.0.frombug.patch
CONFIRM:http://ssl.coc-ag.de/sec/hordelib-1.2.0.frombug.patch
http://www.debian.org/security/2000/20000910
DEBIAN:20000910 imp: remote compromise
https://exchange.xforce.ibmcloud.com/vulnerabilities/5278
XF:horde-imp-sendmail-command(5278)
CVE-2000-0911
IMP 2.2 and earlier allows attackers to read and delete arbitrary files by modifying the attachment_name hidden form variable, which causes IMP to send the file to the attacker as an attachment.
2001-01-22
2005-11-02
CVE-2000-0911
http://www.securityfocus.com/bid/1679
BID:1679
http://www.securityfocus.com/archive/1/82088
BUGTRAQ:20000912 (SRADV00003) Arbitrary file disclosure through IMP
https://exchange.xforce.ibmcloud.com/vulnerabilities/5227
XF:imp-attach-file(5227)
CVE-2000-0912
MultiHTML CGI script allows remote attackers to read arbitrary files and possibly execute arbitrary commands by specifying the file name to the "multi" parameter.
2001-01-22
2005-11-02
CVE-2000-0912
http://archives.neohapsis.com/archives/bugtraq/2000-09/0146.html
BUGTRAQ:20000913 MultiHTML vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5285
XF:http-cgi-multihtml(5285)
CVE-2000-0913
mod_rewrite in Apache 1.3.12 and earlier allows remote attackers to read arbitrary files if a RewriteRule directive is expanded to include a filename whose name contains a regular expression.
2001-01-22
2021-06-06
CVE-2000-0913
http://www.securityfocus.com/bid/1728
BID:1728
http://archives.neohapsis.com/archives/bugtraq/2000-09/0352.html
BUGTRAQ:20000929 Security vulnerability in Apache mod_rewrite
http://archives.neohapsis.com/archives/bugtraq/2000-10/0174.html
BUGTRAQ:20001011 Conectiva Linux Security Announcement - apache
http://www.calderasystems.com/support/security/advisories/CSSA-2000-035.0.txt
CALDERA:CSSA-2000-035.0
http://archives.neohapsis.com/archives/hp/2000-q4/0021.html
HP:HPSBUX0010-126
http://www.linux-mandrake.com/en/security/MDKSA-2000-060-2.php3?dis=7.1
MANDRAKE:MDKSA-2000:060
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073140 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210606 svn commit: r1075470 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
http://www.redhat.com/support/errata/RHSA-2000-088.html
REDHAT:RHSA-2000:088
http://www.redhat.com/support/errata/RHSA-2000-095.html
REDHAT:RHSA-2000:095
https://exchange.xforce.ibmcloud.com/vulnerabilities/5310
XF:apache-rewrite-view-files(5310)
CVE-2000-0914
OpenBSD 2.6 and earlier allows remote attackers to cause a denial of service by flooding the server with ARP requests.
2001-01-22
2004-09-02
CVE-2000-0914
http://www.securityfocus.com/bid/1759
BID:1759
http://archives.neohapsis.com/archives/bugtraq/2000-10/0078.html
BUGTRAQ:20001005 obsd_fun.c
http://www.osvdb.org/1592
OSVDB:1592
https://exchange.xforce.ibmcloud.com/vulnerabilities/5340
XF:bsd-arp-request-dos(5340)
CVE-2000-0915
fingerd in FreeBSD 4.1.1 allows remote attackers to read arbitrary files by specifying the target file name instead of a regular user name.
2001-01-22
2004-09-02
CVE-2000-0915
http://www.securityfocus.com/bid/1803
BID:1803
http://archives.neohapsis.com/archives/bugtraq/2000-10/0017.html
BUGTRAQ:20001002 [sa2c@and.or.jp: bin/21704: enabling fingerd makes files world readable]
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:54.fingerd.asc
FREEBSD:FreeBSD-SA-00:54
http://www.osvdb.org/433
OSVDB:433
https://exchange.xforce.ibmcloud.com/vulnerabilities/5385
XF:freebsd-fingerd-files(5385)
CVE-2000-0916
FreeBSD 4.1.1 and earlier, and possibly other BSD-based OSes, uses an insufficient random number generator to generate initial TCP sequence numbers (ISN), which allows remote attackers to spoof TCP connections.
2000-11-29
2003-05-08
CVE-2000-0916
http://www.securityfocus.com/bid/1766
BID:1766
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:52.tcp-iss.asc
FREEBSD:FreeBSD-SA-00:52
CVE-2000-0917
Format string vulnerability in use_syslog() function in LPRng 3.6.24 allows remote attackers to execute arbitrary commands.
2001-01-22
2004-09-02
CVE-2000-0917
http://www.securityfocus.com/bid/1712
BID:1712
http://archives.neohapsis.com/archives/bugtraq/2000-09/0293.html
BUGTRAQ:20000925 Format strings: bug #2: LPRng
http://www.calderasystems.com/support/security/advisories/CSSA-2000-033.0.txt
CALDERA:CSSA-2000-033.0
http://www.cert.org/advisories/CA-2000-22.html
CERT:CA-2000-22
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:56.lprng.asc
FREEBSD:FreeBSD-SA-00:56
http://www.redhat.com/support/errata/RHSA-2000-065.html
REDHAT:RHSA-2000:065
https://exchange.xforce.ibmcloud.com/vulnerabilities/5287
XF:lprng-format-string(5287)
CVE-2000-0918
Format string vulnerability in kvt in KDE 1.1.2 may allow local users to execute arbitrary commands via a DISPLAY environmental variable that contains formatting characters.
2000-11-29
2003-03-21
CVE-2000-0918
http://www.securityfocus.com/bid/1700
BID:1700
http://www.securityfocus.com/archive/1/83914
BUGTRAQ:20000919 kvt format bug
CVE-2000-0919
Directory traversal vulnerability in PHPix Photo Album 1.0.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2001-01-22
2004-09-02
CVE-2000-0919
http://www.securityfocus.com/bid/1773
BID:1773
http://archives.neohapsis.com/archives/bugtraq/2000-10/0117.html
BUGTRAQ:20001007 PHPix advisory
http://www.osvdb.org/472
OSVDB:472
https://exchange.xforce.ibmcloud.com/vulnerabilities/5331
XF:phpix-dir-traversal(5331)
CVE-2000-0920
Directory traversal vulnerability in BOA web server 0.94.8.2 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack in the GET HTTP request that uses a "%2E" instead of a "."
2001-01-22
2005-11-02
CVE-2000-0920
http://www.securityfocus.com/bid/1770
BID:1770
http://archives.neohapsis.com/archives/bugtraq/2000-10/0092.html
BUGTRAQ:20001006 Vulnerability in BOA web server v0.94.8.2
http://www.debian.org/security/2000/20001009
DEBIAN:20001009 boa: exposes contents of local files
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:60.boa.asc
FREEBSD:FreeBSD-SA-00:60
https://exchange.xforce.ibmcloud.com/vulnerabilities/5330
XF:boa-webserver-get-dir-traversal(5330)
CVE-2000-0921
Directory traversal vulnerability in Hassan Consulting shop.cgi shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page parameter.
2001-01-22
2004-09-02
CVE-2000-0921
http://www.securityfocus.com/bid/1777
BID:1777
http://archives.neohapsis.com/archives/bugtraq/2000-10/0115.html
BUGTRAQ:20001007 Security Advisory: Hassan Consulting's shop.cgi Directory Traversal Vulnerability.
http://www.osvdb.org/1596
OSVDB:1596
https://exchange.xforce.ibmcloud.com/vulnerabilities/5342
XF:hassan-shopping-cart-dir-traversal(5342)
CVE-2000-0922
Directory traversal vulnerability in Bytes Interactive Web Shopper shopping cart program (shopper.cgi) 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack on the newpage parameter.
2001-01-22
2005-11-02
CVE-2000-0922
http://www.securityfocus.com/bid/1776
BID:1776
http://archives.neohapsis.com/archives/bugtraq/2000-10/0120.html
BUGTRAQ:20001008 Security Advisory: Bytes Interactive's Web Shopper (shopper.cgi) Directory Traversal Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5351
XF:web-shopper-directory-traversal(5351)
CVE-2000-0923
authenticate.cgi CGI program in Aplio PRO allows remote attackers to execute arbitrary commands via shell metacharacters in the password parameter.
2001-01-22
2005-11-02
CVE-2000-0923
http://www.securityfocus.com/bid/1784
BID:1784
http://archives.neohapsis.com/archives/bugtraq/2000-10/0107.html
BUGTRAQ:20001006 Fwd: APlio PRO web shell
https://exchange.xforce.ibmcloud.com/vulnerabilities/5333
XF:uclinux-apliophone-bin-execute(5333)
CVE-2000-0924
Directory traversal vulnerability in search.cgi CGI script in Armada Master Index allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catigory" parameter.
2001-01-22
2004-09-02
CVE-2000-0924
http://www.securityfocus.com/bid/1772
BID:1772
http://archives.neohapsis.com/archives/bugtraq/2000-10/0141.html
BUGTRAQ:20001009 Master Index traverse advisory
http://www.osvdb.org/461
OSVDB:461
https://exchange.xforce.ibmcloud.com/vulnerabilities/5355
XF:master-index-directory-traversal(5355)
CVE-2000-0925
The default installation of SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) installs the _private directory with world readable permissions, which allows remote attackers to obtain sensitive information.
2001-01-22
2005-11-02
CVE-2000-0925
http://www.securityfocus.com/bid/1734
BID:1734
http://marc.info/?l=bugtraq&m=97050819812055&w=2
BUGTRAQ:20001002 DST2K0035: Credit card (customer) details exposed within CyberOff ice Shopping Cart v2
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0001.html
WIN2KSEC:20001002 DST2K0035: Credit card (customer) details exposed within CyberOff ice Shopping Cart v2
https://exchange.xforce.ibmcloud.com/vulnerabilities/5318
XF:cyberoffice-world-readable-directory(5318)
CVE-2000-0926
SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) allows remote attackers to modify price information by changing the "Price" hidden form variable.
2001-01-22
2005-11-02
CVE-2000-0926
http://www.securityfocus.com/bid/1733
BID:1733
http://marc.info/?l=bugtraq&m=97050627707128&w=2
BUGTRAQ:20001002 DST2K0036: Price modification possible in CyberOffice Shopping Cart
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0000.html
WIN2KSEC:20001002 DST2K0036: Price modification possible in CyberOffice Shopping Ca rt
https://exchange.xforce.ibmcloud.com/vulnerabilities/5319
XF:cyberoffice-price-modification(5319)
CVE-2000-0927
WQuinn QuotaAdvisor 4.1 does not properly record file sizes if they are stored in alternative data streams, which allows users to bypass quota restrictions.
2001-05-07
2005-11-02
CVE-2000-0927
http://www.securityfocus.com/bid/1724
BID:1724
http://archives.neohapsis.com/archives/bugtraq/2000-09//0331.html
BUGTRAQ:20000928 DST2K0037: QuotaAdvisor 4.1 by WQuinn is susceptible to alternati ve datastreams to bypass quotas.
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0173.html
NTBUGTRAQ:20000928 DST2K0037: QuotaAdvisor 4.1 by WQuinn is susceptible to alternati ve datastreams to bypass quotas.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5302
XF:quotaadvisor-quota-bypass(5302)
CVE-2000-0928
WQuinn QuotaAdvisor 4.1 allows users to list directories and files by running a report on the targeted shares.
2001-01-22
2005-11-02
CVE-2000-0928
http://www.securityfocus.com/bid/1765
BID:1765
http://archives.neohapsis.com/archives/bugtraq/2000-10/0091.html
BUGTRAQ:20001006 DST2K0040: QuotaAdvisor 4.1 by WQuinn susceptible to any user bei ng able to list (not read) all files on any server running QuotaAdvisor.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5327
XF:quotaadvisor-list-files(5327)
CVE-2000-0929
Microsoft Windows Media Player 7 allows attackers to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0929
http://www.securityfocus.com/bid/1714
BID:1714
http://marc.info/?l=bugtraq&m=97024839222747&w=2
BUGTRAQ:20000929 Malformed Embedded Windows Media Player 7 "OCX Attachment"
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-068
MS:MS00-068
https://exchange.xforce.ibmcloud.com/vulnerabilities/5309
XF:mediaplayer-outlook-dos(5309)
CVE-2000-0930
Pegasus Mail 3.12 allows remote attackers to read arbitrary files via an embedded URL that calls the mailto: protocol with a -F switch.
2001-01-22
2005-11-02
CVE-2000-0930
http://www.securityfocus.com/bid/1738
BID:1738
http://archives.neohapsis.com/archives/bugtraq/2000-10/0039.html
BUGTRAQ:20001003 Pegasus mail file reading vulnerability
http://archives.neohapsis.com/archives/bugtraq/2000-10/0436.html
BUGTRAQ:20001030 Pegasus Mail file reading vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5326
XF:pegasus-file-forwarding(5326)
CVE-2000-0931
Buffer overflow in Pegasus Mail 3.11 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long email message containing binary data.
2000-11-29
2003-05-08
CVE-2000-0931
http://www.securityfocus.com/bid/1750
BID:1750
http://www.securityfocus.com/archive/1/137518
BUGTRAQ:20001004 Another Pegasus Mail vulnerability
CVE-2000-0932
MAILsweeper for SMTP 3.x does not properly handle corrupt CDA documents in a ZIP file and hangs, which allows remote attackers to cause a denial of service.
2001-01-22
2005-11-02
CVE-2000-0932
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0181.html
NTBUGTRAQ:20000926 FW: DOS for Content Technologies' MAILsweeper for SMTP.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5641
XF:mailsweeper-smtp-dos(5641)
CVE-2000-0933
The Input Method Editor (IME) in the Simplified Chinese version of Windows 2000 does not disable access to privileged functionality that should normally be restricted, which allows local users to gain privileges, aka the "Simplified Chinese IME State Recognition" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0933
http://www.securityfocus.com/bid/1729
BID:1729
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-069
MS:MS00-069
https://exchange.xforce.ibmcloud.com/vulnerabilities/5301
XF:win2k-simplified-chinese-ime(5301)
CVE-2000-0934
Glint in Red Hat Linux 5.2 allows local users to overwrite arbitrary files and cause a denial of service via a symlink attack.
2001-01-22
2004-09-02
CVE-2000-0934
http://www.securityfocus.com/bid/1703
BID:1703
http://www.redhat.com/support/errata/RHSA-2000-062.html
REDHAT:RHSA-2000:062
https://exchange.xforce.ibmcloud.com/vulnerabilities/5271
XF:glint-symlink(5271)
CVE-2000-0935
Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows local users to overwrite arbitrary files via a symlink attack on the cgi.log file.
2001-01-22
2005-11-02
CVE-2000-0935
http://www.securityfocus.com/bid/1872
BID:1872
http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html
BUGTRAQ:20001030 Samba 2.0.7 SWAT vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5443
XF:samba-swat-logging-sym-link(5443)
CVE-2000-0936
Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive information such as user names and passwords.
2001-01-22
2005-11-02
CVE-2000-0936
http://www.securityfocus.com/bid/1874
BID:1874
http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html
BUGTRAQ:20001030 Samba 2.0.7 SWAT vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5445
XF:samba-swat-logfile-info(5445)
CVE-2000-0937
Samba Web Administration Tool (SWAT) in Samba 2.0.7 does not log login attempts in which the username is correct but the password is wrong, which allows remote attackers to conduct brute force password guessing attacks.
2001-01-22
2005-11-02
CVE-2000-0937
http://www.securityfocus.com/bid/1873
BID:1873
http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html
BUGTRAQ:20001030 Samba 2.0.7 SWAT vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5442
XF:samba-swat-brute-force(5442)
CVE-2000-0938
Samba Web Administration Tool (SWAT) in Samba 2.0.7 supplies a different error message when a valid username is provided versus an invalid name, which allows remote attackers to identify valid users on the server.
2001-01-22
2005-11-02
CVE-2000-0938
http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html
BUGTRAQ:20001030 Samba 2.0.7 SWAT vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5442
XF:samba-swat-brute-force(5442)
CVE-2000-0939
Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows remote attackers to cause a denial of service by repeatedly submitting a nonstandard URL in the GET HTTP request and forcing it to restart.
2000-11-29
2017-12-18
CVE-2000-0939
http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html
BUGTRAQ:20001030 Samba 2.0.7 SWAT vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5444
XF:samba-swat-url-filename-dos(5444)
CVE-2000-0940
Directory traversal vulnerability in Metertek pagelog.cgi allows remote attackers to read arbitrary files via a .. (dot dot) attack on the "name" or "display" parameter.
2000-11-29
2017-12-18
CVE-2000-0940
http://www.securityfocus.com/bid/1864
BID:1864
http://archives.neohapsis.com/archives/bugtraq/2000-10/0422.html
BUGTRAQ:20001029 Minor bug in Pagelog.cgi
https://exchange.xforce.ibmcloud.com/vulnerabilities/5451
XF:pagelog-cgi-dir-traverse(5451)
CVE-2000-0941
Kootenay Web KW Whois 1.0 CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the "whois" parameter.
2001-01-22
2005-11-02
CVE-2000-0941
http://www.securityfocus.com/bid/1883
BID:1883
http://archives.neohapsis.com/archives/bugtraq/2000-10/0420.html
BUGTRAQ:20001029 Re: Remote command execution via KW Whois 1.0 (addition)
http://archives.neohapsis.com/archives/bugtraq/2000-10/0419.html
BUGTRAQ:20001029 Remote command execution via KW Whois 1.0
http://www.kootenayweb.bc.ca/scripts/whois.txt
MISC:http://www.kootenayweb.bc.ca/scripts/whois.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/5438
XF:kw-whois-meta(5438)
CVE-2000-0942
The CiWebHitsFile component in Microsoft Indexing Services for Windows 2000 allows remote attackers to conduct a cross site scripting (CSS) attack via a CiRestriction parameter in a .htw request, aka the "Indexing Services Cross Site Scripting" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0942
http://www.securityfocus.com/bid/1861
BID:1861
http://www.securityfocus.com/archive/1/141903
BUGTRAQ:20001028 IIS 5.0 cross site scripting vulnerability - using .htw
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-084
MS:MS00-084
https://exchange.xforce.ibmcloud.com/vulnerabilities/5441
XF:iis-htw-cross-scripting(5441)
CVE-2000-0943
Buffer overflow in bftp daemon (bftpd) 1.0.11 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long USER command.
2001-01-22
2005-11-02
CVE-2000-0943
http://www.securityfocus.com/bid/1858
BID:1858
http://archives.neohapsis.com/archives/bugtraq/2000-10/0397.html
BUGTRAQ:20001027 Potential Security Problem in bftpd-1.0.11
https://exchange.xforce.ibmcloud.com/vulnerabilities/5426
XF:bftpd-user-bo(5426)
CVE-2000-0944
CGI Script Center News Update 1.1 does not properly validate the original news administration password during a password change operation, which allows remote attackers to modify the password without knowing the original password.
2001-01-22
2005-11-02
CVE-2000-0944
http://www.securityfocus.com/bid/1881
BID:1881
http://archives.neohapsis.com/archives/bugtraq/2000-10/0402.html
BUGTRAQ:20001027 CGI-Bug: News Update 1.1 administration password bug
https://exchange.xforce.ibmcloud.com/vulnerabilities/5433
XF:news-update-bypass-password(5433)
CVE-2000-0945
The web configuration interface for Catalyst 3500 XL switches allows remote attackers to execute arbitrary commands without authentication when the enable password is not set, via a URL containing the /exec/ directory.
2001-09-18
2004-09-02
CVE-2000-0945
http://www.securityfocus.com/bid/1846
BID:1846
http://archives.neohapsis.com/archives/bugtraq/2000-10/0380.html
BUGTRAQ:20001026 Advisory def-2000-02: Cisco Catalyst remote command execution
http://archives.neohapsis.com/archives/bugtraq/2000-11/0194.html
BUGTRAQ:20001113 Re: 3500XL
http://www.osvdb.org/444
OSVDB:444
https://exchange.xforce.ibmcloud.com/vulnerabilities/5415
XF:cisco-catalyst-remote-commands(5415)
CVE-2000-0946
Compaq Easy Access Keyboard software 1.3 does not properly disable access to custom buttons when the screen is locked, which could allow an attacker to gain privileges or execute programs without authorization.
2001-01-22
2004-09-02
CVE-2000-0946
http://www5.compaq.com/support/files/desktops/us/revision/1723.html
CONFIRM:http://www5.compaq.com/support/files/desktops/us/revision/1723.html
http://archives.neohapsis.com/archives/ntbugtraq/2000-q4/0023.html
NTBUGTRAQ:20001012 Security issue with Compaq Easy Access Keyboard software
http://www.osvdb.org/5831
OSVDB:5831
https://exchange.xforce.ibmcloud.com/vulnerabilities/5718
XF:compaq-ea-elevate-privileges(5718)
CVE-2000-0947
Format string vulnerability in cfd daemon in GNU CFEngine before 1.6.0a11 allows attackers to execute arbitrary commands via format characters in the CAUTH command.
2001-01-22
2005-11-02
CVE-2000-0947
http://www.securityfocus.com/bid/1757
BID:1757
http://archives.neohapsis.com/archives/bugtraq/2000-10/0004.html
BUGTRAQ:20001002 Very probable remote root vulnerability in cfengine
http://www.linux-mandrake.com/en/security/MDKSA-2000-061.php3?dis=7.1
MANDRAKE:MDKSA-2000:061
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-013.txt.asc
NETBSD:NetBSD-SA2000-013
https://exchange.xforce.ibmcloud.com/vulnerabilities/5630
XF:cfengine-cfd-format-string(5630)
CVE-2000-0948
GnoRPM before 0.95 allows local users to modify arbitrary files via a symlink attack.
2001-01-22
2004-09-02
CVE-2000-0948
http://www.securityfocus.com/bid/1761
BID:1761
http://www.securityfocus.com/archive/1/136866
BUGTRAQ:20001002 GnoRPM local /tmp vulnerability
http://archives.neohapsis.com/archives/bugtraq/2000-10/0043.html
BUGTRAQ:20001003 Conectiva Linux Security Announcement - gnorpm
http://archives.neohapsis.com/archives/bugtraq/2000-10/0184.html
BUGTRAQ:20001011 Immunix OS Security Update for gnorpm package
http://www.linux-mandrake.com/en/security/MDKSA-2000-055.php3?dis=7.0
MANDRAKE:MDKSA-2000:055
http://www.redhat.com/support/errata/RHSA-2000-072.html
REDHAT:RHSA-2000:072
https://exchange.xforce.ibmcloud.com/vulnerabilities/5317
XF:gnorpm-temp-symlink(5317)
CVE-2000-0949
Heap overflow in savestr function in LBNL traceroute 1.4a5 and earlier allows a local user to execute arbitrary commands via the -g option.
2001-01-22
2004-09-02
CVE-2000-0949
http://www.securityfocus.com/bid/1739
BID:1739
http://archives.neohapsis.com/archives/bugtraq/2000-09/0344.html
BUGTRAQ:20000928 Very interesting traceroute flaw
http://archives.neohapsis.com/archives/bugtraq/2000-09/0357.html
BUGTRAQ:20000930 Conectiva Linux Security Announcement - traceroute
http://www.calderasystems.com/support/security/advisories/CSSA-2000-034.0.txt
CALDERA:CSSA-2000-034.0
http://www.debian.org/security/2000/20001013
DEBIAN:20001013 traceroute: local root exploit
http://www.linux-mandrake.com/en/security/MDKSA-2000-053.php3?dis=7.1
MANDRAKE:MDKSA-2000:053
http://www.redhat.com/support/errata/RHSA-2000-078.html
REDHAT:RHSA-2000:078
http://www.turbolinux.com/pipermail/tl-security-announce/2000-October/000025.html
TURBO:TLSA2000023-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/5311
XF:traceroute-heap-overflow(5311)
CVE-2000-0950
Format string vulnerability in x-gw in TIS Firewall Toolkit (FWTK) allows local users to execute arbitrary commands via a malformed display name.
2000-11-29
2017-12-18
CVE-2000-0950
http://archives.neohapsis.com/archives/bugtraq/2000-10/0376.html
BUGTRAQ:20001026 FWTK x-gw Security Advisory [GSA2000-01]
https://exchange.xforce.ibmcloud.com/vulnerabilities/5420
XF:tisfwtk-xgw-execute-code(5420)
CVE-2000-0951
A misconfiguration in IIS 5.0 with Index Server enabled and the Index property set allows remote attackers to list directories in the web root via a Web Distributed Authoring and Versioning (WebDAV) search.
2001-01-22
2005-11-02
CVE-2000-0951
http://www.atstake.com/research/advisories/2000/a100400-1.txt
ATSTAKE:A100400-1
http://www.securityfocus.com/bid/1756
BID:1756
http://www.microsoft.com/technet/support/kb.asp?ID=272079
MSKB:Q272079
https://exchange.xforce.ibmcloud.com/vulnerabilities/5335
XF:iis-index-dir-traverse(5335)
CVE-2000-0952
global.cgi CGI program in Global 3.55 and earlier on NetBSD allows remote attackers to execute arbitrary commands via shell metacharacters.
2001-01-22
2004-09-02
CVE-2000-0952
FREEBSD:FreeBSD-SA-00:64
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-014.txt.asc
NETBSD:NetBSD-SA2000-014
http://www.osvdb.org/6486
OSVDB:6486
https://exchange.xforce.ibmcloud.com/vulnerabilities/5424
XF:global-execute-remote-commands(5424)
CVE-2000-0953
Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection.
2001-01-22
2005-11-02
CVE-2000-0953
http://www.securityfocus.com/bid/1778
BID:1778
http://archives.neohapsis.com/archives/bugtraq/2000-10/0134.html
BUGTRAQ:20001009 Shambala 4.5 vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5345
XF:shambala-connection-dos(5345)
CVE-2000-0954
Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server.
2000-11-29
2017-12-18
CVE-2000-0954
http://www.securityfocus.com/bid/1771
BID:1771
http://archives.neohapsis.com/archives/bugtraq/2000-10/0134.html
BUGTRAQ:20001009 Shambala 4.5 vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5346
XF:shambala-password-plaintext(5346)
CVE-2000-0955
Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain privileges.
2000-11-29
2017-12-18
CVE-2000-0955
http://www.atstake.com/research/advisories/2000/a102600-1.txt
ATSTAKE:A102600-1
http://www.securityfocus.com/bid/1885
BID:1885
https://exchange.xforce.ibmcloud.com/vulnerabilities/5425
XF:cisco-vco-snmp-passwords(5425)
CVE-2000-0956
cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions.
2001-01-22
2004-09-02
CVE-2000-0956
http://www.securityfocus.com/bid/1875
BID:1875
http://www.redhat.com/support/errata/RHSA-2000-094.html
REDHAT:RHSA-2000:094
https://exchange.xforce.ibmcloud.com/vulnerabilities/5427
XF:cyrus-sasl-gain-access(5427)
CVE-2000-0957
The pluggable authentication module for mysql (pam_mysql) before 0.4.7 does not properly cleanse user input when constructing SQL statements, which allows attackers to obtain plaintext passwords or hashes.
2001-01-22
2005-11-02
CVE-2000-0957
http://archives.neohapsis.com/archives/bugtraq/2000-10/0374.html
BUGTRAQ:20001026 (SRADV00004) Remote and local vulnerabilities in pam_mysql
https://exchange.xforce.ibmcloud.com/vulnerabilities/5447
XF:pammysql-auth-input(5447)
CVE-2000-0958
HotJava Browser 3.0 allows remote attackers to access the DOM of a web page by opening a javascript: URL in a named window.
2001-01-22
2005-11-02
CVE-2000-0958
http://archives.neohapsis.com/archives/bugtraq/2000-10/0349.html
BUGTRAQ:20001025 HotJava Browser 3.0 JavaScript security vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5428
XF:hotjava-browser-dom-access(5428)
CVE-2000-0959
glibc2 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environmental variables when a program is spawned from a setuid program, which could allow local users to overwrite files via a symlink attack.
2001-01-22
2005-11-02
CVE-2000-0959
http://www.securityfocus.com/bid/1719
BID:1719
http://www.securityfocus.com/archive/1/85028
BUGTRAQ:20000926 ld.so bug - LD_DEBUG_OUTPUT follows symlinks
https://exchange.xforce.ibmcloud.com/vulnerabilities/5299
XF:glibc-unset-symlink(5299)
CVE-2000-0960
The POP3 server in Netscape Messaging Server 4.15p1 generates different error messages for incorrect user names versus incorrect passwords, which allows remote attackers to determine valid users on the system and harvest email addresses for spam abuse.
2001-01-22
2005-11-02
CVE-2000-0960
http://www.securityfocus.com/bid/1787
BID:1787
http://marc.info/?l=bugtraq&m=97138100426121&w=2
BUGTRAQ:20001011 Netscape Messaging server 4.15 poor error strings
https://exchange.xforce.ibmcloud.com/vulnerabilities/5364
XF:netscape-messaging-email-verify(5364)
CVE-2000-0961
Buffer overflow in IMAP server in Netscape Messaging Server 4.15 Patch 2 allows local users to execute arbitrary commands via a long LIST command.
2001-01-22
2005-11-02
CVE-2000-0961
http://www.securityfocus.com/bid/1721
BID:1721
http://archives.neohapsis.com/archives/bugtraq/2000-09/0334.html
BUGTRAQ:20000928 commercial products and security [ + new bug ]
https://exchange.xforce.ibmcloud.com/vulnerabilities/5292
XF:netscape-messaging-list-dos(5292)
CVE-2000-0962
The IPSEC implementation in OpenBSD 2.7 does not properly handle empty AH/ESP packets, which allows remote attackers to cause a denial of service.
2001-01-22
2004-09-02
CVE-2000-0962
http://www.securityfocus.com/bid/1723
BID:1723
http://archives.neohapsis.com/archives/bugtraq/2000-09/0299.html
BUGTRAQ:20000925 Nmap Protocol Scanning DoS against OpenBSD IPSEC
OPENBSD:20000918 Bad ESP/AH packets could cause a crash under certain conditions.
http://www.osvdb.org/1574
OSVDB:1574
https://exchange.xforce.ibmcloud.com/vulnerabilities/5634
XF:openbsd-nmap-dos(5634)
CVE-2000-0963
Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS.
2000-11-29
2017-07-10
CVE-2000-0963
http://www.securityfocus.com/bid/1142
BID:1142
http://www.securityfocus.com/archive/1/138550
BUGTRAQ:20001009 ncurses buffer overflows
http://www.calderasystems.com/support/security/advisories/CSSA-2000-036.0.txt
CALDERA:CSSA-2000-036.0
https://exchange.xforce.ibmcloud.com/vulnerabilities/44487
XF:gnu-ncurses-term-terminfodirs-bo(44487)
CVE-2000-0964
Buffer overflow in the web administration service for the HiNet LP5100 IP-phone allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request.
2001-05-07
2005-11-02
CVE-2000-0964
http://www.securityfocus.com/bid/1727
BID:1727
http://archives.neohapsis.com/archives/bugtraq/2000-09/0336.html
BUGTRAQ:20000928 Another thingy.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5298
XF:hinet-ipphone-get-bo(5298)
CVE-2000-0965
The NSAPI plugins for TGA and the Java Servlet proxy in HP-UX VVOS 10.24 and 11.04 allows an attacker to cause a denial of service (high CPU utilization).
2001-01-22
2009-03-01
CVE-2000-0965
http://archives.neohapsis.com/archives/hp/2000-q4/0012.html
HP:HPSBUX0010-124
https://exchange.xforce.ibmcloud.com/vulnerabilities/5361
XF:hp-virtualvault-nsapi-dos(5361)
CVE-2000-0966
Buffer overflows in lpspooler in the fileset PrinterMgmt.LP-SPOOL of HP-UX 11.0 and earlier allows local users to gain privileges.
2001-01-22
2009-03-01
CVE-2000-0966
http://archives.neohapsis.com/archives/hp/2000-q4/0020.html
HP:HPSBUX0010-125
http://www.osvdb.org/7244
OSVDB:7244
https://exchange.xforce.ibmcloud.com/vulnerabilities/5379
XF:hp-lpspooler-bo(5379)
CVE-2000-0967
PHP 3 and 4 do not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands by triggering error messages that are improperly written to the error logs.
2001-01-22
2004-09-02
CVE-2000-0967
http://www.atstake.com/research/advisories/2000/a101200-1.txt
ATSTAKE:A101200-1
http://www.securityfocus.com/bid/1786
BID:1786
http://archives.neohapsis.com/archives/bugtraq/2000-10/0204.html
BUGTRAQ:20001012 Conectiva Linux Security Announcement - mod_php3
http://www.calderasystems.com/support/security/advisories/CSSA-2000-037.0.txt
CALDERA:CSSA-2000-037.0
DEBIAN:20001014a
DEBIAN:20001014b
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:75.php.asc
FREEBSD:FreeBSD-SA-00:75
http://www.linux-mandrake.com/en/security/MDKSA-2000-062.php3?dis=7.1
MANDRAKE:MDKSA-2000:062
http://www.redhat.com/support/errata/RHSA-2000-088.html
REDHAT:RHSA-2000:088
http://www.redhat.com/support/errata/RHSA-2000-095.html
REDHAT:RHSA-2000:095
https://exchange.xforce.ibmcloud.com/vulnerabilities/5359
XF:php-logging-format-string(5359)
CVE-2000-0968
Buffer overflow in Half Life dedicated server before build 3104 allows remote attackers to execute arbitrary commands via a long rcon command.
2001-01-22
2005-11-02
CVE-2000-0968
http://www.securityfocus.com/bid/1799
BID:1799
http://archives.neohapsis.com/archives/bugtraq/2000-10/0254.html
BUGTRAQ:20001016 Half-Life Dedicated Server Vulnerability
http://www.securityfocus.com/archive/1/141060
BUGTRAQ:20001024 Tamandua Sekure Labs Security Advisory 2000-01
http://archives.neohapsis.com/archives/bugtraq/2000-10/0409.html
BUGTRAQ:20001027 Re: Half Life dedicated server Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/5375
XF:halflife-server-changelevel-bo(5375)
CVE-2000-0969
Format string vulnerability in Half Life dedicated server build 3104 and earlier allows remote attackers to execute arbitrary commands by injecting format strings into the changelevel command, via the system console or rcon.
2001-01-22
2004-09-02
CVE-2000-0969
http://archives.neohapsis.com/archives/bugtraq/2000-10/0254.html
BUGTRAQ:20001016 Half-Life Dedicated Server Vulnerability
http://www.securityfocus.com/archive/1/141060
BUGTRAQ:20001024 Tamandua Sekure Labs Security Advisory 2000-01
http://archives.neohapsis.com/archives/bugtraq/2000-10/0409.html
BUGTRAQ:20001027 Re: Half Life dedicated server Patch
http://www.osvdb.org/6983
OSVDB:6983
https://exchange.xforce.ibmcloud.com/vulnerabilities/5413
XF:halflife-rcon-format-string(5413)
CVE-2000-0970
IIS 4.0 and 5.0 .ASP pages send the same Session ID cookie for secure and insecure web sessions, which could allow remote attackers to hijack the secure web session of the user if that user moves to an insecure session, aka the "Session ID Cookie Marking" vulnerability.
2001-01-22
2004-09-02
CVE-2000-0970
http://www.acrossecurity.com/aspr/ASPR-2000-07-22-1-PUB.txt
MISC:http://www.acrossecurity.com/aspr/ASPR-2000-07-22-1-PUB.txt
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-080
MS:MS00-080
http://www.osvdb.org/7265
OSVDB:7265
https://exchange.xforce.ibmcloud.com/vulnerabilities/5396
XF:session-cookie-remote-retrieval(5396)
CVE-2000-0971
Avirt Mail 4.0 and 4.2 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long "RCPT TO" or "MAIL FROM" command.
2000-11-29
2017-12-18
CVE-2000-0971
http://archives.neohapsis.com/archives/bugtraq/2000-10/0301.html
BUGTRAQ:20001023 Avirt Mail 4.x DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5397
XF:avirt-mail-from-dos(5397)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5398
XF:avirt-rcpt-to-dos(5398)
CVE-2000-0972
HP-UX 11.00 crontab allows local users to read arbitrary files via the -e option by creating a symlink to the target file during the crontab session, quitting the session, and reading the error messages that crontab generates.
2001-01-22
2005-11-02
CVE-2000-0972
http://archives.neohapsis.com/archives/bugtraq/2000-10/0317.html
BUGTRAQ:20001020 [ Hackerslab bug_paper ] HP-UX crontab temporary file symbolic link vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5410
XF:hp-crontab-read-files(5410)
CVE-2000-0973
Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error message to be generated.
2001-01-22
2005-11-02
CVE-2000-0973
http://www.securityfocus.com/bid/1804
BID:1804
DEBIAN:20001013a
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:72.curl.asc
FREEBSD:FreeBSD-SA-00:72
http://archives.neohapsis.com/archives/bugtraq/2000-10/0331.html
REDHAT:RHBA-2000:092-01
https://exchange.xforce.ibmcloud.com/vulnerabilities/5374
XF:curl-error-bo(5374)
CVE-2000-0974
GnuPG (gpg) 1.0.3 does not properly check all signatures of a file containing multiple documents, which allows an attacker to modify contents of all documents but the first without detection.
2001-01-22
2004-09-02
CVE-2000-0974
http://www.securityfocus.com/bid/1797
BID:1797
http://archives.neohapsis.com/archives/bugtraq/2000-10/0201.html
BUGTRAQ:20001011 GPG 1.0.3 doesn't detect modifications to files with multiple signatures
http://archives.neohapsis.com/archives/bugtraq/2000-10/0361.html
BUGTRAQ:20001025 Immunix OS Security Update for gnupg package
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-038.0.txt
CALDERA:CSSA-2000-038.0
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000334
CONECTIVA:CLSA-2000:334
http://www.debian.org/security/2000/20001111
DEBIAN:20001111 gnupg: incorrect signature verification
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:67.gnupg.asc
FREEBSD:FreeBSD-SA-00:67
MANDRAKE:MDKSA-2000:063-1
http://www.osvdb.org/1608
OSVDB:1608
http://www.redhat.com/support/errata/RHSA-2000-089.html
REDHAT:RHSA-2000:089
https://exchange.xforce.ibmcloud.com/vulnerabilities/5386
XF:gnupg-message-modify(5386)
CVE-2000-0975
Directory traversal vulnerability in apexec.pl in Anaconda Foundation Directory allows remote attackers to read arbitrary files via a .. (dot dot) attack.
2001-01-22
2004-09-02
CVE-2000-0975
http://archives.neohapsis.com/archives/bugtraq/2000-10/0210.html
BUGTRAQ:20001012 Anaconda Advisory
http://www.osvdb.org/435
OSVDB:435
https://exchange.xforce.ibmcloud.com/vulnerabilities/5750
XF:anaconda-apexec-directory-traversal(5750)
CVE-2000-0976
Buffer overflow in xlib in XFree 3.3.x possibly allows local users to execute arbitrary commands via a long DISPLAY environment variable or a -display command line parameter.
2002-06-25
2002-06-15
CVE-2000-0976
http://www.securityfocus.com/bid/1805
BID:1805
http://archives.neohapsis.com/archives/bugtraq/2000-10/0211.html
BUGTRAQ:20001012 another Xlib buffer overflow
ftp://patches.sgi.com/support/free/security/advisories/20020502-01-I
SGI:20020502-01-I
http://www.iss.net/security_center/static/5751.php
XF:xfree-xlib-bo(5751)
CVE-2000-0977
mailfile.cgi CGI program in MailFile 1.10 allows remote attackers to read arbitrary files by specifying the target file name in the "filename" parameter in a POST request, which is then sent by email to the address specified in the "email" parameter.
2001-01-22
2005-11-02
CVE-2000-0977
http://www.securityfocus.com/bid/1807
BID:1807
http://archives.neohapsis.com/archives/bugtraq/2000-10/0172.html
BUGTRAQ:20001011 Mail File POST Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5358
XF:mailfile-post-file-read(5358)
CVE-2000-0978
bbd server in Big Brother System and Network Monitor before 1.5c2 allows remote attackers to execute arbitrary commands via the "&" shell metacharacter.
2001-01-22
2005-11-02
CVE-2000-0978
http://www.securityfocus.com/bid/1779
BID:1779
http://archives.neohapsis.com/archives/bugtraq/2000-10/0162.html
BUGTRAQ:20001010 Big Brother Systems and Network Monitor vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5719
XF:bb4-netmon-execute-commands(5719)
CVE-2000-0979
File and Print Sharing service in Windows 95, Windows 98, and Windows Me does not properly check the password for a file share, which allows remote attackers to bypass share access controls by sending a 1-byte password that matches the first character of the real password, aka the "Share Level Password" vulnerability.
2001-01-22
2004-09-02
CVE-2000-0979
http://www.securityfocus.com/bid/1780
BID:1780
http://marc.info/?l=bugtraq&m=97147777618139&w=2
BUGTRAQ:20001012 NSFOCUS SA2000-05: Microsoft Windows 9x NETBIOS password
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-072
MS:MS00-072
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A996
OVAL:oval:org.mitre.oval:def:996
https://exchange.xforce.ibmcloud.com/vulnerabilities/5395
XF:win9x-share-level-password(5395)
CVE-2000-0980
NMPI (Name Management Protocol on IPX) listener in Microsoft NWLink does not properly filter packets from a broadcast address, which allows remote attackers to cause a broadcast storm and flood the network.
2001-01-22
2005-11-02
CVE-2000-0980
http://www.securityfocus.com/bid/1781
BID:1781
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-073
MS:MS00-073
https://exchange.xforce.ibmcloud.com/vulnerabilities/5357
XF:win-nmpi-packet-dos(5357)
CVE-2000-0981
MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password.
2001-01-22
2005-11-02
CVE-2000-0981
http://archives.neohapsis.com/archives/bugtraq/2000-10/0318.html
BUGTRAQ:20001023 [CORE SDI ADVISORY] MySQL weak authentication
http://www.mysql.com/documentation/mysql/commented/manual.php?section=Security
CONFIRM:http://www.mysql.com/documentation/mysql/commented/manual.php?section=Security
https://exchange.xforce.ibmcloud.com/vulnerabilities/5409
XF:mysql-authentication(5409)
CVE-2000-0982
Internet Explorer before 5.5 forwards cached user credentials for a secure web site to insecure pages on the same web site, which could allow remote attackers to obtain the credentials by monitoring connections to the web server, aka the "Cached Web Credentials" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0982
http://www.securityfocus.com/bid/1793
BID:1793
http://www.acrossecurity.com/aspr/ASPR-2000-07-22-2-PUB.txt
MISC:http://www.acrossecurity.com/aspr/ASPR-2000-07-22-2-PUB.txt
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-076
MS:MS00-076
https://exchange.xforce.ibmcloud.com/vulnerabilities/5367
XF:ie-cache-info(5367)
CVE-2000-0983
Microsoft NetMeeting with Remote Desktop Sharing enabled allows remote attackers to cause a denial of service (CPU utilization) via a sequence of null bytes to the NetMeeting port, aka the "NetMeeting Desktop Sharing" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0983
http://www.securityfocus.com/bid/1798
BID:1798
http://www.securityfocus.com/archive/1/140341
BUGTRAQ:20001018 Denial of Service attack against computers running Microsoft NetMeeting
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-077
MS:MS00-077
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q273854
MSKB:Q273854
https://exchange.xforce.ibmcloud.com/vulnerabilities/5368
XF:netmeeting-desktop-sharing-dos(5368)
CVE-2000-0984
The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (crash and reload) via a URL containing a "?/" string.
2001-01-22
2009-03-01
CVE-2000-0984
http://www.securityfocus.com/bid/1838
BID:1838
BUGTRAQ:20001026 [CORE SDI ADVISORY] Cisco IOS HTTP server DoS
http://www.cisco.com/warp/public/707/ioshttpserverquery-pub.shtml
CISCO:20001025 Cisco IOS HTTP Server Query Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5412
XF:cisco-ios-query-dos(5412)
CVE-2000-0985
Buffer overflow in All-Mail 1.1 allows remote attackers to execute arbitrary commands via a long "MAIL FROM" or "RCPT TO" command.
2000-11-29
2003-03-21
CVE-2000-0985
http://www.atstake.com/research/advisories/2000/a101200-2.txt
ATSTAKE:A101200-2
http://www.securityfocus.com/bid/1789
BID:1789
CVE-2000-0986
Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME environmental variable.
2000-11-29
2017-12-18
CVE-2000-0986
http://archives.neohapsis.com/archives/bugtraq/2000-10/0294.html
BUGTRAQ:20001020 [ Hackerslab bug_paper ] Linux ORACLE 8.1.5 vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5390
XF:oracle-home-bo(5390)
CVE-2000-0987
Buffer overflow in oidldapd in Oracle 8.1.6 allow local users to gain privileges via a long "connect" command line parameter.
2000-11-29
2017-12-18
CVE-2000-0987
http://www.securityfocus.com/archive/1/140340
BUGTRAQ:20001018 vulnerability in Oracle Internet Directory in Oracle 8.1.6
http://www.securityfocus.com/archive/1/140709
BUGTRAQ:20001020 In response to posting 10/18/2000 vulnerability in Oracle Internet Directory in Oracle 8.1.6
https://exchange.xforce.ibmcloud.com/vulnerabilities/5401
XF:oracle-oidldap-bo(5401)
CVE-2000-0988
WinU 1.0 through 5.1 has a backdoor password that allows remote attackers to gain access to its administrative interface and modify configuration.
2000-11-29
2017-12-18
CVE-2000-0988
http://www.securityfocus.com/bid/1801
BID:1801
http://archives.neohapsis.com/archives/bugtraq/2000-10/0238.html
BUGTRAQ:20001013 WinU Backdoor passwords!!!!
http://www.bardon.com/pwdcrack.htm
CONFIRM:http://www.bardon.com/pwdcrack.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/5376
XF:winu-backdoor(5376)
CVE-2000-0989
Buffer overflow in Intel InBusiness eMail Station 1.04.87 POP service allows remote attackers to cause a denial of service and possibly execute commands via a long username.
2001-01-22
2004-09-02
CVE-2000-0989
http://archives.neohapsis.com/archives/bugtraq/2000-10/0293.html
BUGTRAQ:20001020 DoS in Intel corporation 'InBusiness eMail Station'
http://www.osvdb.org/6488
OSVDB:6488
https://exchange.xforce.ibmcloud.com/vulnerabilities/5414
XF:intel-email-username-bo(5414)
CVE-2000-0990
cmd5checkpw 0.21 and earlier allows remote attackers to cause a denial of service via an "SMTP AUTH" command with an unknown username.
2001-01-22
2005-11-02
CVE-2000-0990
http://www.securityfocus.com/bid/1809
BID:1809
http://archives.neohapsis.com/archives/bugtraq/2000-10/0258.html
BUGTRAQ:20001016 Authentication failure in cmd5checkpw 0.21
http://members.elysium.pl/brush/cmd5checkpw/changes.html
CONFIRM:http://members.elysium.pl/brush/cmd5checkpw/changes.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/5382
XF:cmd5checkpw-qmail-bypass-authentication(5382)
CVE-2000-0991
Buffer overflow in Hilgraeve, Inc. HyperTerminal client on Windows 98, ME, and 2000 allows remote attackers to execute arbitrary commands via a long telnet URL, aka the "HyperTerminal Buffer Overflow" vulnerability.
2001-01-22
2005-11-02
CVE-2000-0991
http://www.securityfocus.com/bid/1815
BID:1815
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-079
MS:MS00-079
https://exchange.xforce.ibmcloud.com/vulnerabilities/5387
XF:win-hyperterminal-telnet-bo(5387)
CVE-2000-0992
Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot dot) attack.
2001-01-22
2005-11-02
CVE-2000-0992
http://www.securityfocus.com/bid/1742
BID:1742
http://archives.neohapsis.com/archives/bugtraq/2000-09/0359.html
BUGTRAQ:20000930 scp file transfer hole
BUGTRAQ:20001001 openssh2.2.p1 - Re: scp file transfer hole
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:057
MANDRAKE:MDKSA-2000:057
https://exchange.xforce.ibmcloud.com/vulnerabilities/5312
XF:scp-overwrite-files(5312)
CVE-2000-0993
Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd.
2001-01-22
2005-11-02
CVE-2000-0993
http://www.securityfocus.com/bid/1744
BID:1744
http://marc.info/?l=bugtraq&m=97068555106135&w=2
BUGTRAQ:20001004 Re: OpenBSD Security Advisory
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:58.chpass.asc
FREEBSD:FreeBSD-SA-00:58
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-015.txt.asc
NETBSD:NetBSD-SA2000-015
http://www.openbsd.org/errata27.html#pw_error
OPENBSD:20001003 A format string vulnerability exists in the pw_error(3) function.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5339
XF:bsd-libutil-format(5339)
CVE-2000-0994
Format string vulnerability in OpenBSD fstat program (and possibly other BSD-based operating systems) allows local users to gain root privileges via the PWD environmental variable.
2001-01-22
2005-11-02
CVE-2000-0994
http://www.securityfocus.com/bid/1746
BID:1746
http://marc.info/?l=bugtraq&m=97068555106135&w=2
BUGTRAQ:20001004 Re: OpenBSD Security Advisory
ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
MISC:ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
OPENBSD:20001006 There are printf-style format string bugs in several privileged programs.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5338
XF:bsd-fstat-format(5338)
CVE-2000-0995
Format string vulnerability in OpenBSD yp_passwd program (and possibly other BSD-based operating systems) allows attackers to gain root privileges a malformed name.
2001-01-22
2004-09-02
CVE-2000-0995
ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
MISC:ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
OPENBSD:20001006 There are printf-style format string bugs in several privileged programs.
http://www.osvdb.org/6125
OSVDB:6125
https://exchange.xforce.ibmcloud.com/vulnerabilities/5635
XF:bsd-yp-passwd-format(5635)
CVE-2000-0996
Format string vulnerability in OpenBSD su program (and possibly other BSD-based operating systems) allows local attackers to gain root privileges via a malformed shell.
2001-01-22
2004-09-02
CVE-2000-0996
ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
MISC:ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
OPENBSD:20001006 There are printf-style format string bugs in several privileged programs.
http://www.osvdb.org/6124
OSVDB:6124
https://exchange.xforce.ibmcloud.com/vulnerabilities/5636
XF:bsd-su-format(5636)
CVE-2000-0997
Format string vulnerabilities in eeprom program in OpenBSD, NetBSD, and possibly other operating systems allows local attackers to gain root privileges.
2000-11-29
2017-12-18
CVE-2000-0997
http://www.securityfocus.com/bid/1752
BID:1752
ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
MISC:ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
OPENBSD:20001006 There are printf-style format string bugs in several privileged programs.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5337
XF:bsd-eeprom-format(5337)
CVE-2000-0998
Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function.
2000-11-29
2002-01-28
CVE-2000-0998
http://www.securityfocus.com/bid/1895
BID:1895
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:62.top.v1.1.asc
FREEBSD:FreeBSD-SA-00:62
ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
MISC:ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
OPENBSD:20001006 There are printf-style format string bugs in several privileged programs.
CVE-2000-0999
Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges.
2000-11-29
2003-05-08
CVE-2000-0999
ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
MISC:ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
OPENBSD:20001006 There are printf-style format string bugs in several privileged programs.
CVE-2000-1000
Format string vulnerability in AOL Instant Messenger (AIM) 4.1.2010 allows remote attackers to cause a denial of service and possibly execute arbitrary commands by transferring a file whose name includes format characters.
2001-01-22
2005-11-02
CVE-2000-1000
http://www.securityfocus.com/bid/1747
BID:1747
http://www.securityfocus.com/archive/1/137374
BUGTRAQ:20001003 AOL Instant Messenger DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5314
XF:aim-file-transfer-dos(5314)
CVE-2000-1001
add_2_basket.asp in Element InstantShop allows remote attackers to modify price information via the "price" hidden form variable.
2001-01-22
2004-09-02
CVE-2000-1001
http://marc.info/?l=bugtraq&m=97240616129614&w=2
BUGTRAQ:20001024 Price modification in Element InstantShop
http://www.osvdb.org/6487
OSVDB:6487
https://exchange.xforce.ibmcloud.com/vulnerabilities/5402
XF:instantshop-modify-price(5402)
CVE-2000-1002
POP3 daemon in Stalker CommuniGate Pro 3.3.2 generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to determine valid email addresses on the server for SPAM attacks.
2001-01-22
2005-11-02
CVE-2000-1002
http://www.securityfocus.com/bid/1792
BID:1792
http://www.securityfocus.com/archive/1/139523
BUGTRAQ:20001012 Re: Netscape Messaging server 4.15 poor error strings
https://exchange.xforce.ibmcloud.com/vulnerabilities/5363
XF:communigate-email-verify(5363)
CVE-2000-1003
NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash.
2001-01-22
2005-11-02
CVE-2000-1003
http://www.securityfocus.com/bid/1794
BID:1794
http://www.securityfocus.com/archive/1/139511
BUGTRAQ:20001012 NSFOCUS SA2000-04: Microsoft Win9x client driver type comparing vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5370
XF:win-netbios-driver-type-dos(5370)
CVE-2000-1004
Format string vulnerability in OpenBSD photurisd allows local users to execute arbitrary commands via a configuration file directory name that contains formatting characters.
2001-01-22
2004-09-02
CVE-2000-1004
http://marc.info/?l=bugtraq&m=97068555106135&w=2
BUGTRAQ:20001004 Re: OpenBSD Security Advisory
http://www.osvdb.org/6123
OSVDB:6123
https://exchange.xforce.ibmcloud.com/vulnerabilities/5336
XF:bsd-photurisd-format(5336)
CVE-2000-1005
Directory traversal vulnerability in html_web_store.cgi and web_store.cgi CGI programs in eXtropia WebStore allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page parameter.
2001-01-22
2005-11-02
CVE-2000-1005
http://www.securityfocus.com/bid/1774
BID:1774
http://www.securityfocus.com/archive/1/138495
BUGTRAQ:20001009 Security Advisory : eXtropia WebStore (web_store.cgi) Directory Traversal Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5347
XF:extropia-webstore-fileread(5347)
CVE-2000-1006
Microsoft Exchange Server 5.5 does not properly handle a MIME header with a blank charset specified, which allows remote attackers to cause a denial of service via a charset="" command, aka the "Malformed MIME Header" vulnerability.
2001-01-22
2005-11-02
CVE-2000-1006
http://www.securityfocus.com/bid/1869
BID:1869
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-082
MS:MS00-082
https://exchange.xforce.ibmcloud.com/vulnerabilities/5448
XF:ms-exchange-mime-dos(5448)
CVE-2000-1007
I-gear 3.5.7 and earlier does not properly process log entries in which a URL is longer than 255 characters, which allows an attacker to cause reporting errors.
2001-01-22
2005-11-02
CVE-2000-1007
http://archives.neohapsis.com/archives/ntbugtraq/2000-q4/0048.html
NTBUGTRAQ:20001025 I-gear 3.5.x for Microsoft Proxy logging vulnerability + temporary fix.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5791
XF:igear-invalid-log(5791)
CVE-2000-1008
PalmOS 3.5.2 and earlier uses weak encryption to store the user password, which allows attackers with physical access to the Palm device to decrypt the password and gain access to the device.
2000-11-29
2003-05-08
CVE-2000-1008
http://www.atstake.com/research/advisories/2000/a092600-1.txt
ATSTAKE:A092600-1
http://www.securityfocus.com/bid/1715
BID:1715
CVE-2000-1009
dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.
2000-11-29
2017-12-18
CVE-2000-1009
http://www.securityfocus.com/bid/1871
BID:1871
http://archives.neohapsis.com/archives/bugtraq/2000-10/0438.html
BUGTRAQ:20001030 Redhat 6.2 dump command executes external program with suid priviledge.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5437
XF:linux-dump-execute-code(5437)
CVE-2000-1010
Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters.
2001-01-22
2005-11-02
CVE-2000-1010
http://www.securityfocus.com/bid/1764
BID:1764
http://www.securityfocus.com/archive/1/137890
BUGTRAQ:20001006 talkd [WAS: Re: OpenBSD Security Advisory]
https://exchange.xforce.ibmcloud.com/vulnerabilities/5344
XF:linux-talkd-overwrite-root(5344)
CVE-2000-1011
Buffer overflow in catopen() function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to gain root privileges via a long environmental variable.
2001-01-22
2004-09-02
CVE-2000-1011
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:53.catopen.asc
FREEBSD:FreeBSD-SA-00:53
http://www.osvdb.org/6070
OSVDB:6070
https://exchange.xforce.ibmcloud.com/vulnerabilities/5638
XF:freebsd-catopen-bo(5638)
CVE-2000-1012
The catopen function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable.
2000-11-29
2003-05-08
CVE-2000-1012
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:53.catopen.asc
FREEBSD:FreeBSD-SA-00:53
CVE-2000-1013
The setlocale function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable.
2000-11-29
2003-05-08
CVE-2000-1013
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:53.catopen.asc
FREEBSD:FreeBSD-SA-00:53
CVE-2000-1014
Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText parameter.
2001-01-22
2004-09-02
CVE-2000-1014
http://www.securityfocus.com/bid/1717
BID:1717
http://archives.neohapsis.com/archives/bugtraq/2000-09/0325.html
BUGTRAQ:20000927 Unixware SCOhelp http server format string vulnerability
http://www.osvdb.org/3240
OSVDB:3240
https://exchange.xforce.ibmcloud.com/vulnerabilities/5291
XF:unixware-scohelp-format(5291)
CVE-2000-1015
The default configuration of Slashcode before version 2.0 Alpha has a default administrative password, which allows remote attackers to gain Slashcode privileges and possibly execute arbitrary commands.
2000-11-29
2017-12-18
CVE-2000-1015
http://www.securityfocus.com/bid/1731
BID:1731
http://archives.neohapsis.com/archives/bugtraq/2000-09/0366.html
BUGTRAQ:20000929 Default admin password with Slashcode.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5306
XF:slashcode-default-admin-passwords(5306)
CVE-2000-1016
The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory, which allows remote attackers to read package documentation and obtain system configuration information via an HTTP request for the /doc/packages URL.
2001-01-22
2005-11-02
CVE-2000-1016
http://www.securityfocus.com/bid/1707
BID:1707
http://www.securityfocus.com/archive/1/84360
BUGTRAQ:20000921 httpd.conf in Suse 6.4
https://exchange.xforce.ibmcloud.com/vulnerabilities/5276
XF:suse-installed-packages-exposed(5276)
CVE-2000-1017
Webteachers Webdata allows remote attackers with valid Webdata accounts to read arbitrary files by posting a request to import the file into the WebData database.
2000-11-29
2003-03-21
CVE-2000-1017
http://www.securityfocus.com/bid/1732
BID:1732
http://archives.neohapsis.com/archives/bugtraq/2000-10/0007.html
BUGTRAQ:20001002 DST2K0039: Webteachers Webdata: Importing files lower than web ro ot possible in to database
http://archives.neohapsis.com/archives/bugtraq/2000-10/0032.html
BUGTRAQ:20001003 Update to DST2K0039: Webteachers Webdata: Importing files lower t han web root possible in to database
CVE-2000-1018
shred 1.0 file wiping utility does not properly open a file for overwriting or flush its buffers, which prevents shred from properly replacing the file's data and allows local users to recover the file.
2001-01-22
2005-11-02
CVE-2000-1018
http://www.securityfocus.com/bid/1788
BID:1788
http://marc.info/?l=bugtraq&m=97119799515246&w=2
BUGTRAQ:20001010 Shred 1.0 Bug Report
http://marc.info/?l=bugtraq&m=97131166004145&w=2
BUGTRAQ:20001011 Shred v1.0 Fix
https://exchange.xforce.ibmcloud.com/vulnerabilities/5722
XF:shred-recover-files(5722)
CVE-2000-1019
Search engine in Ultraseek 3.1 and 3.1.10 (aka Inktomi Search) allows remote attackers to cause a denial of service via a malformed URL.
2001-01-22
2005-11-02
CVE-2000-1019
http://www.securityfocus.com/bid/1866
BID:1866
http://marc.info/?l=bugtraq&m=97301487015664&w=2
BUGTRAQ:20001030 Ultraseek 3.1.x Remote DoS Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5439
XF:ultraseek-malformed-url-dos(5439)
CVE-2000-1020
Heap overflow in Worldclient in Mdaemon 3.1.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long URL.
2000-11-29
2017-12-18
CVE-2000-1020
http://www.securityfocus.com/bid/1689
BID:1689
http://marc.info/?l=bugtraq&m=96925269716274&w=2
BUGTRAQ:20000917 VIGILANTE-2000012: Mdaemon Web Services Heap Overflow DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5250
XF:mdaemon-url-dos(5250)
CVE-2000-1021
Heap overflow in WebConfig in Mdaemon 3.1.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long URL.
2000-11-29
2017-12-18
CVE-2000-1021
http://www.securityfocus.com/bid/1689
BID:1689
http://marc.info/?l=bugtraq&m=96925269716274&w=2
BUGTRAQ:20000917 VIGILANTE-2000012: Mdaemon Web Services Heap Overflow DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5250
XF:mdaemon-url-dos(5250)
CVE-2000-1022
The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands.
2001-01-22
2005-11-02
CVE-2000-1022
http://www.securityfocus.com/bid/1698
BID:1698
http://archives.neohapsis.com/archives/bugtraq/2000-09/0222.html
BUGTRAQ:20000919 Cisco PIX Firewall (smtp content filtering hack)
http://archives.neohapsis.com/archives/bugtraq/2000-09/0241.html
BUGTRAQ:20000920 Re: Cisco PIX Firewall (smtp content filtering hack) - Version 4.2(1) not exploitable
http://www.cisco.com/warp/public/707/PIXfirewallSMTPfilter-pub.shtml
CISCO:20001005 Cisco Secure PIX Firewall Mailguard Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5277
XF:cisco-pix-smtp-filtering(5277)
CVE-2000-1023
The Alabanza Control Panel does not require passwords to access administrative commands, which allows remote attackers to modify domain name information via the nsManager.cgi CGI program.
2000-11-29
2017-12-18
CVE-2000-1023
http://www.securityfocus.com/bid/1710
BID:1710
http://www.securityfocus.com/archive/1/84766
BUGTRAQ:20000924 Major Vulnerability in Alabanza Control Panel
https://exchange.xforce.ibmcloud.com/vulnerabilities/5284
XF:alabanza-unauthorized-access(5284)
CVE-2000-1024
eWave ServletExec 3.0C and earlier does not restrict access to the UploadServlet Java/JSP servlet, which allows remote attackers to upload files and execute arbitrary commands.
2001-01-22
2005-11-02
CVE-2000-1024
http://www.securityfocus.com/bid/1876
BID:1876
http://marc.info/?l=bugtraq&m=97306581513537&w=2
BUGTRAQ:20001101 Unify eWave ServletExec upload
https://exchange.xforce.ibmcloud.com/vulnerabilities/5450
XF:ewave-servletexec-file-upload(5450)
CVE-2000-1025
eWave ServletExec JSP/Java servlet engine, versions 3.0C and earlier, allows remote attackers to cause a denial of service via a URL that contains the "/servlet/" string, which invokes the ServletExec servlet and causes an exception if the servlet is already running.
2000-11-29
2017-12-18
CVE-2000-1025
http://www.securityfocus.com/bid/1868
BID:1868
http://marc.info/?l=bugtraq&m=97295224226042&w=2
BUGTRAQ:20001030 Unify eWave ServletExec DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5435
XF:ewave-servletexec-dos(5435)
CVE-2000-1026
Multiple buffer overflows in LBNL tcpdump allow remote attackers to execute arbitrary commands.
2001-01-22
2005-11-02
CVE-2000-1026
http://www.securityfocus.com/bid/1870
BID:1870
DEBIAN:20001120a
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:61.tcpdump.v1.1.asc
FREEBSD:FreeBSD-SA-00:61
http://archives.neohapsis.com/archives/linux/suse/2000-q4/0681.html
SUSE:SuSE-SA:2000:46
https://exchange.xforce.ibmcloud.com/vulnerabilities/5480
XF:tcpdump-afs-packet-overflow(5480)
CVE-2000-1027
Cisco Secure PIX Firewall 5.2(2) allows remote attackers to determine the real IP address of a target FTP server by flooding the server with PASV requests, which includes the real IP address in the response when passive mode is established.
2001-01-22
2004-09-02
CVE-2000-1027
http://www.securityfocus.com/bid/1877
BID:1877
http://marc.info/?l=bugtraq&m=97059440000367&w=2
BUGTRAQ:20001003 Cisco PIX Firewall allow external users to discover internal IPs
http://www.osvdb.org/1623
OSVDB:1623
https://exchange.xforce.ibmcloud.com/vulnerabilities/5646
XF:cisco-pix-reveal-address(5646)
CVE-2000-1028
Buffer overflow in cu program in HP-UX 11.0 may allow local users to gain privileges via a long -l command line argument.
2000-11-29
2017-07-10
CVE-2000-1028
http://www.securityfocus.com/bid/1886
BID:1886
http://www.securityfocus.com/archive/1/142792
BUGTRAQ:20001102 HPUX cu -l option buffer overflow vulnerabilit
https://exchange.xforce.ibmcloud.com/vulnerabilities/5460
XF:hp-cu-bo(5460)
CVE-2000-1029
Buffer overflow in host command allows a remote attacker to execute arbitrary commands via a long response to an AXFR query.
2000-11-29
2017-07-10
CVE-2000-1029
http://www.securityfocus.com/bid/1887
BID:1887
http://www.securityfocus.com/archive/1/141660
BUGTRAQ:20001027 old version of host command vulnearbility
https://exchange.xforce.ibmcloud.com/vulnerabilities/5462
XF:isc-bind-axfr-bo(5462)
CVE-2000-1030
CS&T CorporateTime for the Web returns different error messages for invalid usernames and invalid passwords, which allows remote attackers to determine valid usernames on the server.
2000-11-29
2017-07-10
CVE-2000-1030
http://www.securityfocus.com/bid/1888
BID:1888
http://www.securityfocus.com/archive/1/142672
BUGTRAQ:20001031 Re: Samba 2.0.7 SWAT vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5529
XF:corporatetime-brute-force(5529)
CVE-2000-1031
Buffer overflow in dtterm in HP-UX 11.0 and HP Tru64 UNIX 4.0f through 5.1a allows local users to execute arbitrary code via a long -tn option.
2001-01-22
2005-11-02
CVE-2000-1031
http://www.securityfocus.com/bid/1889
BID:1889
http://www.securityfocus.com/archive/1/75188
BUGTRAQ:20000810 Re: Possible vulnerability in HPUX ( Add vulnerability List )
http://www.securityfocus.com/archive/1/290115
BUGTRAQ:20020902 Happy Labor Day from Snosoft
http://archives.neohapsis.com/archives/fulldisclosure/2002-q3/1203.html
BUGTRAQ:20020919 iDEFENSE OSF1/Tru64 3.x vuln clarification
http://www.kb.cert.org/vuls/id/320067
CERT-VN:VU#320067
http://archives.neohapsis.com/archives/fulldisclosure/2002-q3/1203.html
FULLDISC:20020919 iDEFENSE OSF1/Tru64 3.x vuln clarification
http://archives.neohapsis.com/archives/hp/2000-q4/0034.html
HP:HPSBUX0011-128
http://wwss1pro.compaq.com/support/reference_library/viewdocument.asp?source=SRB0039W.xml&dt=11
HP:SSRT2275
HP:SSRT2280
https://exchange.xforce.ibmcloud.com/vulnerabilities/5461
XF:hp-dtterm(5461)
CVE-2000-1032
The client authentication interface for Check Point Firewall-1 4.0 and earlier generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to identify valid usernames on the firewall.
2001-01-22
2004-09-02
CVE-2000-1032
http://www.securityfocus.com/bid/1890
BID:1890
http://www.securityfocus.com/archive/1/142808
BUGTRAQ:20001101 Re: Samba 2.0.7 SWAT vulnerabilities
http://www.osvdb.org/1632
OSVDB:1632
https://exchange.xforce.ibmcloud.com/vulnerabilities/5816
XF:fw1-login-response(5816)
CVE-2000-1033
Serv-U FTP Server allows remote attackers to bypass its anti-hammering feature by first logging on as a valid user (possibly anonymous) and then attempting to guess the passwords of other users.
2000-11-29
2017-12-18
CVE-2000-1033
http://www.securityfocus.com/bid/1860
BID:1860
http://www.securityfocus.com/archive/1/141905
BUGTRAQ:20001029 Brute Forcing FTP Servers with enabled anti-hammering (anti brute-force) modus
https://exchange.xforce.ibmcloud.com/vulnerabilities/5436
XF:ftp-servu-brute-force(5436)
CVE-2000-1034
Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a long LogFileName parameter in HTML source code, aka the "ActiveX Parameter Validation" vulnerability.
2001-01-22
2005-11-02
CVE-2000-1034
http://www.securityfocus.com/bid/1899
BID:1899
http://marc.info/?l=bugtraq&m=97349782305448&w=2
BUGTRAQ:20001106 System Monitor ActiveX Buffer Overflow Vulnerability
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-085
MS:MS00-085
https://exchange.xforce.ibmcloud.com/vulnerabilities/5467
XF:system-monitor-activex-bo(5467)
CVE-2000-1035
Buffer overflows in TYPSoft FTP Server 0.78 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long USER, PASS, or CWD command.
2000-11-29
2016-10-17
CVE-2000-1035
http://www.securityfocus.com/bid/1690
BID:1690
http://marc.info/?l=bugtraq&m=96879389027478&w=2
BUGTRAQ:20000912 TYPSoft FTP Server remote DoS Problem
http://www.synnergy.net/Archives/Advisories/dethy/typsoft-ftpd.txt
MISC:http://www.synnergy.net/Archives/Advisories/dethy/typsoft-ftpd.txt
CVE-2000-1036
Directory traversal vulnerability in Extent RBS ISP web server allows remote attackers to read sensitive information via a .. (dot dot) attack on the Image parameter.
2001-01-22
2005-11-02
CVE-2000-1036
http://www.securityfocus.com/bid/1704
BID:1704
http://archives.neohapsis.com/archives/bugtraq/2000-09/0252.html
BUGTRAQ:20000920 Extent RBS directory Transversal.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5275
XF:rbs-isp-directory-traversal(5275)
CVE-2000-1037
Check Point Firewall-1 session agent 3.0 through 4.1 generates different error messages for invalid user names versus invalid passwords, which allows remote attackers to determine valid usernames and guess a password via a brute force attack.
2000-11-29
2003-03-21
CVE-2000-1037
http://www.securityfocus.com/bid/1662
BID:1662
http://www.securityfocus.com/archive/1/76389
BUGTRAQ:20000815 Firewall-1 session agent 3.0 -> 4.1, dictionnary and brute force attack
CVE-2000-1038
The web administration interface for IBM AS/400 Firewall allows remote attackers to cause a denial of service via an empty GET request.
2001-01-22
2005-11-02
CVE-2000-1038
http://www-1.ibm.com/support/search.wss?rs=0&q=SA90544&apar=only
AIXAPAR:SA90544
http://as400service.rochester.ibm.com/n_dir/nas4apar.NSF/5ec6cdc6ab42894a862568f90073c74a/9ce636030a58807186256955003d128d?OpenDocument
CONFIRM:http://as400service.rochester.ibm.com/n_dir/nas4apar.NSF/5ec6cdc6ab42894a862568f90073c74a/9ce636030a58807186256955003d128d?OpenDocument
https://exchange.xforce.ibmcloud.com/vulnerabilities/5266
XF:as400-firewall-dos(5266)
CVE-2000-1039
Various TCP/IP stacks and network applications allow remote attackers to cause a denial of service by flooding a target host with TCP connection attempts and completing the TCP/IP handshake without maintaining the connection state on the attacker host, aka the "NAPTHA" class of vulnerabilities. NOTE: this candidate may change significantly as the security community discusses the technical nature of NAPTHA and learns more about the affected applications. This candidate is at a higher level of abstraction than is typical for CVE.
2000-12-19
2018-10-12
CVE-2000-1039
http://www.securityfocus.com/bid/2022
BID:2022
http://razor.bindview.com/publish/advisories/adv_NAPTHA.html
BINDVIEW:20001130 The NAPTHA DoS vulnerabilities
http://www.cert.org/advisories/CA-2000-21.html
CERT:CA-2000-21
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-091
MS:MS00-091
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0105.html
WIN2KSEC:20001204 NAPTHA Advisory Updated - BindView RAZOR
CVE-2000-1040
Format string vulnerability in logging function of ypbind 3.3, while running in debug mode, leaks file descriptors and allows an attacker to cause a denial of service.
2001-01-22
2004-09-02
CVE-2000-1040
http://www.securityfocus.com/bid/1820
BID:1820
http://archives.neohapsis.com/archives/bugtraq/2000-10/0356.html
BUGTRAQ:20001025 Immunix OS Security Update for ypbind package
http://archives.neohapsis.com/archives/bugtraq/2000-10/0429.html
BUGTRAQ:20001030 Trustix Security Advisory - ping gnupg ypbind
http://www.calderasystems.com/support/security/advisories/CSSA-2000-039.0.txt
CALDERA:CSSA-2000-039.0
http://www.debian.org/security/2000/20001014
DEBIAN:20001014 nis: local exploit
http://www.linux-mandrake.com/en/security/MDKSA-2000-064.php3?dis=7.1
MANDRAKE:MDKSA-2000:064
http://www.redhat.com/support/errata/RHSA-2000-086.html
REDHAT:RHSA-2000:086
http://archives.neohapsis.com/archives/linux/suse/2000-q4/0262.html
SUSE:SuSE-SA:2000:042
https://exchange.xforce.ibmcloud.com/vulnerabilities/5394
XF:ypbind-printf-format-string(5394)
CVE-2000-1041
Buffer overflow in ypbind 3.3 possibly allows an attacker to gain root privileges.
2001-01-22
2005-11-02
CVE-2000-1041
http://www.calderasystems.com/support/security/advisories/CSSA-2000-039.0.txt
CALDERA:CSSA-2000-039.0
http://www.linux-mandrake.com/en/security/MDKSA-2000-064.php3?dis=7.1
MANDRAKE:MDKSA-2000:064
http://archives.neohapsis.com/archives/linux/suse/2000-q4/0262.html
SUSE:SuSE-SA:2000:042
https://exchange.xforce.ibmcloud.com/vulnerabilities/5759
XF:ypbind-remote-bo(5759)
CVE-2000-1042
Buffer overflow in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.
2001-01-22
2005-11-02
CVE-2000-1042
http://www.linux-mandrake.com/en/security/MDKSA-2000-064.php3?dis=7.1
MANDRAKE:MDKSA-2000:064
https://exchange.xforce.ibmcloud.com/vulnerabilities/5730
XF:linux-ypserv-bo(5730)
CVE-2000-1043
Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.
2001-01-22
2005-11-02
CVE-2000-1043
http://www.linux-mandrake.com/en/security/MDKSA-2000-064.php3?dis=7.1
MANDRAKE:MDKSA-2000:064
https://exchange.xforce.ibmcloud.com/vulnerabilities/5731
XF:linux-ypserv-format-string(5731)
CVE-2000-1044
Format string vulnerability in ypbind-mt in SuSE SuSE-6.2, and possibly other Linux operating systems, allows an attacker to gain root privileges.
2001-01-22
2005-11-02
CVE-2000-1044
http://www.securityfocus.com/bid/1820
BID:1820
http://archives.neohapsis.com/archives/linux/suse/2000-q4/0262.html
SUSE:SuSE-SA:2000:042
https://exchange.xforce.ibmcloud.com/vulnerabilities/5394
XF:ypbind-printf-format-string(5394)
CVE-2000-1045
nss_ldap earlier than 121, when run with nscd (name service caching daemon), allows remote attackers to cause a denial of service via a flood of LDAP requests.
2001-01-22
2005-11-02
CVE-2000-1045
http://www.securityfocus.com/bid/1863
BID:1863
http://www.linux-mandrake.com/en/security/MDKSA-2000-066-1.php3
MANDRAKE:MDKSA-2000-066
http://www.redhat.com/support/errata/RHSA-2000-024.html
REDHAT:RHSA-2000:024
https://exchange.xforce.ibmcloud.com/vulnerabilities/5449
XF:nssldap-nscd-dos(5449)
CVE-2000-1046
Multiple buffer overflows in the ESMTP service of Lotus Domino 5.0.2c and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via long (1) "RCPT TO," (2) "SAML FROM," or (3) "SOML FROM" commands.
2000-11-29
2004-07-22
CVE-2000-1046
http://archives.neohapsis.com/archives/bugtraq/2000-09/0093.html
BUGTRAQ:20000911 Advisory Code: VIGILANTE-2000011 Lotus Domino ESMTP Service Buffer overflow
CVE-2000-1047
Buffer overflow in SMTP service of Lotus Domino 5.0.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long ENVID keyword in the "MAIL FROM" command.
2001-09-18
2004-09-02
CVE-2000-1047
http://www.securityfocus.com/bid/1905
BID:1905
http://www.securityfocus.com/archive/1/143071
BUGTRAQ:20001103 [SAFER] Buffer overflow in Lotus Domino SMTP Server
http://www.osvdb.org/442
OSVDB:442
https://exchange.xforce.ibmcloud.com/vulnerabilities/5488
XF:lotus-domino-smtp-envid(5488)
CVE-2000-1048
Directory traversal vulnerability in the logfile service of Wingate 4.1 Beta A and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack via an HTTP GET request that uses encoded characters in the URL.
2000-11-29
2017-12-18
CVE-2000-1048
http://archives.neohapsis.com/archives/bugtraq/2000-10/0245.html
BUGTRAQ:20001016 Wingate 4.1 Beta A vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5373
XF:wingate-view-files(5373)
CVE-2000-1049
Allaire JRun 3.0 http servlet server allows remote attackers to cause a denial of service via a URL that contains a long string of "." characters.
2001-01-22
2005-11-02
CVE-2000-1049
http://www.allaire.com/handlers/index.cfm?ID=18085&Method=Full
ALLAIRE:ASB00-030
http://marc.info/?l=bugtraq&m=97310314724964&w=2
BUGTRAQ:20001101 Allaire's JRUN DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5452
XF:allaire-jrun-servlet-dos(5452)
CVE-2000-1050
Allaire JRun 3.0 http servlet server allows remote attackers to directly access the WEB-INF directory via a URL request that contains an extra "/" in the beginning of the request (aka the "extra leading slash").
2001-01-22
2004-09-02
CVE-2000-1050
http://www.allaire.com/handlers/index.cfm?ID=17966&Method=Full
ALLAIRE:ASB00-027
http://marc.info/?l=bugtraq&m=97236316510117&w=2
BUGTRAQ:20001023 Allaire's JRUN Unauthenticated Access to WEB-INF directory
http://www.osvdb.org/500
OSVDB:500
https://exchange.xforce.ibmcloud.com/vulnerabilities/5407
XF:allaire-jrun-webinf-access(5407)
CVE-2000-1051
Directory traversal vulnerability in Allaire JRun 2.3 server allows remote attackers to read arbitrary files via the SSIFilter servlet.
2001-01-22
2005-11-02
CVE-2000-1051
http://www.allaire.com/handlers/index.cfm?ID=17968&Method=Full
ALLAIRE:ASB00-028
http://marc.info/?l=bugtraq&m=97236692714978&w=2
BUGTRAQ:20001023 Allaire JRUN 2.3 Arbitrary File Retrieval
https://exchange.xforce.ibmcloud.com/vulnerabilities/5405
XF:allaire-jrun-ssifilter-url(5405)
CVE-2000-1052
Allaire JRun 2.3 server allows remote attackers to obtain source code for executable content by directly calling the SSIFilter servlet.
2000-11-29
2016-10-17
CVE-2000-1052
http://marc.info/?l=bugtraq&m=97236692714978&w=2
BUGTRAQ:20001023 Allaire JRUN 2.3 Arbitrary File Retrieval
CVE-2000-1053
Allaire JRun 2.3.3 server allows remote attackers to compile and execute JSP code by inserting it via a cross-site scripting (CSS) attack and directly calling the com.livesoftware.jrun.plugins.JSP JSP servlet.
2000-11-29
2017-12-18
CVE-2000-1053
http://www.allaire.com/handlers/index.cfm?ID=17969&Method=Full
ALLAIRE:ASB00-029
http://marc.info/?l=bugtraq&m=97236125107957&w=2
BUGTRAQ:20001023 Allaire JRUN 2.3 Remote command execution
https://exchange.xforce.ibmcloud.com/vulnerabilities/5406
XF:allaire-jrun-jsp-execute(5406)
CVE-2000-1054
Buffer overflow in CSAdmin module in CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a large packet.
2001-01-22
2007-02-20
CVE-2000-1054
http://www.securityfocus.com/bid/1705
BID:1705
http://www.cisco.com/warp/public/707/csecureacsnt-pub.shtml
CISCO:20000921 Multiple Vulnerabilities in CiscoSecure ACS for Windows NT Server
https://exchange.xforce.ibmcloud.com/vulnerabilities/5272
XF:ciscosecure-csadmin-bo(5272)
CVE-2000-1055
Buffer overflow in CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a large TACACS+ packet.
2001-01-22
2004-09-02
CVE-2000-1055
http://www.securityfocus.com/bid/1706
BID:1706
http://www.cisco.com/warp/public/707/csecureacsnt-pub.shtml
CISCO:20000921 Multiple Vulnerabilities in CiscoSecure ACS for Windows NT Server
http://www.osvdb.org/1569
OSVDB:1569
https://exchange.xforce.ibmcloud.com/vulnerabilities/5273
XF:ciscosecure-tacacs-dos(5273)
CVE-2000-1056
CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to bypass LDAP authentication on the server if the LDAP server allows null passwords.
2001-01-22
2005-11-02
CVE-2000-1056
http://www.securityfocus.com/bid/1708
BID:1708
http://www.cisco.com/warp/public/707/csecureacsnt-pub.shtml
CISCO:20000921 Multiple Vulnerabilities in CiscoSecure ACS for Windows NT Server
https://exchange.xforce.ibmcloud.com/vulnerabilities/5274
XF:ciscosecure-ldap-bypass-authentication(5274)
CVE-2000-1057
Vulnerabilities in database configuration scripts in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows local users to gain privileges, possibly via insecure permissions.
2001-01-22
2005-11-02
CVE-2000-1057
http://www.securityfocus.com/bid/1682
BID:1682
http://archives.neohapsis.com/archives/bugtraq/2000-09/0140.html
HP:HPSBUX0009-120
https://exchange.xforce.ibmcloud.com/vulnerabilities/5229
XF:hp-openview-nnm-scripts(5229)
CVE-2000-1058
Buffer overflow in OverView5 CGI program in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, in the SNMP service (snmp.exe), aka the "Java SNMP MIB Browser Object ID parsing problem."
2001-01-22
2005-11-02
CVE-2000-1058
http://marc.info/?l=bugtraq&m=97004856403173&w=2
BUGTRAQ:20000926 DST2K0014: BufferOverrun in HP Openview Network Node Manager v6.1 (Round2)
http://archives.neohapsis.com/archives/bugtraq/2000-09/0274.html
HP:HPSBUX0009-121
https://exchange.xforce.ibmcloud.com/vulnerabilities/5282
XF:openview-nmm-snmp-bo(5282)
CVE-2000-1059
The default configuration of the Xsession file in Mandrake Linux 7.1 and 7.0 bypasses the Xauthority access control mechanism with an "xhost + localhost" command, which allows local users to sniff X Windows events and gain privileges.
2001-01-22
2005-11-02
CVE-2000-1059
http://www.securityfocus.com/bid/1735
BID:1735
http://www.securityfocus.com/archive/1/136495
BUGTRAQ:20000929 Mandrake 7.1 bypasses Xauthority X session security.
http://www.linux-mandrake.com/en/security/MDKSA-2000-052.php3
MANDRAKE:MDKSA-2000:052
https://exchange.xforce.ibmcloud.com/vulnerabilities/5305
XF:xinitrc-bypass-xauthority(5305)
CVE-2000-1060
The default configuration of XFCE 3.5.1 bypasses the Xauthority access control mechanism with an "xhost + localhost" command in the xinitrc program, which allows local users to sniff X Windows traffic and gain privileges.
2001-01-22
2005-11-02
CVE-2000-1060
http://www.securityfocus.com/bid/1736
BID:1736
http://archives.neohapsis.com/archives/bugtraq/2000-10/0022.html
BUGTRAQ:20001002 Local vulnerability in XFCE 3.5.1
FREEBSD:FreeBSD-SA-00:65
https://exchange.xforce.ibmcloud.com/vulnerabilities/5305
XF:xinitrc-bypass-xauthority(5305)
CVE-2000-1061
Microsoft Virtual Machine (VM) in Internet Explorer 4.x and 5.x allows an unsigned applet to create and use ActiveX controls, which allows a remote attacker to bypass Internet Explorer's security settings and execute arbitrary commands via a malicious web page or email, aka the "Microsoft VM ActiveX Component" vulnerability.
2001-01-22
2005-11-02
CVE-2000-1061
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-075
MS:MS00-075
https://exchange.xforce.ibmcloud.com/vulnerabilities/5127
XF:java-vm-applet(5127)
CVE-2000-1062
Buffer overflow in the FTP service in HP JetDirect printer card Firmware x.08.20 and earlier allows remote attackers to cause a denial of service.
2000-11-29
2017-12-18
CVE-2000-1062
http://www.securityfocus.com/bid/1775
BID:1775
http://marc.info/?l=bugtraq&m=97119729613778&w=2
BUGTRAQ:20001010 VIGILANTE-2000014: HP Jetdirect multiple DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5353
XF:hp-jetdirect-firmware-dos(5353)
CVE-2000-1063
Buffer overflow in the Telnet service in HP JetDirect printer card Firmware x.08.20 and earlier allows remote attackers to cause a denial of service.
2000-11-29
2017-12-18
CVE-2000-1063
http://www.securityfocus.com/bid/1775
BID:1775
http://marc.info/?l=bugtraq&m=97119729613778&w=2
BUGTRAQ:20001010 VIGILANTE-2000014: HP Jetdirect multiple DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5353
XF:hp-jetdirect-firmware-dos(5353)
CVE-2000-1064
Buffer overflow in the LPD service in HP JetDirect printer card Firmware x.08.20 and earlier allows remote attackers to cause a denial of service.
2000-11-29
2017-12-18
CVE-2000-1064
http://www.securityfocus.com/bid/1775
BID:1775
http://marc.info/?l=bugtraq&m=97119729613778&w=2
BUGTRAQ:20001010 VIGILANTE-2000014: HP Jetdirect multiple DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5353
XF:hp-jetdirect-firmware-dos(5353)
CVE-2000-1065
Vulnerability in IP implementation of HP JetDirect printer card Firmware x.08.20 and earlier allows remote attackers to cause a denial of service (printer crash) via a malformed packet.
2000-11-29
2017-12-18
CVE-2000-1065
http://www.securityfocus.com/bid/1775
BID:1775
http://marc.info/?l=bugtraq&m=97119729613778&w=2
BUGTRAQ:20001010 VIGILANTE-2000014: HP Jetdirect multiple DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5354
XF:hp-jetdirect-ip-implementation(5354)
CVE-2000-1066
The getnameinfo function in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows a remote attacker to cause a denial of service via a long DNS hostname.
2000-11-29
2017-07-10
CVE-2000-1066
http://www.securityfocus.com/bid/1894
BID:1894
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:63.getnameinfo.asc
FREEBSD:FreeBSD-SA-00:63
https://exchange.xforce.ibmcloud.com/vulnerabilities/5454
XF:getnameinfo-dos(5454)
CVE-2000-1068
pollit.cgi in Poll It 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the poll_options parameter.
2001-01-22
2005-11-02
CVE-2000-1068
http://marc.info/?l=bugtraq&m=97236719315352&w=2
BUGTRAQ:20001023 Re: Poll It v2.0 cgi (again)
http://www.cgi-world.com/pollit.html
CONFIRM:http://www.cgi-world.com/pollit.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/5792
XF:pollit-polloptions-execute-commands(5792)
CVE-2000-1069
pollit.cgi in Poll It 2.01 and earlier allows remote attackers to access administrative functions without knowing the real password by specifying the same value to the entered_password and admin_password parameters.
2001-01-22
2005-11-02
CVE-2000-1069
http://marc.info/?l=bugtraq&m=97236719315352&w=2
BUGTRAQ:20001023 Re: Poll It v2.0 cgi (again)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5419
XF:pollit-admin-password-var(5419)
CVE-2000-1070
pollit.cgi in Poll It 2.01 and earlier uses data files that are located under the web document root, which allows remote attackers to access sensitive or private information.
2001-01-22
2005-11-02
CVE-2000-1070
http://marc.info/?l=bugtraq&m=97236719315352&w=2
BUGTRAQ:20001023 Re: Poll It v2.0 cgi (again)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5794
XF:pollit-webroot-gain-access(5794)
CVE-2000-1071
The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote attackers to monitor X Windows events and gain privileges.
2001-01-22
2004-09-02
CVE-2000-1071
http://www.atstake.com/research/advisories/2000/a100900-1.txt
ATSTAKE:A100900-1
http://www.securityfocus.com/bid/1767
BID:1767
http://www.osvdb.org/7213
OSVDB:7213
https://exchange.xforce.ibmcloud.com/vulnerabilities/5752
XF:ical-xhost-gain-privileges(5752)
CVE-2000-1072
iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse.
2001-01-22
2004-09-02
CVE-2000-1072
http://www.atstake.com/research/advisories/2000/a100900-1.txt
ATSTAKE:A100900-1
http://www.securityfocus.com/bid/1768
BID:1768
http://www.osvdb.org/7212
OSVDB:7212
https://exchange.xforce.ibmcloud.com/vulnerabilities/5756
XF:ical-iplncal-gain-access(5756)
CVE-2000-1073
csstart program in iCal 2.1 Patch 2 searches for the cshttpd program in the current working directory, which allows local users to gain root privileges by creating a Trojan Horse cshttpd program in a directory and calling csstart from that directory.
2001-01-22
2004-09-02
CVE-2000-1073
http://www.atstake.com/research/advisories/2000/a100900-1.txt
ATSTAKE:A100900-1
http://www.securityfocus.com/bid/1769
BID:1769
http://www.osvdb.org/7210
OSVDB:7210
https://exchange.xforce.ibmcloud.com/vulnerabilities/5757
XF:ical-csstart-gain-access(5757)
CVE-2000-1074
csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory.
2001-01-22
2004-09-02
CVE-2000-1074
http://www.atstake.com/research/advisories/2000/a100900-1.txt
ATSTAKE:A100900-1
http://www.securityfocus.com/bid/1769
BID:1769
http://www.osvdb.org/7209
OSVDB:7209
https://exchange.xforce.ibmcloud.com/vulnerabilities/5757
XF:ical-csstart-gain-access(5757)
CVE-2000-1075
Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services.
2001-05-07
2004-09-02
CVE-2000-1075
http://www.securityfocus.com/bid/1839
BID:1839
http://archives.neohapsis.com/archives/bugtraq/2000-10/0383.html
BUGTRAQ:20001026 [CORE SDI ADVISORY] iPlanet Certificate Management System 4.2 path traversal bug
http://www.iplanet.com/downloads/patches/0122.html
CONFIRM:http://www.iplanet.com/downloads/patches/0122.html
http://www.osvdb.org/4086
OSVDB:4086
http://www.osvdb.org/486
OSVDB:486
https://exchange.xforce.ibmcloud.com/vulnerabilities/5421
XF:iplanet-netscape-directory-traversal(5421)
CVE-2000-1076
Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.
2000-11-29
2017-12-18
CVE-2000-1076
http://archives.neohapsis.com/archives/bugtraq/2000-10/0383.html
BUGTRAQ:20001026 [CORE SDI ADVISORY] iPlanet Certificate Management System 4.2 path traversal bug
https://exchange.xforce.ibmcloud.com/vulnerabilities/5422
XF:iplanet-netscape-plaintext-password(5422)
CVE-2000-1077
Buffer overflow in the SHTML logging functionality of iPlanet Web Server 4.x allows remote attackers to execute arbitrary commands via a long filename with a .shtml extension.
2001-01-22
2005-11-02
CVE-2000-1077
http://www.securityfocus.com/archive/1/141435
BUGTRAQ:20001026 Buffer overflow in iPlanet Web Server 4 server side SHTML parsing module
https://exchange.xforce.ibmcloud.com/vulnerabilities/5446
XF:iplanet-web-server-shtml-bo(5446)
CVE-2000-1078
ICQ Web Front HTTPd allows remote attackers to cause a denial of service by requesting a URL that contains a "?" character.
2000-11-29
2017-12-18
CVE-2000-1078
http://www.securityfocus.com/archive/1/138332
BUGTRAQ:20001007 ICQ WebFront HTTPd DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5332
XF:icq-webfront-url-dos(5332)
CVE-2000-1079
Interactions between the CIFS Browser Protocol and NetBIOS as implemented in Microsoft Windows 95, 98, NT, and 2000 allow remote attackers to modify dynamic NetBIOS name cache entries via a spoofed Browse Frame Request in a unicast or UDP broadcast datagram.
2000-11-29
2017-12-18
CVE-2000-1079
http://www.securityfocus.com/bid/1620
BID:1620
http://www.nai.com/research/covert/advisories/045.asp
NAI:20000829 Windows NetBIOS Unsolicited Cache Corruption
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0116.html
NTBUGTRAQ:20000829 Re: [COVERT-2000-10] Windows NetBIOS Unsolicited Cache Corruption
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1079
OVAL:oval:org.mitre.oval:def:1079
https://exchange.xforce.ibmcloud.com/vulnerabilities/5168
XF:win-netbios-corrupt-cache(5168)
CVE-2000-1080
Quake 1 (quake1) and ProQuake 1.01 and earlier allow remote attackers to cause a denial of service via a malformed (empty) UDP packet.
2001-01-22
2005-11-02
CVE-2000-1080
http://www.securityfocus.com/bid/1900
BID:1900
http://marc.info/?l=bugtraq&m=97318797630246&w=2
BUGTRAQ:20001102 dos on quake1 servers
http://proquake.ai.mit.edu/
CONFIRM:http://proquake.ai.mit.edu/
https://exchange.xforce.ibmcloud.com/vulnerabilities/5527
XF:quake-empty-udp-dos(5527)
CVE-2000-1081
The xp_displayparamstmt function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
2000-12-19
2018-10-12
CVE-2000-1081
http://marc.info/?l=bugtraq&m=97570878710037&w=2
ATSTAKE:20001201 Microsoft SQL Server extended stored procedure vulnerability
http://www.securityfocus.com/bid/2030
BID:2030
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-092
MS:MS00-092
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A231
OVAL:oval:org.mitre.oval:def:231
CVE-2000-1082
The xp_enumresultset function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
2000-12-19
2018-10-12
CVE-2000-1082
http://marc.info/?l=bugtraq&m=97570878710037&w=2
ATSTAKE:20001201 Microsoft SQL Server extended stored procedure vulnerability
http://www.securityfocus.com/bid/2031
BID:2031
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-092
MS:MS00-092
CVE-2000-1083
The xp_showcolv function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
2000-12-19
2018-10-12
CVE-2000-1083
http://marc.info/?l=bugtraq&m=97570878710037&w=2
ATSTAKE:20001201 Microsoft SQL Server extended stored procedure vulnerability
http://www.securityfocus.com/bid/2038
BID:2038
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-092
MS:MS00-092
CVE-2000-1084
The xp_updatecolvbm function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
2000-12-19
2018-10-12
CVE-2000-1084
http://marc.info/?l=bugtraq&m=97570878710037&w=2
ATSTAKE:20001201 Microsoft SQL Server extended stored procedure vulnerability
http://www.securityfocus.com/bid/2039
BID:2039
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-092
MS:MS00-092
CVE-2000-1085
The xp_peekqueue function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
2000-12-19
2018-10-12
CVE-2000-1085
http://marc.info/?l=bugtraq&m=97570884410184&w=2
ATSTAKE:20001201 SQL Server 2000 Extended Stored Procedure Vulnerability
http://www.securityfocus.com/bid/2040
BID:2040
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-092
MS:MS00-092
CVE-2000-1086
The xp_printstatements function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
2000-12-19
2018-10-12
CVE-2000-1086
http://marc.info/?l=bugtraq&m=97570884410184&w=2
ATSTAKE:20001201 SQL Server 2000 Extended Stored Procedure Vulnerability
http://www.securityfocus.com/bid/2041
BID:2041
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-092
MS:MS00-092
CVE-2000-1087
The xp_proxiedmetadata function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
2000-12-19
2018-10-12
CVE-2000-1087
http://marc.info/?l=bugtraq&m=97570884410184&w=2
ATSTAKE:20001201 SQL Server 2000 Extended Stored Procedure Vulnerability
http://www.securityfocus.com/bid/2042
BID:2042
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-092
MS:MS00-092
CVE-2000-1088
The xp_SetSQLSecurity function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
2000-12-19
2018-10-12
CVE-2000-1088
http://marc.info/?l=bugtraq&m=97570884410184&w=2
ATSTAKE:20001201 SQL Server 2000 Extended Stored Procedure Vulnerability
http://www.securityfocus.com/bid/2043
BID:2043
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-092
MS:MS00-092
CVE-2000-1089
Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands, aka the "Phone Book Service Buffer Overflow" vulnerability.
2001-01-22
2005-11-02
CVE-2000-1089
http://www.stake.com/research/advisories/2000/a120400-1.txt
ATSTAKE:A120400-1
http://www.securityfocus.com/bid/2048
BID:2048
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-094
MS:MS00-094
https://exchange.xforce.ibmcloud.com/vulnerabilities/5623
XF:phone-book-service-bo(5623)
CVE-2000-1090
Microsoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source code for parsed pages via a malformed URL that uses the lead-byte of a double-byte character.
2001-02-02
2017-12-18
CVE-2000-1090
http://www.securityfocus.com/bid/2100
BID:2100
http://www.nsfocus.com/english/homepage/sa_08.htm
MISC:http://www.nsfocus.com/english/homepage/sa_08.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/5729
XF:microsoft-iis-file-disclosure(5729)
CVE-2000-1092
loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" parameter.
2000-12-19
2017-12-18
CVE-2000-1092
http://www.securityfocus.com/bid/2109
BID:2109
http://marc.info/?l=bugtraq&m=97676270729984&w=2
BUGTRAQ:20001213 NSFOCUS SA2000-09 : AHG EZshopper Loadpage.cgi File List
https://exchange.xforce.ibmcloud.com/vulnerabilities/5740
XF:ezshopper-cgi-file-disclosure(5740)
CVE-2000-1093
Buffer overflow in AOL Instant Messenger before 4.3.2229 allows remote attackers to execute arbitrary commands via a long "goim" command.
2000-12-19
2017-07-10
CVE-2000-1093
http://www.atstake.com/research/advisories/2000/a121200-1.txt
ATSTAKE:A121200-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/5732
XF:aim-remote-bo(5732)
CVE-2000-1094
Buffer overflow in AOL Instant Messenger (AIM) before 4.3.2229 allows remote attackers to execute arbitrary commands via a "buddyicon" command with a long "src" argument.
2001-01-22
2004-09-02
CVE-2000-1094
http://www.atstake.com/research/advisories/2000/a121200-1.txt
ATSTAKE:A121200-1
http://marc.info/?l=bugtraq&m=97668265628917&w=2
BUGTRAQ:20001213 Administrivia & AOL IM Advisory
http://marc.info/?l=bugtraq&m=97683774417132&w=2
BUGTRAQ:20001214 Re: AIM & @stake's advisory
http://www.osvdb.org/1692
OSVDB:1692
XF:aolim-buddyicon-bo
CVE-2000-1095
modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.
2001-01-22
2004-09-02
CVE-2000-1095
http://www.securityfocus.com/bid/1936
BID:1936
http://archives.neohapsis.com/archives/bugtraq/2000-11/0179.html
BUGTRAQ:20001112 RedHat 7.0 (and SuSE): modutils + netkit = root compromise. (fwd)
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000340
CONECTIVA:CLSA-2000:340
http://www.debian.org/security/2000/20001120
DEBIAN:20001120 modutils: local exploit
http://www.linux-mandrake.com/en/security/MDKSA-2000-071-1.php3?dis=7.1
MANDRAKE:MDKSA-2000:071
http://www.redhat.com/support/errata/RHSA-2000-108.html
REDHAT:RHSA-2000:108
http://archives.neohapsis.com/archives/linux/suse/2000-q4/0596.html
SUSE:SuSE-SA:2000:44
https://exchange.xforce.ibmcloud.com/vulnerabilities/5516
XF:linux-modprobe-execute-code(5516)
CVE-2000-1096
crontab by Paul Vixie uses predictable file names for a temporary file and does not properly ensure that the file is owned by the user executing the crontab -e command, which allows local users with write access to the crontab spool directory to execute arbitrary commands by creating world-writeable temporary files and modifying them while the victim is editing the file.
2001-01-22
2005-11-02
CVE-2000-1096
http://www.securityfocus.com/bid/1960
BID:1960
http://archives.neohapsis.com/archives/bugtraq/2000-11/0237.html
BUGTRAQ:20001116 vixie cron...
DEBIAN:20001118a
https://exchange.xforce.ibmcloud.com/vulnerabilities/5543
XF:vixie-cron-execute-commands(5543)
CVE-2000-1097
The web server for the SonicWALL SOHO firewall allows remote attackers to cause a denial of service via a long username in the authentication page.
2001-01-22
2004-09-02
CVE-2000-1097
http://www.securityfocus.com/bid/2013
BID:2013
http://archives.neohapsis.com/archives/bugtraq/2000-11/0406.html
BUGTRAQ:20001129 DoS in Sonicwall SOHO firewall
http://archives.neohapsis.com/archives/bugtraq/2000-11/0435.html
BUGTRAQ:20001201 FW: SonicWALL SOHO Vulnerability (fwd)
http://www.osvdb.org/1667
OSVDB:1667
https://exchange.xforce.ibmcloud.com/vulnerabilities/5596
XF:sonicwall-soho-dos(5596)
CVE-2000-1098
The web server for the SonicWALL SOHO firewall allows remote attackers to cause a denial of service via an empty GET or POST request.
2000-12-19
2005-11-02
CVE-2000-1098
http://archives.neohapsis.com/archives/bugtraq/2000-11/0435.html
BUGTRAQ:20001201 FW: SonicWALL SOHO Vulnerability (fwd)
http://archives.neohapsis.com/archives/bugtraq/2000-11/0439.html
BUGTRAQ:20001201 Re: DoS in Sonicwall SOHO firewall
CVE-2000-1099
Java Runtime Environment in Java Development Kit (JDK) 1.2.2_05 and earlier can allow an untrusted Java class to call into a disallowed class, which could allow an attacker to escape the Java sandbox and conduct unauthorized activities.
2001-01-22
2004-09-02
CVE-2000-1099
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0011-132
HP:HPSBUX0011-132
http://www.osvdb.org/7255
OSVDB:7255
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/199&type=0&nav=sec.sba
SUN:00199
https://exchange.xforce.ibmcloud.com/vulnerabilities/5605
XF:jdk-untrusted-java-class(5605)
CVE-2000-1100
The default configuration for PostACI webmail system installs the /includes/global.inc configuration file within the web root, which allows remote attackers to read sensitive information such as database usernames and passwords via a direct HTTP GET request.
2000-12-19
2005-11-02
CVE-2000-1100
http://www.securityfocus.com/bid/2029
BID:2029
http://archives.neohapsis.com/archives/bugtraq/2000-11/0433.html
BUGTRAQ:20001130 PostACI Webmail Vulnerability
CVE-2000-1101
Directory traversal vulnerability in Winsock FTPd (WFTPD) 3.00 and 2.41 with the "Restrict to home directory" option enabled allows local users to escape the home directory via a "/../" string, a variation of the .. (dot dot) attack.
2002-03-09
2002-02-26
CVE-2000-1101
http://www.securityfocus.com/bid/2005
BID:2005
http://archives.neohapsis.com/archives/bugtraq/2000-11/0386.html
BUGTRAQ:20001127 Vulnerability in Winsock FTPD 2.41/3.00 (Pro)
http://www.iss.net/security_center/static/5608.php
XF:wftpd-dir-traverse(5608)
CVE-2000-1102
PTlink IRCD 3.5.3 and PTlink Services 1.8.1 allow remote attackers to cause a denial of service (server crash) via "mode +owgscfxeb" and "oper" commands.
2000-12-19
2005-11-02
CVE-2000-1102
http://www.securityfocus.com/bid/2008
BID:2008
http://www.securityfocus.com/archive/1/147115
BUGTRAQ:20001126 Vulnerablity in PTlink3.5.3ircd + PTlink.Services.1.8.1...
CVE-2000-1103
rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on the command line.
2000-12-19
2005-11-02
CVE-2000-1103
http://www.securityfocus.com/bid/2009
BID:2009
http://www.securityfocus.com/archive/1/147120
BUGTRAQ:20001127 BSDi 3.0/4.0 rcvtty gid=tty exploit... (mh package)
CVE-2000-1104
Variant of the "IIS Cross-Site Scripting" vulnerability as originally discussed in MS:MS00-060 (CVE-2000-0746) allows a malicious web site operator to embed scripts in a link to a trusted site, which are returned without quoting in an error message back to the client. The client then executes those scripts in the same context as the trusted site.
2000-12-19
2018-10-12
CVE-2000-1104
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-060
MS:MS00-060
CVE-2000-1105
The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the existence of files on visiting Windows 2000 systems that have Indexing Services enabled.
2000-12-19
2005-11-02
CVE-2000-1105
http://www.securityfocus.com/bid/1933
BID:1933
http://www.securityfocus.com/archive/1/144270
BUGTRAQ:20001110 IE 5.x Win2000 Indexing service vulnerability
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0074.html
WIN2KSEC:20001110 IE 5.x Win2000 Indexing service vulnerability
CVE-2000-1106
Trend Micro InterScan VirusWall creates an "Intscan" share to the "InterScan" directory with permissions that grant Full Control permissions to the Everyone group, which allows attackers to gain privileges by modifying the VirusWall programs.
2001-01-22
2005-11-02
CVE-2000-1106
http://www.securityfocus.com/bid/2014
BID:2014
http://www.securityfocus.com/archive/1/147563
BUGTRAQ:20001128 TrendMicro InterScan VirusWall shared folder problem
http://archives.neohapsis.com/archives/bugtraq/2000-12/0016.html
BUGTRAQ:20001201 Responding to BugTraq ID 2014 - "Trend Micro InterScan VirusWall Shared Directory Vulnerability"
https://exchange.xforce.ibmcloud.com/vulnerabilities/5606
XF:interscan-viruswall-unauth-access(5606)
CVE-2000-1107
in.identd ident server in SuSE Linux 6.x and 7.0 allows remote attackers to cause a denial of service via a long request, which causes the server to access a NULL pointer and crash.
2001-01-22
2005-11-02
CVE-2000-1107
http://www.securityfocus.com/bid/2015
BID:2015
http://archives.neohapsis.com/archives/bugtraq/2000-11/0387.html
BUGTRAQ:20001128 SuSE Linux 6.x 7.0 Ident buffer overflow
https://exchange.xforce.ibmcloud.com/vulnerabilities/5590
XF:linux-ident-bo(5590)
CVE-2000-1108
cons.saver in Midnight Commander (mc) 4.5.42 and earlier does not properly verify if an output file descriptor is a TTY, which allows local users to corrupt files by creating a symbolic link to the target file, calling mc, and specifying that link as a TTY argument.
2001-05-07
2005-11-02
CVE-2000-1108
http://www.securityfocus.com/bid/1945
BID:1945
http://archives.neohapsis.com/archives/bugtraq/2000-11/0192.html
BUGTRAQ:20001113 Problems with cons.saver
http://www.debian.org/security/2000/20001125
DEBIAN:20001125 mc: local DoS
http://www.linux-mandrake.com/en/security/MDKSA-2000-078.php3
MANDRAKE:MDKSA-2000:078
https://exchange.xforce.ibmcloud.com/vulnerabilities/5519
XF:midnight-commander-conssaver-symlink(5519)
CVE-2000-1109
Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed.
2001-05-07
2005-11-02
CVE-2000-1109
http://www.securityfocus.com/bid/2016
BID:2016
http://archives.neohapsis.com/archives/bugtraq/2000-11/0373.html
BUGTRAQ:20001127 Midnight Commander
http://www.debian.org/security/2001/dsa-036
DEBIAN:DSA-036
http://www.novell.com/linux/security/advisories/2001_011_mc.html
SUSE:SuSE-SA:2001:11
https://exchange.xforce.ibmcloud.com/vulnerabilities/5929
XF:midnight-commander-elevate-privileges(5929)
CVE-2000-1110
document.d2w CGI program in the IBM Net.Data db2www package allows remote attackers to determine the physical path of the web server by sending a nonexistent command to the program.
2000-12-19
2005-11-02
CVE-2000-1110
http://www.securityfocus.com/bid/2017
BID:2017
http://archives.neohapsis.com/archives/bugtraq/2000-11/0384.html
BUGTRAQ:20001128 IBM Net.Data Local Path Disclosure Vulnerability?
CVE-2000-1111
Telnet Service for Windows 2000 Professional does not properly terminate incomplete connection attempts, which allows remote attackers to cause a denial of service by connecting to the server and not providing any input.
2002-03-09
2002-02-26
CVE-2000-1111
http://www.securityfocus.com/bid/2018
BID:2018
http://www.securityfocus.com/archive/1/147914
BUGTRAQ:20001129 Windows 2000 Telnet Service DoS
https://exchange.xforce.ibmcloud.com/vulnerabilities/5598
XF:win2k-telnet-dos(5598)
CVE-2000-1112
Microsoft Windows Media Player 7 executes scripts in custom skin (.WMS) files, which could allow remote attackers to gain privileges via a skin that contains a malicious script, aka the ".WMS Script Execution" vulnerability.
2001-01-22
2005-11-02
CVE-2000-1112
http://www.securityfocus.com/bid/1976
BID:1976
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-090
MS:MS00-090
https://exchange.xforce.ibmcloud.com/vulnerabilities/5575
XF:mediaplayer-wms-script-exe(5575)
CVE-2000-1113
Buffer overflow in Microsoft Windows Media Player allows remote attackers to execute arbitrary commands via a malformed Active Stream Redirector (.ASX) file, aka the ".ASX Buffer Overrun" vulnerability.
2001-01-22
2005-11-02
CVE-2000-1113
http://www.atstake.com/research/advisories/2000/a112300-1.txt
ATSTAKE:A112300-1
http://www.securityfocus.com/bid/1980
BID:1980
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-090
MS:MS00-090
https://exchange.xforce.ibmcloud.com/vulnerabilities/5574
XF:mediaplayer-asx-bo(5574)
CVE-2000-1114
Unify ServletExec AS v3.0C allows remote attackers to read source code for JSP pages via an HTTP request that ends with characters such as ".", or "+", or "%20".
2000-12-19
2005-11-02
CVE-2000-1114
http://www.securityfocus.com/bid/1970
BID:1970
http://archives.neohapsis.com/archives/bugtraq/2000-11/0285.html
BUGTRAQ:20001121 Disclosure of JSP source code with ServletExec AS v3.0c + web ins tance
CVE-2000-1115
Buffer overflow in remote web administration component (webprox.dll) of 602Pro LAN SUITE before 2000.0.1.33 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request.
2001-01-22
2005-11-02
CVE-2000-1115
http://www.securityfocus.com/bid/1979
BID:1979
http://archives.neohapsis.com/archives/bugtraq/2000-11/0299.html
BUGTRAQ:20001122 602Pro Lan Suite Web Admin Overflow
http://www.software602.com/products/ls/support/newbuild.html
CONFIRM:http://www.software602.com/products/ls/support/newbuild.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/5583
XF:software602-lan-suite-bo(5583)
CVE-2000-1116
Buffer overflow in TransSoft Broker FTP Server before 4.3.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long command.
2000-12-19
2017-12-18
CVE-2000-1116
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0041.html
WIN2KSEC:20001018 TransSoft's Broker FTP Server 3.x & 4.x Remote DoS attack Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5388
XF:broker-ftp-username-dos(5388)
CVE-2000-1117
The Extended Control List (ECL) feature of the Java Virtual Machine (JVM) in Lotus Notes Client R5 allows malicious web site operators to determine the existence of files on the client by measuring delays in the execution of the getSystemResource method.
2000-12-19
2005-11-02
CVE-2000-1117
http://www.securityfocus.com/bid/1994
BID:1994
http://archives.neohapsis.com/archives/bugtraq/2000-11/0341.html
BUGTRAQ:20001124 Security Hole in ECL Feature of Java VM Embedded in Lotus Notes Client R5
CVE-2000-1118
24Link 1.06 web server allows remote attackers to bypass access restrictions by prepending strings such as "/+/" or "/." to the HTTP GET request.
2000-12-19
2005-11-02
CVE-2000-1118
http://archives.neohapsis.com/archives/bugtraq/2000-11/0369.html
BUGTRAQ:20001127 24Link Webserver
CVE-2000-1119
Buffer overflow in setsenv command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands via a long "x=" argument.
2001-05-07
2004-09-02
CVE-2000-1119
http://www-1.ibm.com/support/search.wss?rs=0&q=IY08812&apar=only
AIXAPAR:IY08812
http://www-1.ibm.com/support/search.wss?rs=0&q=IY10721&apar=only
AIXAPAR:IY10721
http://www.securityfocus.com/bid/2032
BID:2032
http://marc.info/?l=bugtraq&m=97569466809056&w=2
BUGTRAQ:20001201 Fixed local AIX V43 vulnerabilities
http://www.osvdb.org/1676
OSVDB:1676
https://exchange.xforce.ibmcloud.com/vulnerabilities/5621
XF:aix-setsenv-bo(5621)
CVE-2000-1120
Buffer overflow in digest command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands.
2001-01-22
2005-11-02
CVE-2000-1120
http://www-1.ibm.com/support/search.wss?rs=0&q=IY08143&apar=only
AIXAPAR:IY08143
http://www-1.ibm.com/support/search.wss?rs=0&q=IY08287&apar=only
AIXAPAR:IY08287
http://www.securityfocus.com/bid/2033
BID:2033
http://marc.info/?l=bugtraq&m=97569466809056&w=2
BUGTRAQ:20001201 Fixed local AIX V43 vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5620
XF:aix-digest-bo(5620)
CVE-2000-1121
Buffer overflow in enq command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long -M argument.
2001-05-07
2005-11-02
CVE-2000-1121
http://www-1.ibm.com/support/search.wss?rs=0&q=IY08143&apar=only
AIXAPAR:IY08143
http://www-1.ibm.com/support/search.wss?rs=0&q=IY08287&apar=only
AIXAPAR:IY08287
http://www.securityfocus.com/bid/2034
BID:2034
http://marc.info/?l=bugtraq&m=97569466809056&w=2
BUGTRAQ:20001201 Fixed local AIX V43 vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5619
XF:aix-enq-bo(5619)
CVE-2000-1122
Buffer overflow in setclock command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long argument.
2001-05-07
2005-11-02
CVE-2000-1122
http://www-1.ibm.com/support/search.wss?rs=0&q=IY07790&apar=only
AIXAPAR:IY07790
http://www-1.ibm.com/support/search.wss?rs=0&q=IY07831&apar=only
AIXAPAR:IY07831
http://www.securityfocus.com/bid/2035
BID:2035
http://marc.info/?l=bugtraq&m=97569466809056&w=2
BUGTRAQ:20001201 Fixed local AIX V43 vulnerabilities
CVE-2000-1123
Buffer overflow in pioout command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands.
2001-05-07
2005-11-02
CVE-2000-1123
http://www-1.ibm.com/support/search.wss?rs=0&q=IY12638&apar=only
AIXAPAR:IY12638
http://www.securityfocus.com/bid/2036
BID:2036
http://marc.info/?l=bugtraq&m=97569466809056&w=2
BUGTRAQ:20001201 Fixed local AIX V43 vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5617
XF:aix-pioout-bo(5617)
CVE-2000-1124
Buffer overflow in piobe command in IBM AIX 4.3.x allows local users to gain privileges via long environmental variables.
2001-05-07
2005-11-02
CVE-2000-1124
http://www-1.ibm.com/support/search.wss?rs=0&q=IY12638&apar=only
AIXAPAR:IY12638
http://www.securityfocus.com/bid/2037
BID:2037
http://marc.info/?l=bugtraq&m=97569466809056&w=2
BUGTRAQ:20001201 Fixed local AIX V43 vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/5616
XF:aix-piobe-bo(5616)
CVE-2000-1125
restore 0.4b15 and earlier in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.
2000-12-19
2016-10-17
CVE-2000-1125
http://www.securityfocus.com/bid/1914
BID:1914
http://marc.info/?l=bugtraq&m=97336034309944&w=2
BUGTRAQ:20001104 Redhat 6.2 restore exploit
CVE-2000-1126
Vulnerability in auto_parms and set_parms in HP-UX 11.00 and earlier allows remote attackers to execute arbitrary commands or cause a denial of service.
2000-12-19
2017-10-18
CVE-2000-1126
http://www.securityfocus.com/bid/1954
BID:1954
http://www.securityfocus.com/advisories/2850
HP:HPSBUX0011-130
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5655
OVAL:oval:org.mitre.oval:def:5655
CVE-2000-1127
registrar in the HP resource monitor service allows local users to read and modify arbitrary files by renaming the original registrar.log log file and creating a symbolic link to the target file, to which registrar appends log information and sets the permissions to be world readable.
2000-12-19
2005-11-02
CVE-2000-1127
http://www.securityfocus.com/bid/1919
BID:1919
http://www.securityfocus.com/archive/1/143845
BUGTRAQ:20001108 HP-UX 10.20 resource monitor service
CVE-2000-1128
The default configuration of McAfee VirusScan 4.5 does not quote the ImagePath variable, which improperly sets the search path and allows local users to place a Trojan horse "common.exe" program in the C:\Program Files directory.
2000-12-19
2005-11-02
CVE-2000-1128
http://www.securityfocus.com/bid/1920
BID:1920
http://archives.neohapsis.com/archives/ntbugtraq/2000-q4/0073.html
NTBUGTRAQ:20001103 Elevation of Privileges Exploit with McAfee VirusScan 4.5
CVE-2000-1129
McAfee WebShield SMTP 4.5 allows remote attackers to cause a denial of service via a malformed recipient field.
2000-12-19
2005-11-02
CVE-2000-1129
http://www.securityfocus.com/bid/1999
BID:1999
http://archives.neohapsis.com/archives/bugtraq/2000-11/0324.html
BUGTRAQ:20001123 McAfee WebShield SMTP vulnerabilities
CVE-2000-1130
McAfee WebShield SMTP 4.5 allows remote attackers to bypass email content filtering rules by including Extended ASCII characters in name of the attachment.
2000-12-19
2003-05-08
CVE-2000-1130
http://www.securityfocus.com/bid/1993
BID:1993
http://archives.neohapsis.com/archives/bugtraq/2000-11/0324.html
BUGTRAQ:20001123 McAfee WebShield SMTP vulnerabilities
CVE-2000-1131
Bill Kendrick web site guestbook (GBook) allows remote attackers to execute arbitrary commands via shell metacharacters in the _MAILTO form variable.
2001-01-22
2005-11-02
CVE-2000-1131
http://www.securityfocus.com/bid/1940
BID:1940
http://archives.neohapsis.com/archives/bugtraq/2000-11/0144.html
BUGTRAQ:20001110 [hacksware] gbook.cgi remote command execution vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5509
XF:gbook-cgi-remote-execution(5509)
CVE-2000-1132
DCForum cgforum.cgi CGI script allows remote attackers to read arbitrary files, and delete the program itself, via a malformed "forum" variable.
2001-01-22
2004-09-02
CVE-2000-1132
http://www.securityfocus.com/bid/1951
BID:1951
http://archives.neohapsis.com/archives/bugtraq/2000-11/0218.html
BUGTRAQ:20001114 Cgisecurity.com advisory on dcforum
http://www.dcscripts.com/dcforum/dcfNews/124.html#1
CONFIRM:http://www.dcscripts.com/dcforum/dcfNews/124.html#1
http://www.osvdb.org/1646
OSVDB:1646
https://exchange.xforce.ibmcloud.com/vulnerabilities/5533
XF:dcforum-cgi-view-files(5533)
CVE-2000-1133
Authentix Authentix100 allows remote attackers to bypass authentication by inserting a . (dot) into the URL for a protected directory.
2000-12-19
2016-10-17
CVE-2000-1133
http://www.securityfocus.com/bid/1907
BID:1907
http://marc.info/?l=bugtraq&m=97353881829760&w=2
BUGTRAQ:20001106 Authentix Security Advisory
http://marc.info/?l=bugtraq&m=97362374200478&w=2
BUGTRAQ:20001107 Explanation Authentix Input Validation Error
CVE-2000-1134
Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.
2000-12-19
2017-10-18
CVE-2000-1134
http://www.securityfocus.com/bid/1926
BID:1926
http://www.securityfocus.com/bid/2006
BID:2006
http://archives.neohapsis.com/archives/bugtraq/2000-10/0418.html
BUGTRAQ:20001028 tcsh: unsafe tempfile in << redirects
http://www.securityfocus.com/archive/1/146657
BUGTRAQ:20001128 /bin/sh creates insecure tmp files
http://marc.info/?l=bugtraq&m=97561816504170&w=2
BUGTRAQ:20001130 [ADV/EXP]: RH6.x root from bash /tmp vuln + MORE
http://www.calderasystems.com/support/security/advisories/CSSA-2000-042.0.txt
CALDERA:CSSA-2000-042.0
http://www.calderasystems.com/support/security/advisories/CSSA-2000-043.0.txt
CALDERA:CSSA-2000-043.0
http://www.kb.cert.org/vuls/id/10277
CERT-VN:VU#10277
http://archives.neohapsis.com/archives/tru64/2002-q1/0009.html
COMPAQ:SSRT1-41U
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000350
CONECTIVA:CLA-2000:350
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000354
CONECTIVA:CLSA-2000:354
http://www.debian.org/security/2000/20001111a
DEBIAN:20001111a
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:76.tcsh-csh.asc
FREEBSD:FreeBSD-SA-00:76
http://www.linux-mandrake.com/en/security/MDKSA-2000-069.php3
MANDRAKE:MDKSA-2000-069
http://www.linux-mandrake.com/en/security/MDKSA-2000-075.php3
MANDRAKE:MDKSA-2000:075
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4047
OVAL:oval:org.mitre.oval:def:4047
http://www.redhat.com/support/errata/RHSA-2000-117.html
REDHAT:RHSA-2000:117
http://www.redhat.com/support/errata/RHSA-2000-121.html
REDHAT:RHSA-2000:121
ftp://patches.sgi.com/support/free/security/advisories/20011103-02-P
SGI:20011103-02-P
CVE-2000-1135
fshd (fsh daemon) in Debian GNU/Linux allows local users to overwrite files of other users via a symlink attack.
2001-01-22
2004-09-02
CVE-2000-1135
http://www.debian.org/security/2000/20001130
DEBIAN:20001130 DSA-002-1 fsh: symlink attack
http://www.osvdb.org/7208
OSVDB:7208
https://exchange.xforce.ibmcloud.com/vulnerabilities/5633
XF:linux-fsh-symlink(5633)
CVE-2000-1136
elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack.
2001-01-22
2005-11-02
CVE-2000-1136
http://www.securityfocus.com/bid/1984
BID:1984
http://marc.info/?l=bugtraq&m=97502995616099&w=2
BUGTRAQ:20001122 New version of elvis-tiny released
https://exchange.xforce.ibmcloud.com/vulnerabilities/5632
XF:linux-tinyelvis-tmpfiles(5632)
CVE-2000-1137
GNU ed before 0.2-18.1 allows local users to overwrite the files of other users via a symlink attack.
2001-01-22
2004-09-02
CVE-2000-1137
BUGTRAQ:20001211 Immunix OS Security update for ed
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000359
CONECTIVA:CLA-2000:359-2
http://www.debian.org/security/2000/20001129
DEBIAN:20001129 DSA-001-1 ed: symlink attack
http://www.linux-mandrake.com/en/security/MDKSA-2000-076.php3
MANDRAKE:MDKSA-2000:076
http://www.osvdb.org/6491
OSVDB:6491
http://www.redhat.com/support/errata/RHSA-2000-123.html
REDHAT:RHSA-2000:123
https://exchange.xforce.ibmcloud.com/vulnerabilities/5723
XF:gnu-ed-symlink(5723)
CVE-2000-1138
Lotus Notes R5 client R5.0.5 and earlier does not properly warn users when an S/MIME email message has been modified, which could allow an attacker to modify the email in transit without being detected.
2000-12-19
2016-10-17
CVE-2000-1138
http://www.securityfocus.com/bid/1925
BID:1925
http://marc.info/?l=bugtraq&m=97370725220953&w=2
BUGTRAQ:20001108 Lotus Notes R5 clients - no warning for broken signature or encryption
CVE-2000-1139
The installation of Microsoft Exchange 2000 before Rev. A creates a user account with a known password, which could allow attackers to gain privileges, aka the "Exchange User Account" vulnerability.
2001-01-22
2005-11-02
CVE-2000-1139
http://www.securityfocus.com/bid/1958
BID:1958
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-088
MS:MS00-088
https://exchange.xforce.ibmcloud.com/vulnerabilities/5537
XF:ms-exchange-username-pwd(5537)
CVE-2000-1140
Recourse ManTrap 1.6 does not properly hide processes from attackers, which could allow attackers to determine that they are in a honeypot system by comparing the results from kill commands with the process listing in the /proc filesystem.
2001-01-22
2005-11-02
CVE-2000-1140
http://www.securityfocus.com/bid/1908
BID:1908
http://archives.neohapsis.com/archives/bugtraq/2000-11/0041.html
BUGTRAQ:20001102 Mantrap By Recourse Technologies - Fate Advisory (11-01-00)
http://archives.neohapsis.com/archives/bugtraq/2000-11/0100.html
BUGTRAQ:20001107 Vendor Response Re: Mantrap Advisory Vendor Followup - Fate Research Labs
https://exchange.xforce.ibmcloud.com/vulnerabilities/5473
XF:mantrap-hidden-processes(5473)
CVE-2000-1141
Recourse ManTrap 1.6 modifies the kernel so that ".." does not appear in the /proc listing, which allows attackers to determine that they are in a honeypot system.
2001-01-22
2005-11-02
CVE-2000-1141
http://archives.neohapsis.com/archives/bugtraq/2000-11/0041.html
BUGTRAQ:20001102 Mantrap By Recourse Technologies - Fate Advisory (11-01-00)
http://marc.info/?l=bugtraq&m=97349791405580&w=2
BUGTRAQ:20001105 Mantrap Advisory Vendor Followup - Fate Research Labs
http://archives.neohapsis.com/archives/bugtraq/2000-11/0100.html
BUGTRAQ:20001107 Vendor Response Re: Mantrap Advisory Vendor Followup - Fate Research Labs
https://exchange.xforce.ibmcloud.com/vulnerabilities/5473
XF:mantrap-hidden-processes(5473)
CVE-2000-1142
Recourse ManTrap 1.6 generates an error when an attacker cd's to /proc/self/cwd and executes the pwd command, which allows attackers to determine that they are in a honeypot system.
2001-01-22
2005-11-02
CVE-2000-1142
http://archives.neohapsis.com/archives/bugtraq/2000-11/0041.html
BUGTRAQ:20001102 Mantrap By Recourse Technologies - Fate Advisory (11-01-00)
http://marc.info/?l=bugtraq&m=97349791405580&w=2
BUGTRAQ:20001105 Mantrap Advisory Vendor Followup - Fate Research Labs
http://archives.neohapsis.com/archives/bugtraq/2000-11/0100.html
BUGTRAQ:20001107 Vendor Response Re: Mantrap Advisory Vendor Followup - Fate Research Labs
https://exchange.xforce.ibmcloud.com/vulnerabilities/5949
XF:mantrap-pwd-reveal-information(5949)
CVE-2000-1143
Recourse ManTrap 1.6 hides the first 4 processes that run on a Solaris system, which allows attackers to determine that they are in a honeypot system.
2001-01-22
2005-11-02
CVE-2000-1143
http://archives.neohapsis.com/archives/bugtraq/2000-11/0041.html
BUGTRAQ:20001102 Mantrap By Recourse Technologies - Fate Advisory (11-01-00)
http://marc.info/?l=bugtraq&m=97349791405580&w=2
BUGTRAQ:20001105 Mantrap Advisory Vendor Followup - Fate Research Labs
http://archives.neohapsis.com/archives/bugtraq/2000-11/0100.html
BUGTRAQ:20001107 Vendor Response Re: Mantrap Advisory Vendor Followup - Fate Research Labs
https://exchange.xforce.ibmcloud.com/vulnerabilities/5473
XF:mantrap-hidden-processes(5473)
CVE-2000-1144
Recourse ManTrap 1.6 sets up a chroot environment to hide the fact that it is running, but the inode number for the resulting "/" file system is higher than normal, which allows attackers to determine that they are in a chroot environment.
2001-01-22
2005-11-02
CVE-2000-1144
http://www.securityfocus.com/bid/1909
BID:1909
http://archives.neohapsis.com/archives/bugtraq/2000-11/0041.html
BUGTRAQ:20001102 Mantrap By Recourse Technologies - Fate Advisory (11-01-00)
http://marc.info/?l=bugtraq&m=97349791405580&w=2
BUGTRAQ:20001105 Mantrap Advisory Vendor Followup - Fate Research Labs
http://archives.neohapsis.com/archives/bugtraq/2000-11/0100.html
BUGTRAQ:20001107 Vendor Response Re: Mantrap Advisory Vendor Followup - Fate Research Labs
https://exchange.xforce.ibmcloud.com/vulnerabilities/5472
XF:mantrap-inode-disclosure(5472)
CVE-2000-1145
Recourse ManTrap 1.6 allows attackers who have gained root access to use utilities such as crash or fsdb to read /dev/mem and raw disk devices to identify ManTrap processes or modify arbitrary data files.
2001-01-22
2005-11-02
CVE-2000-1145
http://archives.neohapsis.com/archives/bugtraq/2000-11/0041.html
BUGTRAQ:20001102 Mantrap By Recourse Technologies - Fate Advisory (11-01-00)
http://marc.info/?l=bugtraq&m=97349791405580&w=2
BUGTRAQ:20001105 Mantrap Advisory Vendor Followup - Fate Research Labs
http://archives.neohapsis.com/archives/bugtraq/2000-11/0100.html
BUGTRAQ:20001107 Vendor Response Re: Mantrap Advisory Vendor Followup - Fate Research Labs
https://exchange.xforce.ibmcloud.com/vulnerabilities/5950
XF:mantrap-identify-processes(5950)
CVE-2000-1146
Recourse ManTrap 1.6 allows attackers to cause a denial of service via a sequence of commands that navigate into and out of the /proc/self directory and executing various commands such as ls or pwd.
2001-01-22
2005-11-02
CVE-2000-1146
http://www.securityfocus.com/bid/1913
BID:1913
http://archives.neohapsis.com/archives/bugtraq/2000-11/0041.html
BUGTRAQ:20001102 Mantrap By Recourse Technologies - Fate Advisory (11-01-00)
http://marc.info/?l=bugtraq&m=97349791405580&w=2
BUGTRAQ:20001105 Mantrap Advisory Vendor Followup - Fate Research Labs
http://archives.neohapsis.com/archives/bugtraq/2000-11/0100.html
BUGTRAQ:20001107 Vendor Response Re: Mantrap Advisory Vendor Followup - Fate Research Labs
https://exchange.xforce.ibmcloud.com/vulnerabilities/5528
XF:mantrap-dir-dos(5528)
CVE-2000-1147
Buffer overflow in IIS ISAPI .ASP parsing mechanism allows attackers to execute arbitrary commands via a long string to the "LANGUAGE" argument in a script tag.
2000-12-19
2017-12-18
CVE-2000-1147
http://www.securityfocus.com/bid/1911
BID:1911
http://www.securityfocus.com/archive/1/143070
BUGTRAQ:20001103 IIS ASP $19.95 hack - IISHack 1.5
https://exchange.xforce.ibmcloud.com/vulnerabilities/5510
XF:iis-isapi-asp-bo(5510)
CVE-2000-1148
The installation of VolanoChatPro chat server sets world-readable permissions for its configuration file and stores the server administrator passwords in plaintext, which allows local users to gain privileges on the server.
2001-01-22
2005-11-02
CVE-2000-1148
http://www.securityfocus.com/bid/1906
BID:1906
http://archives.neohapsis.com/archives/bugtraq/2000-11/0072.html
BUGTRAQ:20001104 Filesystem Access + VolanoChat = VChat admin (fwd)
http://archives.neohapsis.com/archives/bugtraq/2000-11/0085.html
BUGTRAQ:20001106 Re: FW: Filesystem Access + VolanoChat = VChat admin (fwd)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5465
XF:volanochatpro-plaintext-password(5465)
CVE-2000-1149
Buffer overflow in RegAPI.DLL used by Windows NT 4.0 Terminal Server allows remote attackers to execute arbitrary commands via a long username, aka the "Terminal Server Login Buffer Overflow" vulnerability.
2001-01-22
2005-11-02
CVE-2000-1149
http://www.securityfocus.com/bid/1924
BID:1924
http://www.securityfocus.com/archive/1/143991
BUGTRAQ:20001108 [CORE SDI ADVISORY] MS NT4.0 Terminal Server Edition GINA buffer overflow
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-087
MS:MS00-087
https://exchange.xforce.ibmcloud.com/vulnerabilities/5489
XF:nt-termserv-gina-bo(5489)
CVE-2000-1150
Felix IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.
2000-12-19
2003-05-08
CVE-2000-1150
http://archives.neohapsis.com/archives/bugtraq/2000-11/0203.html
BUGTRAQ:20001113 beos vulnerabilities
CVE-2000-1151
Baxter IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.
2000-12-19
2003-05-08
CVE-2000-1151
http://archives.neohapsis.com/archives/bugtraq/2000-11/0203.html
BUGTRAQ:20001113 beos vulnerabilities
CVE-2000-1152
Browser IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.
2000-12-19
2003-05-08
CVE-2000-1152
http://archives.neohapsis.com/archives/bugtraq/2000-11/0203.html
BUGTRAQ:20001113 beos vulnerabilities
CVE-2000-1153
PostMaster 1.0 in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL.
2000-12-19
2003-05-08
CVE-2000-1153
http://archives.neohapsis.com/archives/bugtraq/2000-11/0203.html
BUGTRAQ:20001113 beos vulnerabilities
CVE-2000-1154
RHConsole in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request.
2000-12-19
2003-05-08
CVE-2000-1154
http://archives.neohapsis.com/archives/bugtraq/2000-11/0203.html
BUGTRAQ:20001113 beos vulnerabilities
CVE-2000-1155
RHDaemon in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request.
2000-12-19
2003-05-08
CVE-2000-1155
http://archives.neohapsis.com/archives/bugtraq/2000-11/0203.html
BUGTRAQ:20001113 beos vulnerabilities
CVE-2000-1156
StarOffice 5.2 follows symlinks and sets world-readable permissions for the /tmp/soffice.tmp directory, which allows a local user to read files of the user who is using StarOffice.
2000-12-19
2017-12-18
CVE-2000-1156
http://www.securityfocus.com/bid/1922
BID:1922
http://archives.neohapsis.com/archives/bugtraq/2000-11/0115.html
BUGTRAQ:20001108 StarOffice 5.2 Temporary Dir Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5487
XF:staroffice-tmp-sym-link(5487)
CVE-2000-1157
Buffer overflow in NAI Sniffer Agent allows remote attackers to execute arbitrary commands via a long SNMP community name.
2000-12-19
2005-11-02
CVE-2000-1157
http://www.securityfocus.com/bid/1901
BID:1901
http://archives.neohapsis.com/archives/bugtraq/2000-11/0038.html
BUGTRAQ:20001102 Remotely exploitable buffer overflow in NAI's Distributed Sniffer Agent
CVE-2000-1158
NAI Sniffer Agent uses base64 encoding for authentication, which allows attackers to sniff the network and easily decrypt usernames and passwords.
2000-12-19
2005-11-02
CVE-2000-1158
http://archives.neohapsis.com/archives/bugtraq/2000-11/0038.html
BUGTRAQ:20001102 Remotely exploitable buffer overflow in NAI's Distributed Sniffer Agent
CVE-2000-1159
NAI Sniffer Agent allows remote attackers to gain privileges on the agent by sniffing the initial UDP authentication packets and spoofing commands.
2000-12-19
2005-11-02
CVE-2000-1159
http://www.securityfocus.com/bid/1902
BID:1902
http://archives.neohapsis.com/archives/bugtraq/2000-11/0038.html
BUGTRAQ:20001102 Remotely exploitable buffer overflow in NAI's Distributed Sniffer Agent
CVE-2000-1160
NAI Sniffer Agent allows remote attackers to cause a denial of service (crash) by sending a large number of login requests.
2000-12-19
2005-11-02
CVE-2000-1160
http://www.securityfocus.com/bid/1903
BID:1903
http://archives.neohapsis.com/archives/bugtraq/2000-11/0038.html
BUGTRAQ:20001102 Remotely exploitable buffer overflow in NAI's Distributed Sniffer Agent
CVE-2000-1161
The installation of AdCycle banner management system leaves the build.cgi program in a web-accessible directory, which allows remote attackers to execute the program and view passwords or delete databases.
2000-12-19
2003-05-08
CVE-2000-1161
http://www.securityfocus.com/bid/1969
BID:1969
http://archives.neohapsis.com/archives/bugtraq/2000-11/0271.html
BUGTRAQ:20001120 security problem in AdCycle installation
CVE-2000-1162
ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack.
2001-01-22
2004-09-02
CVE-2000-1162
http://www.securityfocus.com/bid/1990
BID:1990
http://www.calderasystems.com/support/security/advisories/CSSA-2000-041.0.txt
CALDERA:CSSA-2000-041
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000343
CONECTIVA:CLSA-2000:343
http://www.debian.org/security/2000/20001123
DEBIAN:20001123 ghostscript: symlink attack
http://www.linux-mandrake.com/en/security/MDKSA-2000-074.php3
MANDRAKE:MDKSA-2000:074
http://www.redhat.com/support/errata/RHSA-2000-114.html
REDHAT:RHSA-2000:114
https://exchange.xforce.ibmcloud.com/vulnerabilities/5563
XF:ghostscript-sym-link(5563)
CVE-2000-1163
ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which another user executes ghostscript.
2001-01-22
2005-11-02
CVE-2000-1163
http://www.securityfocus.com/bid/1991
BID:1991
http://www.calderasystems.com/support/security/advisories/CSSA-2000-041.0.txt
CALDERA:CSSA-2000-041
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000343
CONECTIVA:CLSA-2000:343
http://www.debian.org/security/2000/20001123
DEBIAN:20001123 ghostscript: symlink attack
http://www.linux-mandrake.com/en/security/MDKSA-2000-074.php3
MANDRAKE:MDKSA-2000:074
https://exchange.xforce.ibmcloud.com/vulnerabilities/5564
XF:ghostscript-env-variable(5564)
CVE-2000-1164
WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system.
2001-05-07
2005-11-02
CVE-2000-1164
http://www.securityfocus.com/bid/1961
BID:1961
http://archives.neohapsis.com/archives/bugtraq/2000-11/0253.html
BUGTRAQ:20001118 WinVNC 3.3.x
https://exchange.xforce.ibmcloud.com/vulnerabilities/5545
XF:winvnc-modify-registry(5545)
CVE-2000-1165
Balabit syslog-ng allows remote attackers to cause a denial of service (application crash) via a malformed log message that does not have a closing > in the priority specifier.
2001-05-07
2005-11-02
CVE-2000-1165
http://www.securityfocus.com/bid/1981
BID:1981
http://archives.neohapsis.com/archives/bugtraq/2000-11/0300.html
BUGTRAQ:20001122 DoS possibility in syslog-ng
http://www.balabit.hu/products/syslog-ng/
CONFIRM:http://www.balabit.hu/products/syslog-ng/
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:02.syslog-ng.asc
FREEBSD:FreeBSD-SA-01:02
https://exchange.xforce.ibmcloud.com/vulnerabilities/5576
XF:balabit-syslog-ng-dos(5576)
CVE-2000-1166
Twig webmail system does not properly set the "vhosts" variable if it is not configured on the site, which allows remote attackers to insert arbitrary PHP (PHP3) code by specifying an alternate vhosts as an argument to the index.php3 program.
2002-06-25
2002-06-15
CVE-2000-1166
http://www.securityfocus.com/bid/1998
BID:1998
http://archives.neohapsis.com/archives/bugtraq/2000-11/0351.html
BUGTRAQ:20001124 Security problems with TWIG webmail system
http://twig.screwdriver.net/file.php3?file=CHANGELOG
CONFIRM:http://twig.screwdriver.net/file.php3?file=CHANGELOG
https://exchange.xforce.ibmcloud.com/vulnerabilities/5581
XF:twig-php3-script-execute(5581)
CVE-2000-1167
ppp utility in FreeBSD 4.1.1 and earlier does not properly restrict access as specified by the "nat deny_incoming" command, which allows remote attackers to connect to the target system.
2001-01-22
2004-09-02
CVE-2000-1167
http://www.securityfocus.com/bid/1974
BID:1974
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:70.ppp-nat.asc
FREEBSD:FreeBSD-SA-00:70
http://www.osvdb.org/1655
OSVDB:1655
https://exchange.xforce.ibmcloud.com/vulnerabilities/5584
XF:freebsd-ppp-bypass-gateway(5584)
CVE-2000-1168
IBM HTTP Server 1.3.6 (based on Apache) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request.
2000-12-19
2016-10-17
CVE-2000-1168
http://www.securityfocus.com/bid/1988
BID:1988
http://marc.info/?l=bugtraq&m=97502498610979&w=2
BUGTRAQ:20001123 IBM HTTP Server 1.3.6 Remote Overflow
CVE-2000-1169
OpenSSH SSH client before 2.3.0 does not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access to the X11 display and sniff X11 events, or gain access to the ssh-agent.
2001-01-22
2004-09-02
CVE-2000-1169
http://www.securityfocus.com/bid/1949
BID:1949
http://archives.neohapsis.com/archives/bugtraq/2000-11/0217.html
BUGTRAQ:20001115 Trustix Security Advisory - bind and openssh (and modutils)
http://archives.neohapsis.com/archives/bugtraq/2000-11/0195.html
BUGTRAQ:20001123 OpenSSH Security Advisory (adv.fwd)
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000345
CONECTIVA:CLSA-2000:345
http://www.debian.org/security/2000/20001118
DEBIAN:20001118 openssh: possible remote exploit
http://www.linux-mandrake.com/en/security/MDKSA-2000-068.php3
MANDRAKE:MDKSA-2000:068
http://www.osvdb.org/2114
OSVDB:2114
http://www.osvdb.org/6248
OSVDB:6248
http://www.redhat.com/support/errata/RHSA-2000-111.html
REDHAT:RHSA-2000:111
http://lists.suse.com/archives/suse-security-announce/2000-Nov/0004.html
SUSE:SuSE-SA:2000:47
https://exchange.xforce.ibmcloud.com/vulnerabilities/5517
XF:openssh-unauthorized-access(5517)
CVE-2000-1170
Buffer overflow in Netsnap webcam HTTP server before 1.2.9 allows remote attackers to execute arbitrary commands via a long GET request.
2001-05-07
2005-11-02
CVE-2000-1170
http://www.securityfocus.com/bid/1956
BID:1956
http://marc.info/?l=bugtraq&m=97439536016554&w=2
BUGTRAQ:20001115 Netsnap Webcam Software Remote Overflow
http://www.netsnap.com/new.htm
CONFIRM:http://www.netsnap.com/new.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/5534
XF:netsnap-remote-bo(5534)
CVE-2000-1171
Directory traversal vulnerability in cgiforum.pl script in CGIForum 1.0 allows remote attackers to ready arbitrary files via a .. (dot dot) attack in the "thesection" parameter.
2001-05-07
2005-11-02
CVE-2000-1171
http://www.securityfocus.com/bid/1963
BID:1963
http://archives.neohapsis.com/archives/bugtraq/2000-11/0263.html
BUGTRAQ:20001120 CGIForum 1.0 Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/5553
XF:cgiforum-view-files(5553)
CVE-2000-1172
Buffer overflow in Gaim 0.10.3 and earlier using the OSCAR protocol allows remote attackers to conduct a denial of service and possibly execute arbitrary commands via a long HTML tag.
2000-12-19
2005-11-02
CVE-2000-1172
http://www.securityfocus.com/bid/1948
BID:1948
http://archives.neohapsis.com/archives/bugtraq/2000-11/0204.html
BUGTRAQ:20001110 Advisory: Gaim remote vulnerability
CVE-2000-1173
Microsys CyberPatrol uses weak encryption (trivial encoding) for credit card numbers and uses no encryption for the remainder of the information during registration, which could allow attackers to sniff network traffic and obtain this sensitive information.
2000-12-19
2005-11-02
CVE-2000-1173
http://www.securityfocus.com/bid/1977
BID:1977
http://archives.neohapsis.com/archives/bugtraq/2000-11/0323.html
BUGTRAQ:20001122 CyberPatrol - poor credit card protection
CVE-2000-1174
Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username.
2001-05-07
2004-09-02
CVE-2000-1174
http://www.securityfocus.com/bid/1972
BID:1972
http://archives.neohapsis.com/archives/bugtraq/2000-11/0251.html
BUGTRAQ:20001118 [hacksware] Ethereal 0.8.13 AFS ACL parsing buffer overflow bug
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000342
CONECTIVA:CLSA-2000:342
http://www.debian.org/security/2000/20001122a
DEBIAN:20001121 ethereal: remote exploit
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:81.ethereal.asc
FREEBSD:FreeBSD-SA-00:81
http://www.redhat.com/support/errata/RHSA-2000-116.html
REDHAT:RHSA-2000:116
https://exchange.xforce.ibmcloud.com/vulnerabilities/5557
XF:ethereal-afs-bo(5557)
CVE-2000-1175
Buffer overflow in Koules 1.4 allows local users to execute arbitrary commands via a long command line argument.
2000-12-19
2003-05-08
CVE-2000-1175
http://www.securityfocus.com/bid/1967
BID:1967
http://www.securityfocus.com/archive/1/145823
BUGTRAQ:20001120 local exploit for linux's Koules1.4 package
CVE-2000-1176
Directory traversal vulnerability in YaBB search.pl CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catsearch" form field.
2000-12-19
2005-11-02
CVE-2000-1176
http://www.securityfocus.com/bid/1921
BID:1921
http://archives.neohapsis.com/archives/bugtraq/2000-11/0110.html
BUGTRAQ:20001107 Insecure input balidation in YaBB Search.pl
CVE-2000-1177
bb-hist.sh, bb-histlog.sh, bb-hostsvc.sh, bb-rep.sh, bb-replog.sh, and bb-ack.sh in Big Brother (BB) before 1.5d3 allows remote attackers to determine the existence of files and user ID's by specifying the target file in the HISTFILE parameter.
2000-12-19
2003-05-08
CVE-2000-1177
http://www.securityfocus.com/bid/1971
BID:1971
http://archives.neohapsis.com/archives/bugtraq/2000-11/0284.html
BUGTRAQ:20001121 Big Brother Advisory - Fate Research Labs
http://bb4.com/incident.nov21
CONFIRM:http://bb4.com/incident.nov21
CVE-2000-1178
Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes.
2001-01-22
2004-09-02
CVE-2000-1178
http://www.securityfocus.com/bid/1959
BID:1959
http://archives.neohapsis.com/archives/bugtraq/2000-11/0227.html
BUGTRAQ:20001116 Joe's Own Editor File Link Vulnerability
http://marc.info/?l=bugtraq&m=97500174210821&w=2
BUGTRAQ:20001121 Immunix OS Security update for joe
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000356
CONECTIVA:CLA-2000:356
DEBIAN:20001122
http://www.debian.org/security/2000/20001201
DEBIAN:20001201 DSA-003-1 joe: symlink attack
http://www.linux-mandrake.com/en/security/MDKSA-2000-072.php3
MANDRAKE:MDKSA-2000:072
http://www.redhat.com/support/errata/RHSA-2000-110.html
REDHAT:RHSA-2000:110
https://exchange.xforce.ibmcloud.com/vulnerabilities/5546
XF:joe-symlink-corruption(5546)
CVE-2000-1179
Netopia ISDN Router 650-ST before 4.3.5 allows remote attackers to read system logs without authentication by directly connecting to the login screen and typing certain control characters.
2001-01-22
2005-11-02
CVE-2000-1179
http://www.securityfocus.com/bid/1952
BID:1952
http://marc.info/?l=bugtraq&m=97440068130051&w=2
BUGTRAQ:20001115 Netopia ISDN Router 650-ST: Viewing of all system logs without login
https://exchange.xforce.ibmcloud.com/vulnerabilities/5536
XF:netopia-view-system-log(5536)
CVE-2000-1180
Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument.
2001-05-07
2005-11-02
CVE-2000-1180
http://www.securityfocus.com/bid/1968
BID:1968
http://marc.info/?l=bugtraq&m=97474521003453&w=2
BUGTRAQ:20001120 vulnerability in Connection Manager Control binary in Oracle
BUGTRAQ:20010118 Patch for Potential Security Vulnerability in Oracle Connection Manager Control
https://exchange.xforce.ibmcloud.com/vulnerabilities/5551
XF:oracle-cmctl-bo(5551)
CVE-2000-1181
Real Networks RealServer 7 and earlier allows remote attackers to obtain portions of RealServer's memory contents, possibly including sensitive information, by accessing the /admin/includes/ URL.
2001-01-22
2005-11-02
CVE-2000-1181
http://www.securityfocus.com/bid/1957
BID:1957
http://archives.neohapsis.com/archives/bugtraq/2000-11/0236.html
BUGTRAQ:20001116 [CORE SDI ADVISORY] RealServer memory contents disclosure
http://service.real.com/help/faq/security/memory.html
CONFIRM:http://service.real.com/help/faq/security/memory.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/5538
XF:realserver-gain-access(5538)
CVE-2000-1182
WatchGuard Firebox II allows remote attackers to cause a denial of service by flooding the Firebox with a large number of FTP or SMTP requests, which disables proxy handling.
2001-01-22
2005-11-02
CVE-2000-1182
http://www.securityfocus.com/bid/1953
BID:1953
http://archives.neohapsis.com/archives/bugtraq/2000-11/0224.html
BUGTRAQ:20001116 Possible Watchguard Firebox II DoS
https://www.watchguard.com/support/patches.html
CONFIRM:https://www.watchguard.com/support/patches.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/5535
XF:watchguard-firebox-ftp-dos(5535)
CVE-2000-1183
Buffer overflow in socks5 server on Linux allows attackers to execute arbitrary commands via a long connection request.
2000-12-19
2002-03-14
CVE-2000-1183
http://archives.neohapsis.com/archives/bugtraq/2000-11/0219.html
BUGTRAQ:20001115 socks5 remote exploit / linux x86
CVE-2000-1184
telnetd in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service by specifying an arbitrary large file in the TERMCAP environmental variable, which consumes resources as the server processes the file.
2001-01-22
2004-09-02
CVE-2000-1184
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:69.telnetd.v1.1.asc
FREEBSD:FreeBSD-SA-00:69
http://www.osvdb.org/6083
OSVDB:6083
https://exchange.xforce.ibmcloud.com/vulnerabilities/5959
XF:telnetd-termcap-dos(5959)
CVE-2000-1185
The telnet proxy in RideWay PN proxy server allows remote attackers to cause a denial of service via a flood of connections that contain malformed requests.
2000-12-19
2003-05-08
CVE-2000-1185
http://www.securityfocus.com/bid/1938
BID:1938
http://archives.neohapsis.com/archives/bugtraq/2000-11/0201.html
BUGTRAQ:20001113 Rideway PN Telnet DoS
CVE-2000-1186
Buffer overflow in phf CGI program allows remote attackers to execute arbitrary commands by specifying a large number of arguments and including a long MIME header.
2000-12-19
2017-12-18
CVE-2000-1186
http://archives.neohapsis.com/archives/bugtraq/2000-11/0221.html
BUGTRAQ:20001115 Exploit: phf buffer overflow (CGI)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5970
XF:phf-cgi-bo(5970)
CVE-2000-1187
Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field.
2001-01-22
2004-09-02
CVE-2000-1187
http://marc.info/?l=bugtraq&m=97500270012529&w=2
BUGTRAQ:20001121 Immunix OS Security update for netscape
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000344
CONECTIVA:CLSA-2000:344
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:66.netscape.asc
FREEBSD:FreeBSD-SA-00:66
http://www.osvdb.org/7207
OSVDB:7207
http://www.redhat.com/support/errata/RHSA-2000-109.html
REDHAT:RHSA-2000:109
http://lists.suse.com/archives/suse-security-announce/2000-Nov/0005.html
SUSE:SuSE-SA:2000:48
https://exchange.xforce.ibmcloud.com/vulnerabilities/5542
XF:netscape-client-html-bo(5542)
CVE-2000-1188
Directory traversal vulnerability in Quikstore shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "page" parameter.
2000-12-19
2006-04-12
CVE-2000-1188
http://archives.neohapsis.com/archives/bugtraq/2000-11/0283.html
BUGTRAQ:20001120 Cgisecurity Quickstore Shopping cart
CVE-2000-1189
Buffer overflow in pam_localuser PAM module in Red Hat Linux 7.x and 6.x allows attackers to gain privileges.
2001-01-22
2005-11-02
CVE-2000-1189
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000358
CONECTIVA:CLA-2000:358
http://www.linux-mandrake.com/en/security/MDKSA-2000-082.php3
MANDRAKE:MDKSA-2000:082-1
http://www.redhat.com/support/errata/RHSA-2000-120.html
REDHAT:RHSA-2000:120
https://exchange.xforce.ibmcloud.com/vulnerabilities/5747
XF:pam-localuser-bo(5747)
CVE-2000-1190
imwheel-solo in imwheel package allows local users to modify arbitrary files via a symlink attack from the .imwheelrc file.
2002-03-09
2002-02-26
CVE-2000-1190
http://marc.info/?l=bugtraq&m=95984116811100&w=2
BUGTRAQ:20000531 Re: strike#2
http://www.redhat.com/support/errata/RHSA-2000-016.html
REDHAT:RHSA-2000:016
http://www.iss.net/security_center/static/4941.php
XF:linux-imwheel-symlink(4941)
CVE-2000-1191
htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that includes the full path.
2001-09-12
2017-10-18
CVE-2000-1191
http://www.securityfocus.com/bid/4366
BID:4366
http://www.securiteam.com/exploits/htDig_reveals_web_server_configuration_paths.html
MISC:http://www.securiteam.com/exploits/htDig_reveals_web_server_configuration_paths.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10526
OVAL:oval:org.mitre.oval:def:10526
https://exchange.xforce.ibmcloud.com/vulnerabilities/7367
XF:htdig-htsearch-path-disclosure(7367)
CVE-2000-1192
Buffer overflow in BTT Software SNMP Trap Watcher 1.16 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string trap.
2001-09-12
2001-12-16
CVE-2000-1192
http://www.securityfocus.com/bid/985
BID:985
http://www.bttsoftware.co.uk/snmptrap.html
MISC:http://www.bttsoftware.co.uk/snmptrap.html
http://www.securiteam.com/windowsntfocus/5ZP0C000KC.html
MISC:http://www.securiteam.com/windowsntfocus/5ZP0C000KC.html
XF:snmp-trapwatcher-string-dos
CVE-2000-1193
Performance Metrics Collector Daemon (PMCD) in Performance Copilot in IRIX 6.x allows remote attackers to cause a denial of service (resource exhaustion) via an extremely long string to the PMCD port.
2002-06-25
2002-06-15
CVE-2000-1193
http://archives.neohapsis.com/archives/bugtraq/2000-04/0056.html
BUGTRAQ:20000412 Performance Copilot for IRIX 6.5
ftp://patches.sgi.com/support/free/security/advisories/20020407-01-I
SGI:20020407-01-I
https://exchange.xforce.ibmcloud.com/vulnerabilities/4284
XF:irix-pcp-pmcd-dos(4284)
CVE-2000-1194
Argosoft FRP server 1.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to the (1) USER or (2) CWD commands.
2001-09-12
2001-12-16
CVE-2000-1194
http://www.securityfocus.com/bid/1227
BID:1227
http://www.mdma.za.net/fk/FK9.zip
MISC:http://www.mdma.za.net/fk/FK9.zip
CVE-2000-1195
telnet daemon (telnetd) from the Linux netkit package before netkit-telnet-0.16 allows remote attackers to bypass authentication when telnetd is running with the -L command line option.
2002-03-09
2002-02-26
CVE-2000-1195
http://www.caldera.com/support/security/advisories/CSSA-2000-008.0.txt
CALDERA:CSSA-2000-008.0
https://exchange.xforce.ibmcloud.com/vulnerabilities/4225
XF:telnetd-login-bypass(4225)
CVE-2000-1196
PSCOErrPage.htm in Netscape PublishingXpert 2.5 before SP2 allows remote attackers to read arbitrary files by specifying the target file in the errPagePath parameter.
2002-03-09
2002-02-26
CVE-2000-1196
http://docs.iplanet.com/docs/manuals/pubx/2.5.2_Relnotes.html
CONFIRM:http://docs.iplanet.com/docs/manuals/pubx/2.5.2_Relnotes.html
http://packetstormsecurity.org/0004-exploits/ooo1.txt
MISC:http://packetstormsecurity.org/0004-exploits/ooo1.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/7362
XF:publishingxpert-pscoerrpage-url(7362)
CVE-2000-1197
POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows local users to cause a denial of service (lack of mail access) for other users by creating lock files for other mail boxes.
2001-09-12
2016-10-17
CVE-2000-1197
http://www.securityfocus.com/bid/1132
BID:1132
http://marc.info/?l=bugtraq&m=95624629924545&w=2
BUGTRAQ:20000420 pop3d/imap DOS (while we're on the subject)
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:15.imap-uw.asc
FREEBSD:FreeBSD-SA-00:15
CVE-2000-1198
qpopper POP server creates lock files with predictable names, which allows local users to cause a denial of service for other users (lack of mail access) by creating lock files for other mail boxes.
2001-09-12
2016-10-17
CVE-2000-1198
http://www.securityfocus.com/bid/1132
BID:1132
http://marc.info/?l=bugtraq&m=95634229925906&w=2
BUGTRAQ:20000420 pop3
http://marc.info/?l=bugtraq&m=95624629924545&w=2
BUGTRAQ:20000420 pop3d/imap DOS (while we're on the subject)
CVE-2000-1199
PostgreSQL stores usernames and passwords in plaintext in (1) pg_shadow and (2) pg_pwd, which allows attackers with sufficient privileges to gain access to databases.
2001-09-12
2017-12-18
CVE-2000-1199
http://www.securityfocus.com/bid/1139
BID:1139
http://marc.info/?l=bugtraq&m=95659987018649&w=2
BUGTRAQ:20000423 Postgresql cleartext password storage
https://exchange.xforce.ibmcloud.com/vulnerabilities/4364
XF:postgresql-plaintext-passwords(4364)
CVE-2000-1200
Windows NT allows remote attackers to list all users in a domain by obtaining the domain SID with the LsaQueryInformationPolicy policy function via a null session and using the SID to list the users.
2002-03-09
2002-03-01
CVE-2000-1200
http://www.securityfocus.com/bid/959
BID:959
http://www.securityfocus.com/archive/1/44430
BUGTRAQ:20000201 Windows NT and account list leak ! A new SID usage
https://exchange.xforce.ibmcloud.com/vulnerabilities/4015
XF:nt-lsa-domain-sid(4015)
CVE-2000-1201
Check Point FireWall-1 allows remote attackers to cause a denial of service (high CPU) via a flood of packets to port 264.
2001-09-12
2001-12-16
CVE-2000-1201
http://archives.neohapsis.com/archives/bugtraq/2000-07/0085.html
BUGTRAQ:20000707 Re: CheckPoint FW1 BUG
CVE-2000-1202
ikeyman in IBM IBMHSSSB 1.0 sets the CLASSPATH environmental variable to include the user's own CLASSPATH directories before the system's directories, which allows a malicious local user to execute arbitrary code as root via a Trojan horse Ikeyman class.
2001-09-12
2017-12-18
CVE-2000-1202
http://www.securityfocus.com/bid/1092
BID:1092
http://www.securityfocus.com/archive/1/54073
BUGTRAQ:20000405 minor issue with IBM HTTPD and /usr/bin/ikeyman
https://exchange.xforce.ibmcloud.com/vulnerabilities/4235
XF:ibm-ikeyman(4235)
CVE-2000-1203
Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop.
2004-09-01
2003-03-24
CVE-2000-1203
http://www.securityfocus.com/bid/3212
BID:3212
http://www.securityfocus.com/cgi-bin/archive.pl?id=1&start=2002-01-21&end=2002-01-27&mid=209116&threads=1
BUGTRAQ:20010820 Lotus Domino DoS
http://www.securityfocus.com/archive/1/209754
BUGTRAQ:20010823 Lotus Domino DoS solution
http://marc.info/?l=vuln-dev&m=95886062521327&w=2
VULN-DEV:20000520 Infinite loop in LOTUS NOTE 5.0.3. SMTP SERVER
https://exchange.xforce.ibmcloud.com/vulnerabilities/7012
XF:lotus-domino-bounced-message-dos(7012)
CVE-2000-1204
Vulnerability in the mod_vhost_alias virtual hosting module for Apache 1.3.9, 1.3.11 and 1.3.12 allows remote attackers to obtain the source code for CGI programs if the cgi-bin directory is under the document root.
2002-08-31
2021-06-06
CVE-2000-1204
http://www.apacheweek.com/issues/00-10-13
CONFIRM:http://www.apacheweek.com/issues/00-10-13
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073140 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210606 svn commit: r1075470 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
CVE-2000-1205
Cross site scripting vulnerabilities in Apache 1.3.0 through 1.3.11 allow remote attackers to execute script as other web site visitors via (1) the printenv CGI (printenv.pl), which does not encode its output, (2) pages generated by the ap_send_error_response function such as a default 404, which does not add an explicit charset, or (3) various messages that are generated by certain Apache modules or core code. NOTE: the printenv issue might still exist for web browsers that can render text/plain content types as HTML, such as Internet Explorer, but CVE regards this as a design limitation of those browsers, not Apache. The printenv.pl/acuparam vector, discloser on 20070724, is one such variant.
2002-08-31
2021-06-06
CVE-2000-1205
http://archives.neohapsis.com/archives/bugtraq/2002-12/0233.html
BUGTRAQ:20021222 'printenv' XSS vulnerability
http://archive.cert.uni-stuttgart.de/bugtraq/2002/12/msg00243.html
BUGTRAQ:20021223 Re: 'printenv' XSS vulnerability
http://marc.info/?l=bugtraq&m=118529436424127&w=2
BUGTRAQ:20070724 printenv.pl(all versions) cross site scripting Vulnerability
http://httpd.apache.org/info/css-security/apache_specific.html
CONFIRM:http://httpd.apache.org/info/css-security/apache_specific.html
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073140 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210606 svn commit: r1075470 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/35597
XF:apache-printenv-acuparam-xss(35597)
https://exchange.xforce.ibmcloud.com/vulnerabilities/10938
XF:apache-printenv-xss(10938)
CVE-2000-1206
Vulnerability in Apache httpd before 1.3.11, when configured for mass virtual hosting using mod_rewrite, or mod_vhost_alias in Apache 1.3.9, allows remote attackers to retrieve arbitrary files.
2002-08-31
2021-06-06
CVE-2000-1206
http://www.apacheweek.com/issues/00-01-07#status
CONFIRM:http://www.apacheweek.com/issues/00-01-07#status
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073140 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e@%3Ccvs.httpd.apache.org%3E
MLIST:[httpd-cvs] 20210606 svn commit: r1075470 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
CVE-2000-1207
userhelper in the usermode package on Red Hat Linux executes non-setuid programs as root, which does not activate the security measures in glibc and allows the programs to be exploited via format string vulnerabilities in glibc via the LANG or LC_ALL environment variables (CVE-2000-0844).
2002-07-31
2016-10-17
CVE-2000-1207
http://marc.info/?l=bugtraq&m=97034397026473&w=2
BUGTRAQ:20000930 glibc and userhelper - local root
http://marc.info/?l=bugtraq&m=97063854808796&w=2
BUGTRAQ:20001003 SuSE: userhelper/usermode
http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-059.php3
MANDRAKE:MDKSA-2000:059
http://www.redhat.com/support/errata/RHSA-2000-075.html
REDHAT:RHSA-2000:075
CVE-2000-1208
Format string vulnerability in startprinting() function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote() call.
2002-08-01
2016-10-17
CVE-2000-1208
http://www.securityfocus.com/bid/1711
BID:1711
http://marc.info/?l=bugtraq&m=96994604300675&w=2
BUGTRAQ:20000925 Format strings: bug #1: BSD-lpr
http://online.securityfocus.com/archive/1/137555
BUGTRAQ:20001004 Immunix OS Security Update for lpr
CONECTIVA:CLSA-2000:321
MANDRAKE:MDKSA-2000:054
http://www.redhat.com/support/errata/RHSA-2000-066.html
REDHAT:RHSA-2000:066
http://www.iss.net/security_center/static/5286.php
XF:lpr-checkremote-format-string(5286)
CVE-2000-1209
The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engine (MSDE) 1.0, including third party packages that use these products such as (4) Tumbleweed Secure Mail (MMS) (5) Compaq Insight Manager, and (6) Visio 2000, which allows remote attackers to gain privileges, as exploited by worms such as Voyager Alpha Force and Spida.
2002-08-10
2016-10-17
CVE-2000-1209
http://www.securityfocus.com/bid/4797
BID:4797
http://marc.info/?l=bugtraq&m=96333895000350&w=2
BUGTRAQ:20000710 MSDE / Re: Default Password Database
http://marc.info/?l=bugtraq&m=96593218804850&w=2
BUGTRAQ:20000810 Tumbleweed Worldsecure (MMS) BLANK 'sa' account password
http://security-archive.merton.ox.ac.uk/bugtraq-200008/0233.html
BUGTRAQ:20000815 MS-SQL 'sa' user exploit code
http://marc.info/?l=bugtraq&m=96644570412692&w=2
BUGTRAQ:20000816 Released Patch: Tumbleweed Worldsecure (MMS) BLANK 'sa' account password
http://online.securityfocus.com/archive/1/273639
BUGTRAQ:20020522 Opty-Way Enterprise includes MSDE with sa <blank>
http://www.kb.cert.org/vuls/id/635463
CERT-VN:VU#635463
COMPAQ:SSRT2195
http://www.microsoft.com/security/security_bulletins/ms02020_sql.asp
CONFIRM:http://www.microsoft.com/security/security_bulletins/ms02020_sql.asp
ISS:20020521 Microsoft SQL Spida Worm Propagation
http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q313418
MSKB:Q313418
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q321081
MSKB:Q321081
http://www.osvdb.org/3570
OSVDB:3570
http://www.iss.net/security_center/static/1459.php
XF:mssql-no-sapassword(1459)
CVE-2000-1210
Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the argument to source.jsp.
2003-04-02
2002-09-10
CVE-2000-1210
http://marc.info/?l=bugtraq&m=95371672300045&w=2
BUGTRAQ:20000322 Security bug in Apache project: Jakarta Tomcat
http://www.iss.net/security_center/static/4205.php
XF:apache-tomcat-file-contents(4205)
CVE-2000-1211
Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities.
2003-04-02
2003-03-17
CVE-2000-1211
BUGTRAQ:20001222 Zope DTML Role Issue
http://www.zope.org/Products/Zope/Hotfix_2000-12-08/security_alert
CONFIRM:http://www.zope.org/Products/Zope/Hotfix_2000-12-08/security_alert
http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-083.php3
MANDRAKE:MDKSA-2000:083
http://www.osvdb.org/6282
OSVDB:6282
http://www.redhat.com/support/errata/RHSA-2000-125.html
REDHAT:RHSA-2000:125
http://www.iss.net/security_center/static/5824.php
XF:zope-legacy-names(5824)
CVE-2000-1212
Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects.
2003-04-02
2002-09-10
CVE-2000-1212
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000365
CONECTIVA:CLA-2000:365
http://www.zope.org/Products/Zope/Hotfix_2000-12-18/security_alert
CONFIRM:http://www.zope.org/Products/Zope/Hotfix_2000-12-18/security_alert
http://www.debian.org/security/2001/dsa-007
DEBIAN:DSA-007
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:086
MANDRAKE:MDKSA-2000:086
http://www.osvdb.org/6283
OSVDB:6283
http://www.redhat.com/support/errata/RHSA-2000-135.html
REDHAT:RHSA-2000:135
https://exchange.xforce.ibmcloud.com/vulnerabilities/5778
XF:zope-image-file(5778)
CVE-2000-1213
ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, does not drop privileges after acquiring a raw socket, which increases ping's exposure to bugs that otherwise would occur at lower privileges.
2002-08-31
2016-10-17
CVE-2000-1213
http://marc.info/?l=bugtraq&m=97249980727834&w=2
BUGTRAQ:20001025 Immunix OS Security Update for ping package
http://archives.neohapsis.com/archives/bugtraq/2000-10/0429.html
BUGTRAQ:20001030 Trustix Security Advisory - ping gnupg ypbind
http://www.redhat.com/support/errata/RHSA-2000-087.html
REDHAT:RHSA-2000:087
CVE-2000-1214
Buffer overflows in the (1) outpack or (2) buf variables of ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, may allow local users to gain privileges.
2002-08-31
2016-10-17
CVE-2000-1214
http://www.securityfocus.com/bid/1813
BID:1813
http://marc.info/?l=bugtraq&m=97208562830613&w=2
BUGTRAQ:20001020 Re: [RHSA-2000:087-02] Potential security problems in ping fixed.
http://marc.info/?l=bugtraq&m=97249980727834&w=2
BUGTRAQ:20001025 Immunix OS Security Update for ping package
http://archives.neohapsis.com/archives/bugtraq/2000-10/0429.html
BUGTRAQ:20001030 Trustix Security Advisory - ping gnupg ypbind
http://www.redhat.com/support/errata/RHSA-2000-087.html
REDHAT:RHSA-2000:087
http://www.iss.net/security_center/static/5431.php
XF:ping-buf-bo(5431)
CVE-2000-1215
The default configuration of Lotus Domino server 5.0.8 includes system information (version, operating system, and build date) in the HTTP headers of replies, which allows remote attackers to obtain sensitive information.
2005-04-21
2017-07-10
CVE-2000-1215
http://marc.info/?l=bugtraq&m=100094373621813&w=2
BUGTRAQ:20010919 lotus domino server 5.08 is very gabby
http://www.kb.cert.org/vuls/id/984555
CERT-VN:VU#984555
http://www-10.lotus.com/ldd/r5fixlist.nsf/5c087391999d06e7852569280062619d/5552251934afaa9585256c0000737a7f?OpenDocument&Highlight=0,AWHN4A8QWM
CONFIRM:http://www-10.lotus.com/ldd/r5fixlist.nsf/5c087391999d06e7852569280062619d/5552251934afaa9585256c0000737a7f?OpenDocument&Highlight=0,AWHN4A8QWM
https://exchange.xforce.ibmcloud.com/vulnerabilities/10685
XF:lotus-domino-information-disclosure(10685)
CVE-2000-1216
Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_error routine.
2005-04-21
2017-07-10
CVE-2000-1216
http://www-1.ibm.com/support/docview.wss?uid=isg1IY07832
AIXAPAR:IY07832
http://www.kb.cert.org/vuls/id/433499
CERT-VN:VU#433499
https://exchange.xforce.ibmcloud.com/vulnerabilities/7929
XF:aix-portmir-echoerror-bo(7929)
CVE-2000-1217
Microsoft Windows 2000 before Service Pack 2 (SP2), when running in a non-Windows 2000 domain and using NTLM authentication, and when credentials of an account are locally cached, allows local users to bypass account lockout policies and make an unlimited number of login attempts, aka the "Domain Account Lockout" vulnerability.
2005-04-21
2018-10-12
CVE-2000-1217
http://www.securityfocus.com/bid/1973
BID:1973
http://www.kb.cert.org/vuls/id/818496
CERT-VN:VU#818496
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-089
MS:MS00-089
https://exchange.xforce.ibmcloud.com/vulnerabilities/5585
XF:win2k-brute-force(5585)
CVE-2000-1218
The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote attackers to poison the DNS cache.
2005-04-21
2017-07-10
CVE-2000-1218
http://www.kb.cert.org/vuls/id/458659
CERT-VN:VU#458659
https://exchange.xforce.ibmcloud.com/vulnerabilities/4280
XF:win2k-dns-resolver(4280)
CVE-2000-1219
The -ftrapv compiler option in gcc and g++ 3.3.3 and earlier does not handle all types of integer overflows, which may leave applications vulnerable to vulnerabilities related to overflows.
2005-04-21
CVE-2000-1219
http://www.kb.cert.org/vuls/id/540517
CERT-VN:VU#540517
http://gcc.gnu.org/ml/gcc-bugs/2002-05/msg00198.html
MLIST:[gcc-bugs] 20020506 c/6586: -ftrapv doesn't catch multiplication overflow
CVE-2000-1220
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.
2005-04-21
2017-07-10
CVE-2000-1220
http://www.securityfocus.com/bid/927
BID:927
http://seclists.org/lists/bugtraq/2000/Jan/0116.html
BUGTRAQ:20000108 L0pht Advisory: LPD, RH 4.x,5.x,6.x
http://www.kb.cert.org/vuls/id/39001
CERT-VN:VU#39001
http://www.debian.org/security/2000/20000109
DEBIAN:20000109 lpr -- access control problem and root exploit
http://www.l0pht.com/advisories/lpd_advisory
L0PHT:20000108 Quadruple Inverted Backflip
http://www.atstake.com/research/advisories/2000/lpd_advisory.txt
MISC:http://www.atstake.com/research/advisories/2000/lpd_advisory.txt
http://www.redhat.com/support/errata/RHSA-2000-002.html
REDHAT:RHSA-2000:002
ftp://patches.sgi.com/support/free/security/advisories/20021104-01-P
SGI:20021104-01-P
https://exchange.xforce.ibmcloud.com/vulnerabilities/3841
XF:redhat-lpd-print-control(3841)
CVE-2000-1221
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.
2005-04-21
2017-07-10
CVE-2000-1221
http://www.atstake.com/research/advisories/2000/lpd_advisory.txt
ATSTAKE:A010800-v
http://www.securityfocus.com/bid/927
BID:927
http://www.kb.cert.org/vuls/id/30308
CERT-VN:VU#30308
http://www.debian.org/security/2000/20000109
DEBIAN:20000109 lpr -- access control problem and root exploit
http://www.l0pht.com/advisories/lpd_advisory
L0PHT:20000108 Quadruple Inverted Backflip
http://rhn.redhat.com/errata/RHSA-2000-002.html
REDHAT:RHSA-2000:002
ftp://patches.sgi.com/support/free/security/advisories/20021104-01-P
SGI:20021104-01-P
https://exchange.xforce.ibmcloud.com/vulnerabilities/3840
XF:redhat-lpd-auth(3840)
CVE-2000-1222
AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program.
2005-04-21
2017-07-10
CVE-2000-1222
http://www.kb.cert.org/vuls/id/17566
CERT-VN:VU#17566
https://exchange.xforce.ibmcloud.com/vulnerabilities/6432
XF:aix-sysback-elevate-privileges(6432)
CVE-2000-1223
quikstore.cgi in Quikstore Shopping Cart allows remote attackers to execute arbitrary commands via shell metacharacters in the URL portion of an HTTP GET request.
2005-04-21
CVE-2000-1223
http://www.kb.cert.org/vuls/id/671444
CERT-VN:VU#671444
CVE-2000-1224
Caucho Technology Resin 1.2 and possibly earlier allows remote attackers to view JSP source via an HTTP request to a .jsp file with certain characters appended to the file name, such as (1) "..", (2) "%2e..", (3) "%81", (4) "%82", and others.
2005-05-19
2017-07-10
CVE-2000-1224
http://www.securityfocus.com/bid/1986
BID:1986
http://marc.info/?l=bugtraq&m=97502269408279&w=2
BUGTRAQ:20001123 RESIN ServletExec JSP Source Disclosure Vulnerability(Apache 1.3.6 Win2k))
http://www.securityfocus.com/archive/1/146770
BUGTRAQ:20001123 Re: RESIN ServletExec JSP Source Disclosure Vulnerability(Apache 1.3.6 Win2k))
https://exchange.xforce.ibmcloud.com/vulnerabilities/5568
XF:resin-jsp-source-disclosure(5568)
CVE-2000-1225
Xitami 2.5b installs the testcgi.exe program by default in the cgi-bin directory, which allows remote attackers to gain sensitive configuration information about the web server by accessing the program.
2005-06-21
2021-06-15
CVE-2000-1225
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0109.html
MISC:http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0109.html
CVE-2000-1226
Snort 1.6, when running in straight ASCII packet logging mode or IDS mode with straight decoded ASCII packet logging selected, allows remote attackers to cause a denial of service (crash) by sending non-IP protocols that Snort does not know about, as demonstrated by an nmap protocol scan.
2005-06-21
CVE-2000-1226
http://archives.neohapsis.com/archives/bugtraq/2000-06/0126.html
BUGTRAQ:20000614 Re: Snort 1.6 and nmap 2.54beta1
http://archives.neohapsis.com/archives/bugtraq/2000-06/0122.html
BUGTRAQ:20000614 Snort 1.6 and nmap 2.54beta1
CVE-2000-1227
Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause a denial of service (unavailable connections) by sending multiple SMB SMBnegprots requests but not reading the response that is sent back.
2005-06-28
CVE-2000-1227
http://www.securityfocus.com/bid/1301
BID:1301
http://www.securityfocus.com/archive/1/63322
BUGTRAQ:20000605 anonymous SMB service DoS on nt5 (and TCP DoS on nt4) (fwd)
CVE-2000-1228
Phorum 3.0.7 allows remote attackers to change the administrator password without authentication via an HTTP request for admin.php3 that sets step, option, confirm and newPssword variables.
2005-07-14
2021-06-15
CVE-2000-1228
http://www.securityfocus.com/bid/2271
BID:2271
http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.html
BUGTRAQ:20000106 Phorum 3.0.7 exploits and IDS signatures
http://hispahack.ccc.de/mi020.html
MISC:http://hispahack.ccc.de/mi020.html
http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
MISC:http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
CVE-2000-1229
Directory traversal vulnerability in Phorum 3.0.7 allows remote Phorum administrators to read arbitrary files via ".." (dot dot) sequences in the default .langfile name field in the Master Settings administrative function, which causes the file to be displayed in admin.php3.
2005-07-14
CVE-2000-1229
http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.html
BUGTRAQ:20000106 Phorum 3.0.7 exploits and IDS signatures
http://hispahack.ccc.de/mi020.html
MISC:http://hispahack.ccc.de/mi020.html
http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
MISC:http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
CVE-2000-1230
Backdoor in auth.php3 in Phorum 3.0.7 allows remote attackers to access restricted web pages via an HTTP request with the PHP_AUTH_USER parameter set to "boogieman".
2005-07-14
CVE-2000-1230
http://www.securityfocus.com/bid/2274
BID:2274
http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.html
BUGTRAQ:20000106 Phorum 3.0.7 exploits and IDS signatures
http://hispahack.ccc.de/mi020.html
MISC:http://hispahack.ccc.de/mi020.html
http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
MISC:http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
CVE-2000-1231
code.php3 in Phorum 3.0.7 allows remote attackers to read arbitrary files in the phorum directory via the query string.
2005-07-14
CVE-2000-1231
http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.html
BUGTRAQ:20000106 Phorum 3.0.7 exploits and IDS signatures
http://hispahack.ccc.de/mi020.html
MISC:http://hispahack.ccc.de/mi020.html
http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
MISC:http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
CVE-2000-1232
upgrade.php3 in Phorum 3.0.7 could allow remote attackers to modify certain Phorum database tables via an unknown method.
2005-07-14
CVE-2000-1232
http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.html
BUGTRAQ:20000106 Phorum 3.0.7 exploits and IDS signatures
http://hispahack.ccc.de/mi020.html
MISC:http://hispahack.ccc.de/mi020.html
http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
MISC:http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
CVE-2000-1233
SQL injection vulnerability in read.php3 and other scripts in Phorum 3.0.7 allows remote attackers to execute arbitrary SQL queries via the sSQL parameter.
2005-07-14
2021-06-15
CVE-2000-1233
http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.html
BUGTRAQ:20000106 Phorum 3.0.7 exploits and IDS signatures
http://hispahack.ccc.de/mi020.html
MISC:http://hispahack.ccc.de/mi020.html
http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
MISC:http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
CVE-2000-1234
violation.php3 in Phorum 3.0.7 allows remote attackers to send e-mails to arbitrary addresses and possibly use Phorum as a "spam proxy" by setting the Mod and ForumName parameters.
2005-07-14
CVE-2000-1234
http://www.securityfocus.com/bid/2272
BID:2272
http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.html
BUGTRAQ:20000106 Phorum 3.0.7 exploits and IDS signatures
http://hispahack.ccc.de/mi020.html
MISC:http://hispahack.ccc.de/mi020.html
http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
MISC:http://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htm
CVE-2000-1235
The default configurations of (1) the port listener and (2) modplsql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor (DAD) files.
2005-07-14
CVE-2000-1235
http://www.securityfocus.com/bid/2150
BID:2150
http://archives.neohapsis.com/archives/bugtraq/2000-12/0339.html
BUGTRAQ:20001219 Oracle WebDb engine brain-damagse
http://archives.neohapsis.com/archives/bugtraq/2000-12/0372.html
BUGTRAQ:20001221 Re: Oracle WebDb engine brain-damagse
http://archives.neohapsis.com/archives/bugtraq/2000-12/0463.html
BUGTRAQ:20001223 Potential Vulnerabilities in Oracle Internet Application Server
http://online.securityfocus.com/archive/1/155881
BUGTRAQ:20010110 Patch for Potential Vulnerability in Oracle Internet Application Server
http://www.iss.net/security_center/static/5818.php
XF:oracle-webdb-admin-access(5818)
CVE-2000-1236
SQL injection vulnerability in mod_sql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the query string of the URL.
2005-07-14
2006-11-02
CVE-2000-1236
http://www.securityfocus.com/bid/2150
BID:2150
http://archives.neohapsis.com/archives/bugtraq/2000-12/0339.html
BUGTRAQ:20001219 Oracle WebDb engine brain-damagse
http://archives.neohapsis.com/archives/bugtraq/2000-12/0372.html
BUGTRAQ:20001221 Re: Oracle WebDb engine brain-damagse
http://archives.neohapsis.com/archives/bugtraq/2000-12/0463.html
BUGTRAQ:20001223 Potential Vulnerabilities in Oracle Internet Application Server
http://online.securityfocus.com/archive/1/155881
BUGTRAQ:20010110 Patch for Potential Vulnerability in Oracle Internet Application Server
http://www.iss.net/security_center/static/5817.php
XF:oracle-execute-plsql(5817)
CVE-2000-1237
The POP3 server in FTGate returns an -ERR code after receiving an invalid USER request, which makes it easier for remote attackers to determine valid usernames and conduct brute force password guessing.
2005-07-14
CVE-2000-1237
http://archives.neohapsis.com/archives/bugtraq/2000-06/0282.html
BUGTRAQ:20000626 Problems with FTGate
http://www.iss.net/security_center/static/4793.php
XF:ftgate-invalid-user-requests(4793)
CVE-2000-1238
BEA Systems WebLogic Express and WebLogic Server 5.1 SP1-SP6 allows remote attackers to bypass access controls for restricted JSP or servlet pages via a URL with multiple / (forward slash) characters before the restricted pages.
2005-11-16
2017-07-10
CVE-2000-1238
http://www.securityfocus.com/bid/5089
BID:5089
ftp://ftpna.bea.com/pub/releases/patches/SecurityBEA00-0600.zip
CONFIRM:ftp://ftpna.bea.com/pub/releases/patches/SecurityBEA00-0600.zip
https://exchange.xforce.ibmcloud.com/vulnerabilities/5588
XF:weblogic-bypass-auth(5588)
CVE-2000-1239
The HTTP interface of Tivoli Lightweight Client Framework (LCF) in IBM Tivoli Management Framework 3.7.1 sets http_disable to zero at install time, which allows remote authenticated users to bypass file permissions on Tivoli Endpoint Configuration data files via an unspecified manipulation of log files.
2006-03-15
2017-07-19
CVE-2000-1239
http://www.securityfocus.com/bid/17085
BID:17085
http://www-1.ibm.com/support/docview.wss?uid=swg21082896
CONFIRM:http://www-1.ibm.com/support/docview.wss?uid=swg21082896
https://exchange.xforce.ibmcloud.com/vulnerabilities/3927
XF:tivoli-lcf-file-read(3927)
CVE-2000-1240
Unspecified vulnerability in siteman.php3 in AnyPortal(php) before 22 APR 00 allows remote attackers to obtain sensitive information via unknown attack vectors, which reveal the absolute path. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
2006-03-23
2017-07-19
CVE-2000-1240
http://www.osvdb.org/23983
OSVDB:23983
https://exchange.xforce.ibmcloud.com/vulnerabilities/25441
XF:anyportalphp-siteman-information-disclosure(25441)
CVE-2000-1241
Unspecified vulnerability in Haakon Nilsen simple, integrated publishing system (SIPS) before 0.2.4 has an unknown impact and attack vectors, related to a "grave security fault."
2006-09-13
2009-10-14
CVE-2000-1241
http://sourceforge.net/forum/forum.php?forum_id=25971
CONFIRM:http://sourceforge.net/forum/forum.php?forum_id=25971
CVE-2000-1242
The HTTP service in American Power Conversion (APC) PowerChute uses a default username and password, which allows remote attackers to gain system access.
2006-12-10
CVE-2000-1242
http://governmentsecurity.org/articles/DefaultLoginsandPasswordsforNetworkedDevices.php
MISC:http://governmentsecurity.org/articles/DefaultLoginsandPasswordsforNetworkedDevices.php
http://www.osvdb.org/30768
OSVDB:30768
CVE-2000-1243
Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user credentials to an e-mail address controlled by the product developers.
2007-06-06
2018-10-19
CVE-2000-1243
http://archives.neohapsis.com/archives/bugtraq/2000-04/0051.html
BUGTRAQ:20000411 Back Door in Commercial Shopping Cart
http://archives.neohapsis.com/archives/bugtraq/2000-04/0071.html
BUGTRAQ:20000413 Re: Back Door in Commercial Shopping Cart
http://archives.neohapsis.com/archives/bugtraq/2000-04/0086.html
BUGTRAQ:20000413 Re: Back Door in Commercial Shopping Cart [RESOLVED]
http://archives.neohapsis.com/archives/bugtraq/2000-04/0066.html
BUGTRAQ:20000413 Re: Back Door in Commercial Shopping Cart [Stormer Hosting]
http://www.securityfocus.com/archive/1/470457/100/0/threaded
BUGTRAQ:20070603 Dansie Cart Script Exploit Reported
CVE-2000-1244
Computer Associates InoculateIT Agent for Exchange Server does not recognize an e-mail virus attachment if the SMTP header is missing the "From" field, which allows remote attackers to bypass virus protection.
2007-10-18
CVE-2000-1244
http://archives.neohapsis.com/archives/bugtraq/2000-11/0158.html
BUGTRAQ:20001110 CA's InoculateIT Agent for Exchange Server
CVE-2000-1245
Multiple unspecified vulnerabilities in NWFTPD.nlm before 5.01o in the FTP server in Novell NetWare 5.1 SP3 allow remote attackers to bypass intended restrictions on anonymous access via unknown vectors.
2010-04-05
CVE-2000-1245
http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1
CONFIRM:http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1
CVE-2000-1246
NWFTPD.nlm before 5.01o in the FTP server in Novell NetWare 5.1 SP3 allows remote authenticated users to cause a denial of service (abend) by sending an RNTO command after a failed RNFR command.
2010-04-05
CVE-2000-1246
http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1
CONFIRM:http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1
CVE-2000-1247
The default configuration of the jserv-status handler in jserv.conf in Apache JServ 1.1.2 includes an "allow from 127.0.0.1" line, which allows local users to discover JDBC passwords or other sensitive information via a direct request to the jserv/ URI.
2011-10-04
2017-08-28
CVE-2000-1247
http://archive.apache.org/dist/java/java.apache.org-www.tar.gz
CONFIRM:http://archive.apache.org/dist/java/java.apache.org-www.tar.gz
http://marc.info/?l=java-apache-users&m=97036799917909&w=2
MLIST:[java-apache-users] 20000929 jserv wrapper error
http://securityreason.com/securityalert/8412
SREASON:8412
https://exchange.xforce.ibmcloud.com/vulnerabilities/51946
XF:apache-jserv-env-information-disclosure(51946)
CVE-2000-1248
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.
2020-11-05
2020-11-05
CVE-2000-1248
CVE-2000-1249
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.
2020-11-05
2020-11-05
CVE-2000-1249
CVE-2000-1250
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.
2020-11-05
2020-11-05
CVE-2000-1250
CVE-2000-1251
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.
2020-11-05
2020-11-05
CVE-2000-1251
CVE-2000-1252
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.
2020-11-05
2020-11-05
CVE-2000-1252
CVE-2000-1253
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE-2000-1253
CVE-2000-1254
crypto/rsa/rsa_gen.c in OpenSSL before 0.9.6 mishandles C bitwise-shift operations that exceed the size of an expression, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging improper RSA key generation on 64-bit HP-UX platforms.
2016-05-04
2017-01-31
CVE-2000-1254
http://www.securityfocus.com/bid/90109
BID:90109
http://www-01.ibm.com/support/docview.wss?uid=swg21995039
CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21995039
https://git.openssl.org/?p=openssl.git;a=commit;h=db82b8f9bd432a59aea8e1014694e15fc457c2bb
CONFIRM:https://git.openssl.org/?p=openssl.git;a=commit;h=db82b8f9bd432a59aea8e1014694e15fc457c2bb
http://marc.info/?l=openssl-users&m=95961024500509
MLIST:[openssl-users] 20000529 64 bit problem in RSA_generate_key in 0.9.5a
http://www.openwall.com/lists/oss-security/2016/05/04/17
MLIST:[oss-security] 20160504 broken RSA keys
http://www.securitytracker.com/id/1035750
SECTRACK:1035750