Total
27865 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0170 | 2 Redhat, Turbolinux | 2 Linux, Turbolinux | 2008-09-10 | 7.2 HIGH | N/A |
| Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable. | |||||
| CVE-2000-0171 | 1 At Computing | 1 Atsar Linux | 2008-09-10 | 7.2 HIGH | N/A |
| atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges. | |||||
| CVE-2000-0172 | 2 Matt Kimball And Roger Wolff, Turbolinux | 2 Mtr, Turbolinux | 2008-09-10 | 7.2 HIGH | N/A |
| The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges. | |||||
| CVE-2000-0173 | 1 Sco | 1 Unixware | 2008-09-10 | 5.0 MEDIUM | N/A |
| Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service. | |||||
| CVE-2000-0174 | 1 Sun | 1 Staroffice | 2008-09-10 | 5.0 MEDIUM | N/A |
| StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-2000-0175 | 1 Sun | 1 Staroffice | 2008-09-10 | 10.0 HIGH | N/A |
| Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command. | |||||
| CVE-2000-0176 | 1 Cat Soft | 1 Serv-u | 2008-09-10 | 5.0 MEDIUM | N/A |
| The default configuration of Serv-U 2.5d and earlier allows remote attackers to determine the real pathname of the server by requesting a URL for a directory or file that does not exist. | |||||
| CVE-2000-0177 | 1 Dnstools Software | 1 Dnstools | 2008-09-10 | 10.0 HIGH | N/A |
| DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters. | |||||
| CVE-2000-0178 | 1 Foundrynet | 1 Serveriron | 2008-09-10 | 7.5 HIGH | N/A |
| ServerIron switches by Foundry Networks have predictable TCP/IP sequence numbers, which allows remote attackers to spoof or hijack sessions. | |||||
| CVE-2000-0179 | 1 Hp | 1 Openview Omniback Ii | 2008-09-10 | 5.0 MEDIUM | N/A |
| HP OpenView OmniBack 2.55 allows remote attackers to cause a denial of service via a large number of connections to port 5555. | |||||
| CVE-2000-0181 | 1 Checkpoint | 1 Firewall-1 | 2008-09-10 | 5.0 MEDIUM | N/A |
| Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection. | |||||
| CVE-2000-0183 | 1 Michael Sandrof | 1 Ircii | 2008-09-10 | 5.1 MEDIUM | N/A |
| Buffer overflow in ircII 4.4 IRC client allows remote attackers to execute commands via the DCC chat capability. | |||||
| CVE-2000-0184 | 2 Mandrakesoft, Redhat | 2 Mandrake Linux, Linux | 2008-09-10 | 2.1 LOW | N/A |
| Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords. | |||||
| CVE-2000-0185 | 1 Realnetworks | 2 Realserver, Realserver G2 | 2008-09-10 | 5.0 MEDIUM | N/A |
| RealMedia RealServer reveals the real IP address of a Real Server, even if the address is supposed to be private. | |||||
| CVE-2000-0186 | 4 Freebsd, Mandrakesoft, Redhat and 1 more | 4 Freebsd, Mandrake Linux, Linux and 1 more | 2008-09-10 | 7.2 HIGH | N/A |
| Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument. | |||||
| CVE-2000-0187 | 1 Alex Heiphetz Group | 1 Ezshopper | 2008-09-10 | 7.5 HIGH | N/A |
| EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters. | |||||
| CVE-2000-0188 | 1 Alex Heiphetz Group | 1 Ezshopper | 2008-09-10 | 7.5 HIGH | N/A |
| EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters. | |||||
| CVE-2000-0189 | 1 Allaire | 1 Coldfusion Server | 2008-09-10 | 5.0 MEDIUM | N/A |
| ColdFusion Server 4.x allows remote attackers to determine the real pathname of the server via an HTTP request to the application.cfm or onrequestend.cfm files. | |||||
| CVE-2000-0190 | 1 Aol | 1 Instant Messenger | 2008-09-10 | 5.0 MEDIUM | N/A |
| AOL Instant Messenger (AIM) client allows remote attackers to cause a denial of service via a message with a malformed ASCII value. | |||||
| CVE-2000-0191 | 1 Axis | 1 Storpoint Cd | 2008-09-10 | 10.0 HIGH | N/A |
| Axis StorPoint CD allows remote attackers to access administrator URLs without authentication via a .. (dot dot) attack. | |||||