ReportizFlow
Filtered by vendor
Subscriptions
Total
345200 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0583 | 1 Inter7 | 1 Vpopmail Vchkpw | 2026-04-16 | N/A |
| vchkpw program in vpopmail before version 4.8 does not properly cleanse an untrusted format string used in a call to syslog, which allows remote attackers to cause a denial of service via a USER or PASS command that contains arbitrary formatting directives. | ||||
| CVE-2000-0607 | 3 Debian, Mandrakesoft, Redhat | 3 Debian Linux, Mandrake Linux, Linux | 2026-04-16 | N/A |
| Buffer overflow in fld program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via an input file containing long CHARSET_REGISTRY or CHARSET_ENCODING settings. | ||||
| CVE-2000-0621 | 1 Microsoft | 2 Outlook, Outlook Express | 2026-04-16 | N/A |
| Microsoft Outlook 98 and 2000, and Outlook Express 4.0x and 5.0x, allow remote attackers to read files on the client's system via a malformed HTML message that stores files outside of the cache, aka the "Cache Bypass" vulnerability. | ||||
| CVE-2000-0622 | 1 Oreilly | 1 Website Professional | 2026-04-16 | N/A |
| Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote attackers to execute arbitrary commands via a URL containing a long "keywords" parameter. | ||||
| CVE-2000-0625 | 1 Netzero | 1 Zeroport | 2026-04-16 | N/A |
| NetZero 3.0 and earlier uses weak encryption for storing a user's login information, which allows a local user to decrypt the password. | ||||
| CVE-2000-0630 | 1 Microsoft | 2 Internet Information Server, Internet Information Services | 2026-04-16 | N/A |
| IIS 4.0 and 5.0 allows remote attackers to obtain fragments of source code by appending a +.htr to the URL, a variant of the "File Fragment Reading via .HTR" vulnerability. | ||||
| CVE-2000-0687 | 1 Cgi Script Center | 1 Auction Weaver | 2026-04-16 | N/A |
| Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the catdir parameter. | ||||
| CVE-2000-0691 | 1 Gert Doering | 1 Mgetty | 2026-04-16 | N/A |
| The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file. | ||||
| CVE-1999-0667 | 1 Arp Protocol | 1 Arp Protocol | 2026-04-16 | N/A |
| The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service. | ||||
| CVE-2000-0710 | 1 Microsoft | 1 Frontpage | 2026-04-16 | N/A |
| The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name. | ||||
| CVE-2005-4360 | 1 Microsoft | 2 Internet Information Services, Windows Xp | 2026-04-16 | N/A |
| The URL parser in Microsoft Internet Information Services (IIS) 5.1 on Windows XP Professional SP2 allows remote attackers to execute arbitrary code via multiple requests to ".dll" followed by arguments such as "~0" through "~9", which causes ntdll.dll to produce a return value that is not correctly handled by IIS, as demonstrated using "/_vti_bin/.dll/*/~0". NOTE: the consequence was originally believed to be only a denial of service (application crash and reboot). | ||||
| CVE-2000-0731 | 1 Jeremy Arnold | 1 Worm Webserver | 2026-04-16 | N/A |
| Directory traversal vulnerability in Worm HTTP server allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-1999-1293 | 1 Apache | 1 Http Server | 2026-04-16 | N/A |
| mod_proxy in Apache 1.2.5 and earlier allows remote attackers to cause a denial of service via malformed FTP commands, which causes Apache to dump core. | ||||
| CVE-2004-2756 | 1 Xoops | 1 Xoops | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in viewtopic.php in Xoops 2.x, possibly 2 through 2.0.5, allows remote attackers to inject arbitrary web script or HTML via the (1) forum and (2) topic_id parameters. | ||||
| CVE-2000-0015 | 1 Ascend | 1 Cascadeview Ux | 2026-04-16 | N/A |
| CascadeView TFTP server allows local users to gain privileges via a symlink attack. | ||||
| CVE-1999-0720 | 1 Linux | 1 Linux Kernel | 2026-04-16 | N/A |
| The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users. | ||||
| CVE-1999-0747 | 1 Bsdi | 1 Bsd Os | 2026-04-16 | N/A |
| Denial of service in BSDi Symmetric Multiprocessing (SMP) when an fstat call is made when the system has a high CPU load. | ||||
| CVE-1999-0762 | 1 Netscape | 2 Communicator, Navigator | 2026-04-16 | N/A |
| When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information. | ||||
| CVE-2004-2308 | 1 Cpanel | 1 Cpanel | 2026-04-16 | N/A |
| Cross-site scripting (XSS) vulnerability in cPanel 9.1.0 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the dir parameter in dohtaccess.html. | ||||
| CVE-1999-0776 | 1 Computer Software Manufaktur | 1 Alibaba | 2026-04-16 | N/A |
| Alibaba HTTP server allows remote attackers to read files via a .. (dot dot) attack. | ||||