Total
27865 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0763 | 1 David Bagley | 1 Xlock | 2008-09-05 | 7.2 HIGH | N/A |
| xlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option. | |||||
| CVE-2000-0730 | 1 Hp | 1 Hp-ux | 2008-09-05 | 4.6 MEDIUM | N/A |
| Vulnerability in newgrp command in HP-UX 11.0 allows local users to gain privileges. | |||||
| CVE-2000-0733 | 1 Sgi | 1 Irix | 2008-09-05 | 10.0 HIGH | N/A |
| Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request. | |||||
| CVE-2000-0735 | 1 Rimarts Inc. | 1 Becky Internet Mail | 2008-09-05 | 5.0 MEDIUM | N/A |
| Buffer overflow in Becky! Internet Mail client 1.26.03 and earlier allows remote attackers to cause a denial of service via a long Content-type: MIME header when the user replies to a message. | |||||
| CVE-2000-0736 | 1 Rimarts Inc. | 1 Becky Internet Mail | 2008-09-05 | 5.0 MEDIUM | N/A |
| Buffer overflow in Becky! Internet Mail client 1.26.04 and earlier allows remote attackers to cause a denial of service via a long Content-type: MIME header when the user forwards a message. | |||||
| CVE-2000-0741 | 1 Network Associates | 1 Net Tools Pki Server | 2008-09-05 | 7.5 HIGH | N/A |
| Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary code via format strings in a URL with a .XUDA extension. | |||||
| CVE-2000-0743 | 1 University Of Minnesota | 1 Gopherd | 2008-09-05 | 10.0 HIGH | N/A |
| Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value. | |||||
| CVE-2000-0745 | 1 Francisco Burzi | 1 Php-nuke | 2008-09-05 | 7.5 HIGH | N/A |
| admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd parameter. | |||||
| CVE-2000-0748 | 1 Openldap | 1 Openldap | 2008-09-05 | 4.6 MEDIUM | N/A |
| OpenLDAP 1.2.11 and earlier improperly installs the ud binary with group write permissions, which could allow any user in that group to replace the binary with a Trojan horse. | |||||
| CVE-2000-0751 | 3 Netbsd, Openbsd, Redhat | 3 Netbsd, Openbsd, Linux | 2008-09-05 | 7.5 HIGH | N/A |
| mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands. | |||||
| CVE-2000-0752 | 1 Freebsd | 1 Freebsd | 2008-09-05 | 7.2 HIGH | N/A |
| Buffer overflows in brouted in FreeBSD and possibly other OSes allows local users to gain root privileges via long command line arguments. | |||||
| CVE-2000-0754 | 1 Hp | 1 Openview Network Node Manager | 2008-09-05 | 2.1 LOW | N/A |
| Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords. | |||||
| CVE-2000-0755 | 1 Hp | 1 Openview Network Node Manager | 2008-09-05 | 4.6 MEDIUM | N/A |
| Vulnerability in the newgrp command in HP-UX 11.00 allows local users to gain privileges. | |||||
| CVE-2000-0756 | 1 Microsoft | 1 Outlook | 2008-09-05 | 5.0 MEDIUM | N/A |
| Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows attackers to cause a denial of service. | |||||
| CVE-2000-0757 | 1 Aptis Software | 1 Totalbill | 2008-09-05 | 10.0 HIGH | N/A |
| The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed. | |||||
| CVE-2000-0758 | 1 Lyris | 1 List Manager | 2008-09-05 | 4.6 MEDIUM | N/A |
| The web interface for Lyris List Manager 3 and 4 allows list subscribers to obtain administrative access by modifying the value of the list_admin hidden form field. | |||||
| CVE-2000-0759 | 1 Apache | 1 Tomcat | 2008-09-05 | 6.4 MEDIUM | N/A |
| Jakarta Tomcat 3.1 under Apache reveals physical path information when a remote attacker requests a URL that does not exist, which generates an error message that includes the physical path. | |||||
| CVE-2000-0760 | 1 Apache | 1 Tomcat | 2008-09-05 | 6.4 MEDIUM | N/A |
| The Snoop servlet in Jakarta Tomcat 3.1 and 3.0 under Apache reveals sensitive system information when a remote attacker requests a nonexistent URL with a .snp extension. | |||||
| CVE-2000-0774 | 1 Bajie | 1 Java Http Server | 2008-09-05 | 5.0 MEDIUM | N/A |
| The sample Java servlet "test" in Bajie HTTP web server 0.30a reveals the real pathname of the web document root. | |||||
| CVE-2000-0775 | 1 Robtex | 1 Viking Server | 2008-09-05 | 7.5 HIGH | N/A |
| Buffer overflow in RobTex Viking server earlier than 1.06-370 allows remote attackers to cause a denial of service or execute arbitrary commands via a long HTTP GET request, or long Unless-Modified-Since, If-Range, or If-Modified-Since headers. | |||||