Search Results (29815 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2000-0289 3 Debian, Linux, Redhat 3 Debian Linux, Linux Kernel, Linux 2025-04-03 N/A
IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection.
CVE-2000-0290 1 4d 1 Webstar Http Server 2025-04-03 N/A
Buffer overflow in Webstar HTTP server allows remote attackers to cause a denial of service via a long GET request.
CVE-1999-0522 2025-04-03 N/A
The permissions for a system-critical NIS+ table (e.g. passwd) are inappropriate.
CVE-2000-0294 1 Jim Housley 1 Healthd 2025-04-03 N/A
Buffer overflow in healthd for FreeBSD allows local users to gain root privileges.
CVE-2000-0295 1 Lcdproc 1 Lcdproc 2025-04-03 N/A
Buffer overflow in LCDproc allows remote attackers to gain root privileges via the screen_add command.
CVE-2000-0296 1 Michael A. Gumienny 1 Fcheck 2025-04-03 N/A
fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck.
CVE-1999-0526 1 X.org 1 X11 2025-04-03 N/A
An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server.
CVE-2000-0297 1 Allaire 1 Forums 2025-04-03 N/A
Allaire Forums 2.0.5 allows remote attackers to bypass access restrictions to secure conferences via the rightAccessAllForums or rightModerateAllForums variables.
CVE-2002-2001 2 Jmcce, Mandrakesoft 2 Jmcce, Mandrake Linux 2025-04-03 N/A
jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack.
CVE-1999-0527 2025-04-03 N/A
The permissions for system-critical data in an anonymous FTP account are inappropriate. For example, the root directory is writeable by world, a real password file is obtainable, or executable commands such as "ls" can be overwritten.
CVE-2000-0299 1 Apple 1 Webobjects 2025-04-03 N/A
Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote attackers to cause a denial of service via an HTTP request with long headers such as Accept.
CVE-2002-2013 2 Mozilla, Netscape 3 Mozilla, Communicator, Navigator 2025-04-03 N/A
Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain.
CVE-2000-0301 1 Ipswitch 1 Imail 2025-04-03 N/A
Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command.
CVE-1999-0533 2025-04-03 N/A
A DNS server allows inverse queries.
CVE-1999-0534 1 Microsoft 2 Windows 2000, Windows Nt 2025-04-03 N/A
A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory, Profile Single Process, Remote Shutdown, Replace Process Token, Restore, System Environment, Take Ownership, or Unsolicited Input.
CVE-2000-0307 1 Sco 3 Open Desktop, Openserver, Unixware 2025-04-03 N/A
Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.
CVE-1999-0537 2 Microsoft, Netscape 2 Internet Explorer, Communicator 2025-04-03 N/A
A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc.
CVE-2000-0311 1 Microsoft 1 Windows 2000 2025-04-03 N/A
The Windows 2000 domain controller allows a malicious user to modify Active Directory information by modifying an unprotected attribute, aka the "Mixed Object Access" vulnerability.
CVE-2002-1808 1 Zack Coburn 1 Meunity Community System 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in Meunity Community System 1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when creating a topic.
CVE-2005-4776 1 Netbsd 1 Netbsd 2025-04-03 N/A
Integer overflow in the FreeBSD compatibility code (freebsd_misc.c) in NetBSD-current, NetBSD-3, NetBSD-2.0, and NetBSD-2 before 20050913; and NetBSD-1.6 before 20050914; allows local users to cause a denial of service (heap corruption or system crash) and possibly gain root privileges.