Total
29798 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0036 | 1 Microsoft | 2 Ie, Outlook Express | 2025-04-03 | N/A |
| Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability. | ||||
| CVE-2000-0039 | 1 Altavista | 1 Search Intranet | 2025-04-03 | N/A |
| AltaVista search engine allows remote attackers to read files above the document root via a .. (dot dot) in the query.cgi CGI program. | ||||
| CVE-2000-0040 | 1 Glftpd | 1 Glftpd | 2025-04-03 | N/A |
| glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command. | ||||
| CVE-2000-0041 | 1 Apple | 1 Macos | 2025-04-03 | N/A |
| Macintosh systems generate large ICMP datagrams in response to malformed datagrams, allowing them to be used as amplifiers in a flood attack. | ||||
| CVE-2000-0042 | 1 Csm | 1 Mail Server | 2025-04-03 | N/A |
| Buffer overflow in CSM mail server allows remote attackers to cause a denial of service or execute commands via a long HELO command. | ||||
| CVE-2000-0043 | 1 Camshot | 1 Webcam Http Server | 2025-04-03 | N/A |
| Buffer overflow in CamShot WebCam HTTP server allows remote attackers to execute commands via a long GET request. | ||||
| CVE-2000-0058 | 1 Handspring | 1 Visor Network Hotsync | 2025-04-03 | N/A |
| Network HotSync program in Handspring Visor does not have authentication, which allows remote attackers to retrieve email and files. | ||||
| CVE-2000-0060 | 1 Avirt | 1 Rover | 2025-04-03 | N/A |
| Buffer overflow in aVirt Rover POP3 server 1.1 allows remote attackers to cause a denial of service via a long user name. | ||||
| CVE-2000-0062 | 1 Zope | 1 Zope | 2025-04-03 | N/A |
| The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities. | ||||
| CVE-2000-0079 | 1 W3c | 1 Cern Httpd | 2025-04-03 | N/A |
| The W3C CERN httpd HTTP server allows remote attackers to determine the real pathnames of some commands via a request for a nonexistent URL. | ||||
| CVE-2000-0080 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
| AIX techlibss allows local users to overwrite files via a symlink attack. | ||||
| CVE-2000-0081 | 1 Microsoft | 1 Hotmail | 2025-04-03 | N/A |
| Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute the code by using hexadecimal codes to specify the javascript: protocol, e.g. jAvascript. | ||||
| CVE-2000-0083 | 1 Hp | 1 Hp-ux | 2025-04-03 | N/A |
| HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges. | ||||
| CVE-2000-0084 | 1 Globalscape | 1 Cuteftp | 2025-04-03 | N/A |
| CuteFTP uses weak encryption to store password information in its tree.dat file. | ||||
| CVE-2000-0085 | 1 Microsoft | 1 Hotmail | 2025-04-03 | N/A |
| Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute code via the LOWSRC or DYNRC parameters in the IMG tag. | ||||
| CVE-2000-0086 | 1 Netopia | 1 Timbuktu Pro | 2025-04-03 | N/A |
| Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffing. | ||||
| CVE-2000-0105 | 1 Microsoft | 1 Outlook Express | 2025-04-03 | N/A |
| Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client. | ||||
| CVE-2000-0104 | 1 Web Express | 1 Shoptron | 2025-04-03 | N/A |
| The Shoptron shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0106 | 1 Easycart | 1 Easycart | 2025-04-03 | N/A |
| The EasyCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields. | ||||
| CVE-2000-0107 | 1 Debian | 1 Debian Linux | 2025-04-03 | N/A |
| Linux apcd program allows local attackers to modify arbitrary files via a symlink attack. | ||||