Export limit exceeded: 29946 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (29946 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2000-0135 1 Atretail 1 Atretail 2026-04-16 N/A
The @Retail shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
CVE-2000-0145 1 Debian 1 Debian Linux 2026-04-16 N/A
The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions.
CVE-2000-0158 1 Sco 1 Openserver 2026-04-16 N/A
Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon.
CVE-2000-0162 1 Microsoft 3 Ie, Internet Explorer, Visual Studio 2026-04-16 N/A
The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability.
CVE-2000-0166 1 Interaccess 1 Interaccess Telnetd Server 2026-04-16 N/A
Buffer overflow in the InterAccess telnet server TelnetD allows remote attackers to execute commands via a long login name.
CVE-2000-0176 1 Cat Soft 1 Serv-u 2026-04-16 N/A
The default configuration of Serv-U 2.5d and earlier allows remote attackers to determine the real pathname of the server by requesting a URL for a directory or file that does not exist.
CVE-2000-0186 4 Freebsd, Mandrakesoft, Redhat and 1 more 4 Freebsd, Mandrake Linux, Linux and 1 more 2026-04-16 N/A
Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument.
CVE-2000-0192 1 Caldera 1 Openlinux 2026-04-16 N/A
The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.
CVE-2006-0044 1 Albatross 1 Albatross 2026-04-16 N/A
Unspecified vulnerability in context.py in Albatross web application toolkit before 1.33 allows remote attackers to execute arbitrary commands via unspecified vectors involving template files and the "handling of submitted form fields".
CVE-2000-0198 1 Atrium Software 3 Mercur Imap4 Server, Mercur Mailserver, Mercur Pop3 Server 2026-04-16 N/A
Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service.
CVE-2006-0045 1 Linley Henzell 1 Dungeon Crawl 2026-04-16 N/A
crawl before 4.0.0 does not securely call programs when saving and loading games, which allows local users to gain privileges.
CVE-2000-0217 2 Openbsd, Ssh 3 Openssh, Ssh, Ssh2 2026-04-16 N/A
The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program.
CVE-2000-0223 1 Sam Hawker 1 Wmcdplay 2026-04-16 N/A
Buffer overflow in the wmcdplay CD player program for the WindowMaker desktop allows local users to gain root privileges via a long parameter.
CVE-2000-0227 1 Linux 1 Linux Kernel 2026-04-16 N/A
The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a denial of service by requesting a large number of sockets.
CVE-2000-0234 1 Sun 2 Cobalt Raq 2, Cobalt Raq 3i 2026-04-16 N/A
The default configuration of Cobalt RaQ2 and RaQ3 as specified in access.conf allows remote attackers to view sensitive contents of a .htaccess file.
CVE-2006-0057 1 Microsoft 2 Ie, Internet Explorer 2026-04-16 N/A
Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to bypass the Kill bit settings for dangerous ActiveX controls via unknown vectors involving crafted HTML, which can expose the browser to attacks that would otherwise be prevented by the Kill bit setting. NOTE: CERT/CC claims that MS05-054 fixes this issue, but it is not described in MS05-054.
CVE-2000-0235 1 Freebsd 1 Freebsd 2026-04-16 N/A
Buffer overflow in the huh program in the orville-write package allows local users to gain root privileges.
CVE-2000-0236 1 Netscape 1 Enterprise Server 2026-04-16 N/A
Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and ?wp-cs-dump.
CVE-2000-0239 1 Atrium Software 3 Mercur Imap4 Server, Mercur Mailserver, Mercur Pop3 Server 2026-04-16 N/A
Buffer overflow in the MERCUR WebView WebMail server allows remote attackers to cause a denial of service via a long mail_user parameter in the GET request.
CVE-2006-0075 1 Gnu 1 Phpbook 2026-04-16 N/A
Direct static code injection vulnerability in phpBook 1.3.2 and earlier allows remote attackers to execute arbitrary PHP code via the e-mail field (mail variable) in a new message, which is written to a PHP file.