Unknown · CVSS Not scored
Computer Associates InoculateIT Agent for Exchange Server does not recognize an e-mail virus attachment if the SMTP header is missing the "From" field, which allows remote attackers to bypass virus protection.
Published Oct 18, 2007 · Updated Sep 16, 2024
Unknown · CVSS Not scored
The default configuration of the jserv-status handler in jserv.conf in Apache JServ 1.1.2 includes an "allow from 127.0.0.1" line, which allows local users to discover JDBC passwords or other sensitive information via a direct request to the jserv/ URI.
Published Oct 5, 2011 · Updated Aug 8, 2024
Unknown · CVSS Not scored
LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Interbase 6 SuperServer for Linux allows an attacker to cause a denial of service via a query containing 0 bytes.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The logging capability in muh 2.05d IRC server does not properly cleanse user-injected format strings, which allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed nickname.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Intel Express 500 series switches allow a remote attacker to cause a denial of service via a malformed ICMP packet, which causes the CPU to crash.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SunFTP build 9(1) allows remote attackers to cause a denial of service by connecting to the server and disconnecting before sending a newline.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to start and stop various LPD services.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
explorer.php in PhotoAlbum 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in pam_smb and pam_ntdom pluggable authentication modules (PAM) allow remote attackers to execute arbitrary commands via a login with a long user name.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long APOP command.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
kdebug daemon (kdebugd) in Digital Unix 4.0F allows remote attackers to read arbitrary files by specifying the full file name in the initialization packet.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
IIS 4.0 and 5.0 does not properly restrict access to certain types of files when their parent folders have less restrictive permissions, which could allow remote attackers to bypass access restrictions to some files, aka the "File Permission Canonicalization" vulnerability.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in Fastream FTP++ 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long username.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in WinSMTP 1.06f and 2.X allows remote attackers to cause a denial of service via a long (1) USER or (2) HELO command.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in CamShot WebCam Trial2.6 allows remote attackers to execute arbitrary commands via a long Authorization header.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
xlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in ddicgi.exe program in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long GET request.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in ddicgi.exe in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long User-Agent parameter.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
search.dll Sambar ISAPI Search utility in Sambar Server 4.4 Beta 3 allows remote attackers to read arbitrary directories by specifying the directory in the query parameter.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long USER command.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
netauth.cgi program in Netwin Netauth 4.2e and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Htgrep CGI program allows remote attackers to read arbitrary files by specifying the full pathname in the hdr parameter.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
GNU userv 1.0.0 and earlier does not properly perform file descriptor swapping, which can corrupt the USERV_GROUPS and USERV_GIDS environmental variables and allow local users to bypass some access restrictions.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
IRC Xchat client versions 1.4.2 and earlier allows remote attackers to execute arbitrary commands by encoding shell metacharacters into a URL which XChat uses to launch a web browser.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The ActiveX control for invoking a scriptlet in Internet Explorer 4.x and 5.x renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka the "Scriptlet Rendering" vulnerability.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
ntop running in web mode allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Gnome Lokkit firewall package before 0.41 does not properly restrict access to some ports, even if a user does not make any services available.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft Windows 2000 allows local users to cause a denial of service by corrupting the local security policy via malformed RPC traffic, aka the "Local Security Policy Corruption" vulnerability.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the web authorization form of Mobius DocumentDirect for the Internet 1.2 allows remote attackers to cause a denial of service or execute arbitrary commands via a long username.
Published Oct 18, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
BEA WebLogic 5.1.x allows remote attackers to read source code for parsed pages by inserting /*.shtml/ into the URL, which invokes the SSIServlet.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
BEA WebLogic 5.1.x does not properly restrict access to the PageCompileServlet, which could allow remote attackers to compile and execute Java JHTML code by directly invoking the servlet on any source file.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the HTML interpreter in Microsoft Office 2000 allows an attacker to execute arbitrary commands via a long embedded object tag, aka the "Microsoft Office HTML Object Tag" vulnerability.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Service Control Manager (SCM) in Windows 2000 creates predictable named pipes, which allows a local user with console access to gain administrator privileges, aka the "Service Control Manager Named Pipe Impersonation" vulnerability.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The password protection feature of Microsoft Money can store the password in plaintext, which allows attackers with physical access to the system to obtain the password, aka the "Money Password" vulnerability.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd parameter.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
IIS 5.0 allows remote attackers to obtain source code for .ASP files and other scripts via an HTTP GET request with a "Translate: f" header, aka the "Specialized Header" vulnerability.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp directory before they are installed.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Checkpoint Firewall-1 with the RSH/REXEC setting enabled allows remote attackers to bypass access restrictions and connect to a RSH/REXEC client via malformed connection requests.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
OS2/Warp 4.5 FTP server allows remote attackers to cause a denial of service via a long username.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The web interface for Lyris List Manager 3 and 4 allows list subscribers to obtain administrative access by modifying the value of the list_admin hidden form field.
Published Oct 13, 2000 · Updated Aug 8, 2024
Unknown · CVSS Not scored
xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL's, which allows an attacker to execute arbitrary commands via a URL that contains shell metacharacters.
Published Oct 13, 2000 · Updated Aug 8, 2024