Количество 307 557
Количество 307 557
CVE-2000-0539
Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet.
CVE-2000-0538
ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password.
CVE-2000-0537
BRU backup software allows local users to append data to arbitrary files by specifying an alternate configuration file with the BRUEXECLOG environmental variable.
CVE-2000-0536
xinetd 2.1.8.x does not properly restrict connections if hostnames are used for access control and the connecting host does not have a reverse DNS entry.
CVE-2000-0535
OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak keys which may be more easily broken.
CVE-2000-0534
The apsfilter software in the FreeBSD ports package does not properly read user filter configurations, which allows local users to execute commands as the lpd user.
CVE-2000-0533
Vulnerability in cvconnect in SGI IRIX WorkShop allows local users to overwrite arbitrary files.
CVE-2000-0532
A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered.
CVE-2000-0531
Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets.
CVE-2000-0530
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
CVE-2000-0529
Net Tools PKI Server allows remote attackers to cause a denial of service via a long HTTP request.
CVE-2000-0528
Net Tools PKI Server does not properly restrict access to remote attackers when the XUDA template files do not contain absolute pathnames for other files.
CVE-2000-0527
userreg.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
CVE-2000-0526
mailview.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVE-2000-0525
OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.
CVE-2000-0524
Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From.
CVE-2000-0523
Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command.
CVE-2000-0522
RSA ACE/Server allows remote attackers to cause a denial of service by flooding the server's authentication request port with UDP packets, which causes the server to crash.
CVE-2000-0521
Savant web server allows remote attackers to read source code of CGI scripts via a GET request that does not include the HTTP version number.
CVE-2000-0520
Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2000-0539 Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet. | CVSS2: 6.4 | 1% Низкий | около 25 лет назад |
| CVE-2000-0538 ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password. | CVSS2: 5 | 9% Низкий | около 25 лет назад |
| CVE-2000-0537 BRU backup software allows local users to append data to arbitrary files by specifying an alternate configuration file with the BRUEXECLOG environmental variable. | CVSS2: 7.2 | 0% Низкий | около 25 лет назад |
| CVE-2000-0536 xinetd 2.1.8.x does not properly restrict connections if hostnames are used for access control and the connecting host does not have a reverse DNS entry. | CVSS2: 7.5 | 0% Низкий | около 25 лет назад |
| CVE-2000-0535 OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak keys which may be more easily broken. | CVSS2: 5 | 0% Низкий | около 25 лет назад |
| CVE-2000-0534 The apsfilter software in the FreeBSD ports package does not properly read user filter configurations, which allows local users to execute commands as the lpd user. | CVSS2: 4.6 | 0% Низкий | около 25 лет назад |
| CVE-2000-0533 Vulnerability in cvconnect in SGI IRIX WorkShop allows local users to overwrite arbitrary files. | CVSS2: 7.2 | 0% Низкий | около 25 лет назад |
| CVE-2000-0532 A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered. | CVSS2: 7.5 | 1% Низкий | около 25 лет назад |
| CVE-2000-0531 Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets. | CVSS2: 2.1 | 0% Низкий | почти 26 лет назад |
| CVE-2000-0530 The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files. | CVSS2: 7.2 | 0% Низкий | больше 25 лет назад |
| CVE-2000-0529 Net Tools PKI Server allows remote attackers to cause a denial of service via a long HTTP request. | CVSS2: 5 | 1% Низкий | около 25 лет назад |
| CVE-2000-0528 Net Tools PKI Server does not properly restrict access to remote attackers when the XUDA template files do not contain absolute pathnames for other files. | CVSS2: 5 | 1% Низкий | около 25 лет назад |
| CVE-2000-0527 userreg.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters. | CVSS2: 10 | 4% Низкий | около 25 лет назад |
| CVE-2000-0526 mailview.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack. | CVSS2: 5 | 4% Низкий | около 25 лет назад |
| CVE-2000-0525 OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon. | CVSS2: 10 | 1% Низкий | около 25 лет назад |
| CVE-2000-0524 Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From. | CVSS2: 5 | 16% Средний | около 25 лет назад |
| CVE-2000-0523 Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command. | CVSS2: 10 | 5% Низкий | около 25 лет назад |
| CVE-2000-0522 RSA ACE/Server allows remote attackers to cause a denial of service by flooding the server's authentication request port with UDP packets, which causes the server to crash. | CVSS2: 5 | 1% Низкий | около 25 лет назад |
| CVE-2000-0521 Savant web server allows remote attackers to read source code of CGI scripts via a GET request that does not include the HTTP version number. | CVSS2: 5 | 8% Низкий | около 25 лет назад |
| CVE-2000-0520 Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name. | CVSS2: 7.2 | 0% Низкий | около 25 лет назад |
Уязвимостей на страницу