Total
27865 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0808 | 1 Checkpoint | 1 Firewall-1 | 2017-10-09 | 7.5 HIGH | N/A |
| The seed generation mechanism in the inter-module S/Key authentication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass authentication via a brute force attack, aka "One-time (s/key) Password Authentication." | |||||
| CVE-2000-0813 | 1 Checkpoint | 1 Firewall-1 | 2017-10-09 | 5.0 MEDIUM | N/A |
| Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers ("FTP Bounce") via invalid FTP commands that are processed improperly by FireWall-1, aka "FTP Connection Enforcement Bypass." | |||||
| CVE-2000-0816 | 1 Redhat | 1 Linux | 2017-10-09 | 2.1 LOW | N/A |
| Linux tmpwatch --fuser option allows local users to execute arbitrary commands by creating files whose names contain shell metacharacters. | |||||
| CVE-2001-1010 | 1 Sambar | 1 Sambar Server | 2017-10-09 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a .. (dot dot) attack on the page parameter. | |||||
| CVE-2000-0818 | 1 Oracle | 1 Listener | 2017-10-09 | 10.0 HIGH | N/A |
| The default installation for the Oracle listener program 7.3.4, 8.0.6, and 8.1.6 allows an attacker to cause logging information to be appended to arbitrary files and execute commands via the SET TRC_FILE or SET LOG_FILE commands. | |||||
| CVE-2000-0824 | 1 Gnu | 1 Glibc | 2017-10-09 | 7.2 HIGH | N/A |
| The unsetenv function in glibc 2.1.1 does not properly unset an environmental variable if the variable is provided twice to a program, which could allow local users to execute arbitrary commands in setuid programs by specifying their own duplicate environmental variables such as LD_PRELOAD or LD_LIBRARY_PATH. | |||||
| CVE-2000-0825 | 1 Ipswitch | 1 Imail | 2017-10-09 | 5.0 MEDIUM | N/A |
| Ipswitch Imail 6.0 allows remote attackers to cause a denial of service via a large number of connections in which a long Host: header is sent, which causes a thread to crash. | |||||
| CVE-2001-1002 | 1 Redhat | 1 Linux | 2017-10-09 | 7.5 HIGH | N/A |
| The default configuration of the DVI print filter (dvips) in Red Hat Linux 7.0 and earlier does not run dvips in secure mode when dvips is executed by lpd, which could allow remote attackers to gain privileges by printing a DVI file that contains malicious commands. | |||||
| CVE-2001-0525 | 1 Suse | 1 Suse Linux | 2017-10-09 | 7.2 HIGH | N/A |
| Buffer overflow in dsh in dqs 3.2.7 in SuSE Linux 7.0 and earlier, and possibly other operating systems, allows local users to gain privileges via a long first command line argument. | |||||
| CVE-2000-0829 | 1 Redhat | 2 Linux, Tmpwatch | 2017-10-09 | 2.1 LOW | N/A |
| The tmpwatch utility in Red Hat Linux forks a new process for each directory level, which allows local users to cause a denial of service by creating deeply nested directories in /tmp or /var/tmp/. | |||||
| CVE-2001-0197 | 2 Icecast, Redhat | 2 Icecast, Linux | 2017-10-09 | 10.0 HIGH | N/A |
| Format string vulnerability in print_client in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary commands. | |||||
| CVE-2001-1022 | 2 Gnu, Jgroff | 2 Groff, Jgroff | 2017-10-09 | 7.5 HIGH | N/A |
| Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command. | |||||
| CVE-2001-1016 | 1 Pgp | 5 Corporate Desktop, E-business Server, Freeware and 2 more | 2017-10-09 | 7.5 HIGH | N/A |
| PGP Corporate Desktop before 7.1, Personal Security before 7.0.3, Freeware before 7.0.3, and E-Business Server before 7.1 does not properly display when invalid userID's are used to sign a message, which could allow an attacker to make the user believe that the document has been signed by a trusted third party by adding a second, invalid user ID to a key which has already been signed by the third party, aka the "PGPsdk Key Validity Vulnerability." | |||||
| CVE-2001-0823 | 1 Sgi | 1 Performance Co-pilot | 2017-10-09 | 7.2 HIGH | N/A |
| The pmpost program in Performance Co-Pilot (PCP) before 2.2.1-3 allows a local user to gain privileges via a symlink attack on the NOTICES file in the PCP log directory (PCP_LOG_DIR). | |||||
| CVE-2000-0838 | 1 Fastream | 1 Fur Http Server | 2017-10-09 | 5.0 MEDIUM | N/A |
| Fastream FUR HTTP server 1.0b allows remote attackers to cause a denial of service via a long GET request. | |||||
| CVE-2000-0837 | 1 Deerfield | 1 Ftp Serv-u | 2017-10-09 | 5.0 MEDIUM | N/A |
| FTP Serv-U 2.5e allows remote attackers to cause a denial of service by sending a large number of null bytes. | |||||
| CVE-2000-0839 | 1 Ipswitch | 1 Wincom Lpd | 2017-10-09 | 5.0 MEDIUM | N/A |
| WinCOM LPD 1.00.90 allows remote attackers to cause a denial of service via a large number of LPD options to the LPD port (515). | |||||
| CVE-2001-0770 | 1 Steve Poulsen | 1 Guildftpd | 2017-10-09 | 7.5 HIGH | N/A |
| Buffer overflow in GuildFTPd Server 0.97 allows remote attacker to execute arbitrary code via a long SITE command. | |||||
| CVE-2000-0846 | 1 Ashley Montanaro | 1 Darxite | 2017-10-09 | 7.5 HIGH | N/A |
| Buffer overflow in Darxite 0.4 and earlier allows a remote attacker to execute arbitrary commands via a long username or password. | |||||
| CVE-2000-0847 | 1 University Of Washington | 2 Imap, Pine | 2017-10-09 | 7.5 HIGH | N/A |
| Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header. | |||||