Unknown · CVSS Not scored
Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable.
Published Jan 15, 2009 · Updated Sep 16, 2024
Unknown · CVSS Not scored
cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files.
Published Jan 29, 2005 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message that is sent to the spoofed host, potentially setting up a loop, aka Snork.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
FreeBSD mount_union command allows local users to gain root privileges via a symlink attack.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in OmniHTTPd CGI program imagemap.exe allows remote attackers to execute commands.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
MBone SDR Package allows remote attackers to execute commands via shell metacharacters in Session Initiation Protocol (SIP) messages.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in mutt mail client allows remote attackers to execute commands via malformed MIME messages.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer via the res: local resource protocol.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
htdig allows remote attackers to execute commands via filenames with shell metacharacters.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
IRIX cdplayer allows local users to create directories in arbitrary locations via a command line option.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Windows NT Service Control Manager (SCM) allows remote attackers to cause a denial of service via a malformed argument in a resource enumeration request.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the "Spoofed Route Pointer" vulnerability.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords.
Published Jan 18, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in OpenLink 3.2 allows remote attackers to gain privileges via a long GET request to the web configurator.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
TeamTrack web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Microsoft SQL 7.0 server allows a remote attacker to cause a denial of service via a malformed TDS packet.
Published Jan 18, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Internet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client window and use a server-side redirect to access local files via that window, aka "Server-side Page Reference Redirect."
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
AN-HTTPd provides example CGI scripts test.bat, input.bat, input2.bat, and envout.bat, which allow remote attackers to execute commands via shell metacharacters.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
BNBForm allows remote attackers to read arbitrary files via the automessage hidden form variable.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Cisco Cache Engine allows a remote attacker to gain access via a null username and password.
Published Jan 18, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in Xshipwars xsw program.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in Internet Explorer 5 directshow filter (MSDXM.OCX) allows remote attackers to execute commands via the vnd.ms.radio protocol.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
sccw allows local users to read arbitrary files.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in GoodTech Telnet Server NT allows remote users to cause a denial of service via a long login name.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command.
Published Jan 18, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Denial of service in Debian IRC Epic/epic4 client via a long string.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Race condition in xterm allows local users to modify arbitrary files via the logging option.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids function which looks up the SID, aka "Malformed Security Identifier Request."
Published Jan 18, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
HP VirtualVault with the PHSS_17692 patch allows unprivileged processes to bypass access restrictions via the Trusted Gateway Proxy (TGP).
Published Jan 18, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
URL Live! web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Denial of service in Axent Raptor firewall via malformed zero-length IP options.
Published Jan 18, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
The Preloader ActiveX control used by Internet Explorer allows remote attackers to read arbitrary files.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
BNBSurvey survey.cgi program allows remote attackers to execute commands via shell metacharacters.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
Denial of service in various Windows systems via malformed, fragmented IGMP packets.
Published Jan 4, 2000 · Updated Aug 1, 2024
Unknown · CVSS Not scored
ypserv allows a local user to modify the GECOS and login shells of other users.
Published Jan 4, 2000 · Updated Aug 1, 2024