Total
29799 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0122 | 1 Microsoft | 1 Frontpage | 2025-04-03 | N/A |
| Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program. | ||||
| CVE-2000-0123 | 1 Filemaker | 1 Filemaker | 2025-04-03 | N/A |
| The shopping cart application provided with Filemaker allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0124 | 1 Surfcontrol | 1 Superscout | 2025-04-03 | N/A |
| surfCONTROL SuperScout does not properly asign a category to web sites with a . (dot) at the end, which may allow users to bypass web access restrictions. | ||||
| CVE-2000-0127 | 1 Progress | 1 Webspeed | 2025-04-03 | N/A |
| The Webspeed configuration program does not properly disable access to the WSMadmin utility, which allows remote attackers to gain privileges via wsisa.dll. | ||||
| CVE-2000-0121 | 1 Microsoft | 1 Windows Nt | 2025-04-03 | N/A |
| The Recycle Bin utility in Windows NT and Windows 2000 allows local users to read or modify files by creating a subdirectory with the victim's SID in the recycler directory, aka the "Recycle Bin Creation" vulnerability. | ||||
| CVE-2000-0154 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack. | ||||
| CVE-2000-0261 | 1 Avm | 1 Ken | 2025-04-03 | N/A |
| The AVM KEN! web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2000-0206 | 1 Oracle | 1 Oracle8i | 2025-04-03 | N/A |
| The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges. | ||||
| CVE-2000-0210 | 1 Sun | 1 Workshop | 2025-04-03 | N/A |
| The lit program in Sun Flex License Manager (FlexLM) follows symlinks, which allows local users to modify arbitrary files. | ||||
| CVE-2000-0224 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack. | ||||
| CVE-2000-0226 | 1 Microsoft | 1 Internet Information Server | 2025-04-03 | N/A |
| IIS 4.0 allows attackers to cause a denial of service by requesting a large buffer in a POST or PUT command which consumes memory, aka the "Chunked Transfer Encoding Buffer Overflow Vulnerability." | ||||
| CVE-2000-0228 | 1 Microsoft | 1 Windows Media Rights Manager | 2025-04-03 | N/A |
| Microsoft Windows Media License Manager allows remote attackers to cause a denial of service by sending a malformed request that causes the manager to halt, aka the "Malformed Media License Request" Vulnerability. | ||||
| CVE-2000-0230 | 2 Halloween, Redhat | 2 Halloween Linux, Linux | 2025-04-03 | N/A |
| Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable. | ||||
| CVE-2000-0265 | 1 Panda | 1 Panda Security | 2025-04-03 | N/A |
| Panda Security 3.0 allows users to uninstall the Panda software via its Add/Remove Programs applet. | ||||
| CVE-2000-0266 | 1 Microsoft | 1 Internet Explorer | 2025-04-03 | N/A |
| Internet Explorer 5.01 allows remote attackers to bypass the cross frame security policy via a malicious applet that interacts with the Java JSObject to modify the DOM properties to set the IFRAME to an arbitrary Javascript URL. | ||||
| CVE-2000-0270 | 1 Gnu | 1 Emacs | 2025-04-03 | N/A |
| The make-temp-name Lisp function in Emacs 20 creates temporary files with predictable names, which allows attackers to conduct a symlink attack. | ||||
| CVE-2000-0271 | 1 Gnu | 1 Emacs | 2025-04-03 | N/A |
| read-passwd and other Lisp functions in Emacs 20 do not properly clear the history of recently typed keys, which allows an attacker to read unencrypted passwords. | ||||
| CVE-2005-1336 | 1 Apple | 1 Mac Os X | 2025-04-03 | N/A |
| Buffer overflow in the Foundation framework for Mac OS X 10.3.9 allows local users to execute arbitrary code via a long environment variable. | ||||
| CVE-2006-2083 | 1 Andrew Tridgell | 1 Rsync | 2025-04-03 | N/A |
| Integer overflow in the receive_xattr function in the extended attributes patch (xattr.c) for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow. | ||||
| CVE-2000-0287 | 1 Cnc | 1 Technology Bizdb | 2025-04-03 | N/A |
| The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter. | ||||