Total
29796 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0772 | 1 Tumbleweed | 1 Messaging Management System | 2025-04-03 | N/A |
| The installation of Tumbleweed Messaging Management System (MMS) 4.6 and earlier (formerly Worldtalk Worldsecure) creates a default account "sa" with no password. | ||||
| CVE-2000-0773 | 1 Bajie | 1 Java Http Server | 2025-04-03 | N/A |
| Bajie HTTP web server 0.30a allows remote attackers to read arbitrary files via a URL that contains a "....", a variant of the dot dot directory traversal attack. | ||||
| CVE-2000-0774 | 1 Bajie | 1 Java Http Server | 2025-04-03 | N/A |
| The sample Java servlet "test" in Bajie HTTP web server 0.30a reveals the real pathname of the web document root. | ||||
| CVE-2000-0776 | 1 Mediahouse Software | 1 Statistics Server Livestats | 2025-04-03 | N/A |
| Mediahouse Statistics Server 5.02x allows remote attackers to execute arbitrary commands via a long HTTP GET request. | ||||
| CVE-2000-0779 | 1 Checkpoint | 1 Firewall-1 | 2025-04-03 | N/A |
| Checkpoint Firewall-1 with the RSH/REXEC setting enabled allows remote attackers to bypass access restrictions and connect to a RSH/REXEC client via malformed connection requests. | ||||
| CVE-2005-1517 | 1 Cisco | 1 Firewall Services Module | 2025-04-03 | N/A |
| Unknown vulnerability in Cisco Firewall Services Module (FWSM) 2.3.1 and earlier, when using URL, FTP, or HTTPS filtering exceptions, allows certain TCP packets to bypass access control lists (ACLs). | ||||
| CVE-2000-0782 | 1 Netwin | 1 Netauth | 2025-04-03 | N/A |
| netauth.cgi program in Netwin Netauth 4.2e and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2000-0784 | 1 Rapidstream | 1 Rapidstream | 2025-04-03 | N/A |
| sshd program in the Rapidstream 2.1 Beta VPN appliance has a hard-coded "rsadmin" account with a null password, which allows remote attackers to execute arbitrary commands via ssh. | ||||
| CVE-2000-0785 | 1 Wircsrv | 1 Irc Server | 2025-04-03 | N/A |
| WircSrv IRC Server 5.07s allows IRC operators to read arbitrary files via the importmotd command, which sets the Message of the Day (MOTD) to the specified file. | ||||
| CVE-2000-0786 | 1 Gnu | 1 Userv | 2025-04-03 | N/A |
| GNU userv 1.0.0 and earlier does not properly perform file descriptor swapping, which can corrupt the USERV_GROUPS and USERV_GIDS environmental variables and allow local users to bypass some access restrictions. | ||||
| CVE-2000-0788 | 1 Microsoft | 2 Access, Word | 2025-04-03 | N/A |
| The Mail Merge tool in Microsoft Word does not prompt the user before executing Visual Basic (VBA) scripts in an Access database, which could allow an attacker to execute arbitrary commands. | ||||
| CVE-2000-0789 | 1 Bardon Data Systems | 1 Winu | 2025-04-03 | N/A |
| WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges. | ||||
| CVE-2000-0795 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| Buffer overflow in lpstat in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long -n option. | ||||
| CVE-2000-0798 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| The truncate function in IRIX 6.x does not properly check for privileges when the file is in the xfs file system, which allows local users to delete the contents of arbitrary files. | ||||
| CVE-2000-0796 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| Buffer overflow in dmplay in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long command line option. | ||||
| CVE-2000-0797 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| Buffer overflow in gr_osview in IRIX 6.2 and 6.3 allows local users to gain privileges via a long -D option. | ||||
| CVE-2000-0799 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| inpview in InPerson in SGI IRIX 5.3 through IRIX 6.5.10 allows local users to gain privileges via a symlink attack on the .ilmpAAA temporary file. | ||||
| CVE-2000-0803 | 1 Gnu | 1 Groff | 2025-04-03 | N/A |
| GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff. | ||||
| CVE-2000-0804 | 1 Checkpoint | 1 Firewall-1 | 2025-04-03 | N/A |
| Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass the directionality check via fragmented TCP connection requests or reopening closed TCP connection requests, aka "One-way Connection Enforcement Bypass." | ||||
| CVE-2000-0805 | 1 Checkpoint | 1 Firewall-1 | 2025-04-03 | N/A |
| Check Point VPN-1/FireWall-1 4.1 and earlier improperly retransmits encapsulated FWS packets, even if they do not come from a valid FWZ client, aka "Retransmission of Encapsulated Packets." | ||||