Total
27865 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0939 | 1 Samba | 1 Samba | 2017-12-18 | 5.0 MEDIUM | N/A |
| Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows remote attackers to cause a denial of service by repeatedly submitting a nonstandard URL in the GET HTTP request and forcing it to restart. | |||||
| CVE-2000-0940 | 1 Metertek | 1 Pagelog.cgi | 2017-12-18 | 6.4 MEDIUM | N/A |
| Directory traversal vulnerability in Metertek pagelog.cgi allows remote attackers to read arbitrary files via a .. (dot dot) attack on the "name" or "display" parameter. | |||||
| CVE-2000-0971 | 1 Avirt | 1 Avirt Mail Server | 2017-12-18 | 10.0 HIGH | N/A |
| Avirt Mail 4.0 and 4.2 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long "RCPT TO" or "MAIL FROM" command. | |||||
| CVE-2000-0950 | 1 Tis | 1 Internet Firewall Toolkit | 2017-12-18 | 7.2 HIGH | N/A |
| Format string vulnerability in x-gw in TIS Firewall Toolkit (FWTK) allows local users to execute arbitrary commands via a malformed display name. | |||||
| CVE-2001-0374 | 1 Compaq | 1 Web-enabled Management | 2017-12-18 | 7.5 HIGH | N/A |
| The HTTP server in Compaq web-enabled management software for (1) Foundation Agents, (2) Survey, (3) Power Manager, (4) Availability Agents, (5) Intelligent Cluster Administrator, and (6) Insight Manager can be used as a generic proxy server, which allows remote attackers to bypass access restrictions via the management port, 2301. | |||||
| CVE-2000-0954 | 1 Evolvable Corporation | 1 Shambala Server | 2017-12-18 | 10.0 HIGH | N/A |
| Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server. | |||||
| CVE-2001-1064 | 1 Cisco | 1 Cbos | 2017-12-18 | 5.0 MEDIUM | N/A |
| Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap allows remote attackers to cause a denial of service via multiple connections to the router on the (1) HTTP or (2) telnet service, which causes the router to become unresponsive and stop forwarding packets. | |||||
| CVE-2001-1065 | 1 Cisco | 1 Cbos | 2017-12-18 | 5.0 MEDIUM | N/A |
| Web-based configuration utility in Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap binds itself to port 80 even when web-based configuration services are disabled, which could leave the router open to attack. | |||||
| CVE-2001-0783 | 1 Cisco | 1 Tftp Server | 2017-12-18 | 5.0 MEDIUM | N/A |
| Cisco TFTP server 1.1 allows remote attackers to read arbitrary files via a ..(dot dot) attack in the GET command. | |||||
| CVE-2000-0955 | 1 Cisco | 1 Virtual Central Office 4000 | 2017-12-18 | 7.5 HIGH | N/A |
| Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain privileges. | |||||
| CVE-2001-1068 | 1 Qualcomm | 1 Qpopper | 2017-12-18 | 5.0 MEDIUM | N/A |
| qpopper 4.01 with PAM based authentication on Red Hat systems generates different error messages when an invalid username is provided instead of a valid name, which allows remote attackers to determine valid usernames on the system. | |||||
| CVE-2001-1263 | 1 Pragma Systems | 1 Interaccess | 2017-12-18 | 5.0 MEDIUM | N/A |
| telnet95.exe in Pragma InterAccess 4.0 build 5 allows remote attackers to cause a denial of service (crash) via a large number of characters to port 23, possibly due to a buffer overflow. | |||||
| CVE-2001-1070 | 1 Sage Software | 1 Mas 200 | 2017-12-18 | 2.1 LOW | N/A |
| Sage Software MAS 200 allows remote attackers to cause a denial of service by connecting to port 10000 and entering a series of control characters. | |||||
| CVE-2001-0248 | 1 Hp | 1 Hp-ux | 2017-12-18 | 10.0 HIGH | N/A |
| Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the STAT command, which uses glob to generate long strings. | |||||
| CVE-2001-0778 | 1 Omnicron | 1 Omnihttpd | 2017-12-18 | 5.0 MEDIUM | N/A |
| OmniHTTPd 2.0.8 and earlier allow remote attackers to obtain source code via a GET request with the URL-encoded symbol for a space (%20). | |||||
| CVE-2001-1073 | 1 Webridge | 1 Px Application Suite | 2017-12-18 | 5.0 MEDIUM | N/A |
| Webridge PX Application Suite allows remote attackers to obtain sensitive information via a malformed request that generates a server error message, which includes full pathname or internal IP address information in the variables (1) APPL_PHYSICAL_PATH, (2) PATH_TRANSLATED, and (3) LOCAL_ADDR. | |||||
| CVE-2001-0782 | 1 Kde | 1 Ktv | 2017-12-18 | 7.2 HIGH | N/A |
| KDE ktvision 0.1.1-271 and earlier allows local attackers to gain root privileges via a symlink attack on a user configuration file. | |||||
| CVE-2000-0986 | 1 Oracle | 1 Oracle8i | 2017-12-18 | 4.6 MEDIUM | N/A |
| Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME environmental variable. | |||||
| CVE-2000-0987 | 1 Oracle | 2 Internet Directory, Oracle8i | 2017-12-18 | 4.6 MEDIUM | N/A |
| Buffer overflow in oidldapd in Oracle 8.1.6 allow local users to gain privileges via a long "connect" command line parameter. | |||||
| CVE-2001-1077 | 1 Rxvt | 1 Rxvt | 2017-12-18 | 4.6 MEDIUM | N/A |
| Buffer overflow in tt_printf function of rxvt 2.6.2 allows local users to gain privileges via a long (1) -T or (2) -name argument. | |||||