Total
27865 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0848 | 1 Ibm | 1 Websphere Application Server | 2017-10-09 | 10.0 HIGH | N/A |
| Buffer overflow in IBM WebSphere web application server (WAS) allows remote attackers to execute arbitrary commands via a long Host: request header. | |||||
| CVE-2001-0528 | 1 Oracle | 1 E-business Suite | 2017-10-09 | 7.2 HIGH | N/A |
| Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) version 7.x includes a debug version of FNDPUB11I.DLL, which logs the APPS schema password in cleartext in a debug file, which allows local users to obtain the password and gain privileges. | |||||
| CVE-2000-0850 | 1 Netegrity | 1 Siteminder | 2017-10-09 | 7.5 HIGH | N/A |
| Netegrity SiteMinder before 4.11 allows remote attackers to bypass its authentication mechanism by appending "$/FILENAME.ext" (where ext is .ccc, .class, or .jpg) to the requested URL. | |||||
| CVE-2000-0852 | 1 Freebsd | 1 Freebsd | 2017-10-09 | 7.2 HIGH | N/A |
| Multiple buffer overflows in eject on FreeBSD and possibly other OSes allows local users to gain root privileges. | |||||
| CVE-2000-0853 | 1 Yabb | 1 Yabb | 2017-10-09 | 5.0 MEDIUM | N/A |
| YaBB Bulletin Board 9.1.2000 allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-2001-0769 | 1 Steve Poulsen | 1 Guildftpd | 2017-10-09 | 5.0 MEDIUM | N/A |
| Memory leak in GuildFTPd Server 0.97 allows remote attackers to cause a denial of service via a request containing a null character. | |||||
| CVE-2000-0854 | 1 Microsoft | 1 Office | 2017-10-09 | 10.0 HIGH | N/A |
| When a Microsoft Office 2000 document is launched, the directory of that document is first used to locate DLL's such as riched20.dll and msi.dll, which could allow an attacker to execute arbitrary commands by inserting a Trojan Horse DLL into the same directory as the document. | |||||
| CVE-2000-0858 | 1 Microsoft | 2 Internet Information Server, Windows Nt | 2017-10-09 | 5.0 MEDIUM | N/A |
| Vulnerability in Microsoft Windows NT 4.0 allows remote attackers to cause a denial of service in IIS by sending it a series of malformed requests which cause INETINFO.EXE to fail, aka the "Invalid URL" vulnerability. | |||||
| CVE-2000-0859 | 1 Gordano | 1 Ntmail | 2017-10-09 | 5.0 MEDIUM | N/A |
| The web configuration server for NTMail V5 and V6 allows remote attackers to cause a denial of service via a series of partial HTTP requests. | |||||
| CVE-2000-0860 | 1 Php | 1 Php | 2017-10-09 | 5.0 MEDIUM | N/A |
| The file upload capability in PHP versions 3 and 4 allows remote attackers to read arbitrary files by setting hidden form fields whose names match the names of internal PHP script variables. | |||||
| CVE-2001-1083 | 1 Icecast | 1 Icecast | 2017-10-09 | 5.0 MEDIUM | N/A |
| Icecast 1.3.7, and other versions before 1.3.11 with HTTP server file streaming support enabled allows remote attackers to cause a denial of service (crash) via a URL that ends in . (dot), / (forward slash), or \ (backward slash). | |||||
| CVE-2000-0861 | 1 Gnu | 1 Mailman | 2017-10-09 | 7.2 HIGH | N/A |
| Mailman 1.1 allows list administrators to execute arbitrary commands via shell metacharacters in the %(listname) macro expansion. | |||||
| CVE-2000-0862 | 1 Allaire | 1 Spectra | 2017-10-09 | 6.4 MEDIUM | N/A |
| Vulnerability in an administrative interface utility for Allaire Spectra 1.0.1 allows remote attackers to read and modify sensitive configuration information. | |||||
| CVE-2001-1020 | 1 Vibechild | 1 Directory Manager | 2017-10-09 | 7.5 HIGH | N/A |
| edit_image.php in Vibechild Directory Manager before 0.91 allows remote attackers to execute arbitrary commands via shell metacharacters in the userfile_name parameter, which is sent unfiltered to the PHP passthru function. | |||||
| CVE-2001-1017 | 1 Freebsd | 1 Freebsd | 2017-10-09 | 7.2 HIGH | N/A |
| rmuser utility in FreeBSD 4.2 and 4.3 creates a copy of the master.passwd file with world-readable permissions while updating the original file, which could allow local users to gain privileges by reading the copied file while rmuser is running, obtain the password hashes, and crack the passwords. | |||||
| CVE-2000-0863 | 1 Listmanager | 1 Linux | 2017-10-09 | 7.2 HIGH | N/A |
| Buffer overflow in listmanager earlier than 2.105.1 allows local users to gain additional privileges. | |||||
| CVE-2000-0865 | 1 Tridia | 1 Doublevision | 2017-10-09 | 7.2 HIGH | N/A |
| Buffer overflow in dvtermtype in Tridia Double Vision 3.07.00 allows local users to gain root privileges via a long terminal type argument. | |||||
| CVE-2001-0280 | 1 Atrium Software | 1 Mercur | 2017-10-09 | 10.0 HIGH | N/A |
| Buffer overflow in MERCUR SMTP server 3.30 allows remote attackers to execute arbitrary commands via a long EXPN command. | |||||
| CVE-1999-0756 | 1 Allaire | 1 Coldfusion Server | 2017-10-09 | 5.0 MEDIUM | N/A |
| ColdFusion Administrator with Advanced Security enabled allows remote users to stop the ColdFusion server via the Start/Stop utility. | |||||
| CVE-2000-0868 | 2 Apache, Suse | 2 Http Server, Suse Linux | 2017-10-09 | 5.0 MEDIUM | N/A |
| The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/. | |||||