ReportizFlow
Filtered by vendor
Subscriptions
Total
29911 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0824 | 1 Gnu | 1 Glibc | 2026-04-16 | N/A |
| The unsetenv function in glibc 2.1.1 does not properly unset an environmental variable if the variable is provided twice to a program, which could allow local users to execute arbitrary commands in setuid programs by specifying their own duplicate environmental variables such as LD_PRELOAD or LD_LIBRARY_PATH. | ||||
| CVE-2000-0849 | 1 Microsoft | 1 Windows Media Services | 2026-04-16 | N/A |
| Race condition in Microsoft Windows Media server allows remote attackers to cause a denial of service in the Windows Media Unicast Service via a malformed request, aka the "Unicast Service Race Condition" vulnerability. | ||||
| CVE-2000-0852 | 1 Freebsd | 1 Freebsd | 2026-04-16 | N/A |
| Multiple buffer overflows in eject on FreeBSD and possibly other OSes allows local users to gain root privileges. | ||||
| CVE-2000-0855 | 1 Xs4all Data | 1 Xs4all Data Sunftp | 2026-04-16 | N/A |
| SunFTP build 9(1) allows remote attackers to cause a denial of service by connecting to the server and disconnecting before sending a newline. | ||||
| CVE-2000-0856 | 1 Xs4all Data | 1 Xs4all Data Sunftp | 2026-04-16 | N/A |
| Buffer overflow in SunFTP build 9(1) allows remote attackers to cause a denial of service or possibly execute arbitrary commands via a long GET request. | ||||
| CVE-2000-0857 | 1 Sebastian Kienzl | 1 Muh | 2026-04-16 | N/A |
| The logging capability in muh 2.05d IRC server does not properly cleanse user-injected format strings, which allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed nickname. | ||||
| CVE-2000-0865 | 1 Tridia | 1 Doublevision | 2026-04-16 | N/A |
| Buffer overflow in dvtermtype in Tridia Double Vision 3.07.00 allows local users to gain root privileges via a long terminal type argument. | ||||
| CVE-2000-0873 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface statistics and possibly hide evidence of unusual network activities. | ||||
| CVE-2000-0880 | 1 Plus Technologies | 1 Lpplus | 2026-04-16 | N/A |
| LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file. | ||||
| CVE-2000-0882 | 1 Intel | 4 Express 510t, Express 520t, Express 550f and 1 more | 2026-04-16 | N/A |
| Intel Express 500 series switches allow a remote attacker to cause a denial of service via a malformed ICMP packet, which causes the CPU to crash. | ||||
| CVE-2000-0883 | 1 Mandrakesoft | 1 Mandrake Linux | 2026-04-16 | N/A |
| The default configuration of mod_perl for Apache as installed on Mandrake Linux 6.1 through 7.1 sets the /perl/ directory to be browseable, which allows remote attackers to list the contents of that directory. | ||||
| CVE-2000-0893 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| The presence of the Distributed GL Daemon (dgld) service on port 5232 on SGI IRIX systems allows remote attackers to identify the target host as an SGI system. | ||||
| CVE-2000-0894 | 1 Watchguard | 1 Soho Firewall | 2026-04-16 | N/A |
| HTTP server on the WatchGuard SOHO firewall does not properly restrict access to administrative functions such as password resets or rebooting, which allows attackers to cause a denial of service or conduct unauthorized activities. | ||||
| CVE-2000-0898 | 1 Max Feoktistov | 1 Small Http Server | 2026-04-16 | N/A |
| Small HTTP Server 2.01 does not properly process Server Side Includes (SSI) tags that contain null values, which allows local users, and possibly remote attackers, to cause the server to crash by inserting the SSI into an HTML file. | ||||
| CVE-2000-0901 | 1 Juergen | 1 Weigert Screen | 2026-04-16 | N/A |
| Format string vulnerability in screen 3.9.5 and earlier allows local users to gain root privileges via format characters in the vbell_msg initialization variable. | ||||
| CVE-2000-0902 | 1 Nathan Purciful | 1 Phpphotoalbum | 2026-04-16 | N/A |
| getalbum.php in PhotoAlbum before 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2000-0903 | 1 Qnx | 1 Voyager | 2026-04-16 | N/A |
| Directory traversal vulnerability in Voyager web server 2.01B in the demo disks for QNX 405 allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2000-0906 | 1 Moreover.com | 1 Cached Feed.cgi Script | 2026-04-16 | N/A |
| Directory traversal vulnerability in Moreover.com cached_feed.cgi script version 4.July.00 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the category or format parameters. | ||||
| CVE-2000-0925 | 1 Smartwin Technology | 1 Cyberoffice Shopping Cart | 2026-04-16 | N/A |
| The default installation of SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) installs the _private directory with world readable permissions, which allows remote attackers to obtain sensitive information. | ||||
| CVE-2000-0926 | 1 Smartwin Technology | 1 Cyberoffice Shopping Cart | 2026-04-16 | N/A |
| SmartWin CyberOffice Shopping Cart 2 (aka CyberShop) allows remote attackers to modify price information by changing the "Price" hidden form variable. | ||||