Export limit exceeded: 29880 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29880 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0714 | 1 University Of Massachusetts | 1 Scheme | 2025-04-03 | N/A |
| umb-scheme 3.2-11 for Red Hat Linux is installed with world-writeable files. | ||||
| CVE-2000-0716 | 1 Alt-n | 1 Mdaemon | 2025-04-03 | N/A |
| WorldClient email client in MDaemon 2.8 includes the session ID in the referer field of an HTTP request when the user clicks on a URL, which allows the visited web site to hijack the session ID and read the user's email. | ||||
| CVE-2000-0717 | 1 Goodtech | 2 Ftp Server 95 98, Ftp Server Nt 2000 | 2025-04-03 | N/A |
| GoodTech FTP server allows remote attackers to cause a denial of service via a large number of RNTO commands. | ||||
| CVE-2000-0718 | 1 Mandrakesoft | 1 Mandrake Linux | 2025-04-03 | N/A |
| A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp directory before they are installed. | ||||
| CVE-2000-0723 | 1 Helix Code | 1 Gnome Installer | 2025-04-03 | N/A |
| Helix GNOME Updater helix-update 0.5 and earlier does not properly create /tmp directories, which allows local users to create empty system configuration files such as /etc/config.d/bashrc, /etc/config.d/csh.cshrc, and /etc/rc.config. | ||||
| CVE-2000-0722 | 1 Helix Code | 1 Gnome Updater | 2025-04-03 | N/A |
| Helix GNOME Updater helix-update 0.5 and earlier allows local users to install arbitrary RPM packages by creating the /tmp/helix-install installation directory before root has begun installing packages. | ||||
| CVE-2000-0724 | 1 Helix Code | 1 Go-gnome Pre-installer | 2025-04-03 | N/A |
| The go-gnome Helix GNOME pre-installer allows local users to overwrite arbitrary files via a symlink attack on various files in /tmp, including uudecode, snarf, and some installer files. | ||||
| CVE-2000-0725 | 1 Zope | 1 Zope | 2025-04-03 | N/A |
| Zope before 2.2.1 does not properly restrict access to the getRoles method, which allows users who can edit DTML to add or modify roles by modifying the roles list that is included in a request. | ||||
| CVE-2000-0726 | 1 Stalkerlab | 1 Mailers | 2025-04-03 | N/A |
| CGIMail.exe CGI program in Stalkerlab Mailers 1.1.2 allows remote attackers to read arbitrary files by specifying the file in the $Attach$ hidden form variable. | ||||
| CVE-2000-0727 | 1 Xpdf | 1 Xpdf | 2025-04-03 | N/A |
| xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL's, which allows an attacker to execute arbitrary commands via a URL that contains shell metacharacters. | ||||
| CVE-2000-0720 | 1 Gwscripts | 1 Gwscripts News Publisher | 2025-04-03 | N/A |
| news.cgi in GWScripts News Publisher does not properly authenticate requests to add an author to the author index, which allows remote attackers to add new authors by directly posting an HTTP request to the new.cgi program with an addAuthor parameter, and setting the Referer to the news.cgi program. | ||||
| CVE-2000-0735 | 1 Rimarts Inc. | 1 Becky Internet Mail | 2025-04-03 | N/A |
| Buffer overflow in Becky! Internet Mail client 1.26.03 and earlier allows remote attackers to cause a denial of service via a long Content-type: MIME header when the user replies to a message. | ||||
| CVE-2000-0731 | 1 Jeremy Arnold | 1 Worm Webserver | 2025-04-03 | N/A |
| Directory traversal vulnerability in Worm HTTP server allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2000-0732 | 1 Jeremy Arnold | 1 Worm Webserver | 2025-04-03 | N/A |
| Worm HTTP server allows remote attackers to cause a denial of service via a long URL. | ||||
| CVE-2000-0734 | 2 Eeye Digital Security, Spynet | 2 Iris, Capturenet | 2025-04-03 | N/A |
| eEye IRIS 1.01 beta allows remote attackers to cause a denial of service via a large number of UDP connections. | ||||
| CVE-2000-0740 | 1 Network Associates | 1 Net Tools Pki Server | 2025-04-03 | N/A |
| Buffer overflow in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary commands via a long URL in the HTTPS port. | ||||
| CVE-2000-0739 | 1 Network Associates | 1 Net Tools Pki Server | 2025-04-03 | N/A |
| Directory traversal vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTPS request to the enrollment server. | ||||
| CVE-2000-0741 | 1 Network Associates | 1 Net Tools Pki Server | 2025-04-03 | N/A |
| Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary code via format strings in a URL with a .XUDA extension. | ||||
| CVE-2000-0743 | 1 University Of Minnesota | 1 Gopherd | 2025-04-03 | N/A |
| Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value. | ||||
| CVE-2000-0745 | 1 Francisco Burzi | 1 Php-nuke | 2025-04-03 | N/A |
| admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd parameter. | ||||