Количество 331 703
Количество 331 703
CVE-2000-0164
The installation of Sun Internet Mail Server (SIMS) creates a world-readable file that allows local users to obtain passwords.
CVE-2000-0163
asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file.
CVE-2000-0162
The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability.
CVE-2000-0161
Sample web sites on Microsoft Site Server 3.0 Commerce Edition do not validate an identification number, which allows remote attackers to execute SQL commands.
CVE-2000-0160
The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft.
CVE-2000-0159
HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges.
CVE-2000-0158
Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon.
CVE-2000-0157
NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process.
CVE-2000-0156
Internet Explorer 4.x and 5.x allows remote web servers to access files on the client that are outside of its security domain, aka the "Image Source Redirect" vulnerability.
CVE-2000-0155
Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive.
CVE-2000-0154
The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack.
CVE-2000-0153
FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack.
CVE-2000-0152
Remote attackers can cause a denial of service in Novell BorderManager 3.5 by pressing the enter key in a telnet connection to port 2000.
CVE-2000-0151
GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands.
CVE-2000-0150
Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt.
CVE-2000-0149
Zeus web server allows remote attackers to view the source code for CGI programs via a null character (%00) at the end of a URL.
CVE-2000-0148
MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string.
CVE-2000-0147
snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration.
CVE-2000-0146
The Java Server in the Novell GroupWise Web Access Enhancement Pack allows remote attackers to cause a denial of service via a long URL to the servlet.
CVE-2000-0145
The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2000-0164 The installation of Sun Internet Mail Server (SIMS) creates a world-readable file that allows local users to obtain passwords. | CVSS2: 7.2 | 0% Низкий | почти 26 лет назад |
| CVE-2000-0163 asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file. | CVSS2: 4.6 | 0% Низкий | почти 26 лет назад |
| CVE-2000-0162 The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability. | CVSS2: 5.1 | 1% Низкий | почти 26 лет назад |
| CVE-2000-0161 Sample web sites on Microsoft Site Server 3.0 Commerce Edition do not validate an identification number, which allows remote attackers to execute SQL commands. | CVSS2: 7.5 | 8% Низкий | почти 26 лет назад |
| CVE-2000-0160 The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft. | CVSS2: 7.6 | 10% Средний | почти 26 лет назад |
| CVE-2000-0159 HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker to gain privileges. | CVSS2: 7.5 | 1% Низкий | почти 26 лет назад |
| CVE-2000-0158 Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon. | CVSS2: 7.5 | 1% Низкий | почти 26 лет назад |
| CVE-2000-0157 NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process. | CVSS2: 7.2 | 0% Низкий | около 26 лет назад |
| CVE-2000-0156 Internet Explorer 4.x and 5.x allows remote web servers to access files on the client that are outside of its security domain, aka the "Image Source Redirect" vulnerability. | CVSS2: 5.1 | 17% Средний | почти 26 лет назад |
| CVE-2000-0155 Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive. | CVSS2: 7.2 | 2% Низкий | почти 26 лет назад |
| CVE-2000-0154 The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack. | CVSS2: 1.2 | 0% Низкий | почти 26 лет назад |
| CVE-2000-0153 FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack. | CVSS2: 5 | 29% Средний | почти 27 лет назад |
| CVE-2000-0152 Remote attackers can cause a denial of service in Novell BorderManager 3.5 by pressing the enter key in a telnet connection to port 2000. | CVSS2: 5 | 2% Низкий | почти 26 лет назад |
| CVE-2000-0151 GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands. | CVSS2: 6.2 | 0% Низкий | около 26 лет назад |
| CVE-2000-0150 Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt. | CVSS2: 7.5 | 0% Низкий | почти 26 лет назад |
| CVE-2000-0149 Zeus web server allows remote attackers to view the source code for CGI programs via a null character (%00) at the end of a URL. | CVSS2: 5 | 5% Низкий | около 26 лет назад |
| CVE-2000-0148 MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string. | CVSS2: 7.5 | 0% Низкий | около 26 лет назад |
| CVE-2000-0147 snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration. | CVSS2: 2.1 | 0% Низкий | около 26 лет назад |
| CVE-2000-0146 The Java Server in the Novell GroupWise Web Access Enhancement Pack allows remote attackers to cause a denial of service via a long URL to the servlet. | CVSS2: 5 | 6% Низкий | около 26 лет назад |
| CVE-2000-0145 The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions. | CVSS2: 7.5 | 0% Низкий | около 26 лет назад |
Уязвимостей на страницу