Количество 329 939
Количество 329 939
CVE-2000-0400
The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by encoding it within an email message or news post.
CVE-2000-0399
Buffer overflow in MDaemon POP server allows remote attackers to cause a denial of service via a long user name.
CVE-2000-0398
Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long query_string parameter in the HTTP GET request.
CVE-2000-0397
The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's email account.
CVE-2000-0396
The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files.
CVE-2000-0395
Buffer overflow in CProxy 3.3 allows remote users to cause a denial of service via a long HTTP request.
CVE-2000-0394
NetProwler 3.0 allows remote attackers to cause a denial of service by sending malformed IP packets that trigger NetProwler's Man-in-the-Middle signature.
CVE-2000-0393
The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute.
CVE-2000-0392
Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges.
CVE-2000-0391
Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.
CVE-2000-0390
Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges.
CVE-2000-0389
Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges.
CVE-2000-0388
Buffer overflow in FreeBSD libmytinfo library allows local users to execute commands via a long TERMCAP environmental variable.
CVE-2000-0387
The makelev program in the golddig game from the FreeBSD ports collection allows local users to overwrite arbitrary files.
CVE-2000-0386
FileMaker Pro 5 Web Companion allows remote attackers to send anonymous or forged email.
CVE-2000-0385
FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilities.
CVE-2000-0384
NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access.
CVE-2000-0383
The file transfer component of AOL Instant Messenger (AIM) reveals the physical path of the transferred file to the remote recipient.
CVE-2000-0382
ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirected site.
CVE-2000-0381
The Gossamer Threads DBMan db.cgi CGI script allows remote attackers to view environmental variables and setup information by referencing a non-existing database in the db parameter.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2000-0400 The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by encoding it within an email message or news post. | CVSS2: 7.5 | 16% Средний | больше 25 лет назад |
| CVE-2000-0399 Buffer overflow in MDaemon POP server allows remote attackers to cause a denial of service via a long user name. | CVSS2: 5 | 1% Низкий | больше 25 лет назад |
| CVE-2000-0398 Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long query_string parameter in the HTTP GET request. | CVSS2: 10 | 3% Низкий | больше 25 лет назад |
| CVE-2000-0397 The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's email account. | CVSS2: 5 | 4% Низкий | больше 25 лет назад |
| CVE-2000-0396 The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files. | CVSS2: 5 | 4% Низкий | больше 25 лет назад |
| CVE-2000-0395 Buffer overflow in CProxy 3.3 allows remote users to cause a denial of service via a long HTTP request. | CVSS2: 5 | 4% Низкий | больше 25 лет назад |
| CVE-2000-0394 NetProwler 3.0 allows remote attackers to cause a denial of service by sending malformed IP packets that trigger NetProwler's Man-in-the-Middle signature. | CVSS2: 5 | 5% Низкий | больше 25 лет назад |
| CVE-2000-0393 The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute. | CVSS2: 7.2 | 1% Низкий | больше 25 лет назад |
| CVE-2000-0392 Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges. | CVSS2: 7.2 | 0% Низкий | больше 25 лет назад |
| CVE-2000-0391 Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges. | CVSS2: 10 | 8% Низкий | больше 25 лет назад |
| CVE-2000-0390 Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges. | CVSS2: 10 | 8% Низкий | больше 25 лет назад |
| CVE-2000-0389 Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges. | CVSS2: 10 | 11% Средний | больше 25 лет назад |
| CVE-2000-0388 Buffer overflow in FreeBSD libmytinfo library allows local users to execute commands via a long TERMCAP environmental variable. | CVSS2: 7.5 | 1% Низкий | почти 36 лет назад |
| CVE-2000-0387 The makelev program in the golddig game from the FreeBSD ports collection allows local users to overwrite arbitrary files. | CVSS2: 2.1 | 0% Низкий | почти 26 лет назад |
| CVE-2000-0386 FileMaker Pro 5 Web Companion allows remote attackers to send anonymous or forged email. | CVSS2: 7.5 | 1% Низкий | почти 26 лет назад |
| CVE-2000-0385 FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilities. | CVSS2: 5 | 0% Низкий | почти 26 лет назад |
| CVE-2000-0384 NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access. | CVSS2: 10 | 9% Низкий | почти 26 лет назад |
| CVE-2000-0383 The file transfer component of AOL Instant Messenger (AIM) reveals the physical path of the transferred file to the remote recipient. | CVSS2: 5 | 1% Низкий | почти 26 лет назад |
| CVE-2000-0382 ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirected site. | CVSS2: 2.6 | 0% Низкий | почти 26 лет назад |
| CVE-2000-0381 The Gossamer Threads DBMan db.cgi CGI script allows remote attackers to view environmental variables and setup information by referencing a non-existing database in the db parameter. | CVSS2: 6.4 | 3% Низкий | почти 26 лет назад |
Уязвимостей на страницу