Vulnerabilities (CVE)

Filter

130084 total CVE
CVE Vendors Products Updated CVSS
CVE-2000-0798 1 Sgi 1 Irix 2008-09-05 10.0
The truncate function in IRIX 6.x does not properly check for privileges when the file is in the xfs file system, which allows local users to delete the contents of arbitrary files.
CVE-2000-0795 1 Sgi 1 Irix 2008-09-05 7.2
Buffer overflow in lpstat in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long -n option.
CVE-2000-0794 1 Sgi 1 Irix 2008-09-05 7.2
Buffer overflow in IRIX libgl.so library allows local users to gain root privileges via a long HOME variable to programs such as (1) gmemusage and (2) gr_osview.
CVE-2000-0793 2 Novell, Symantec 2 Client, Norton Antivirus 2008-09-05 10.0
Norton AntiVirus 5.00.01C with the Novell Netware client does not properly restart the auto-protection service after the first user has logged off of the system.
CVE-2000-0792 1 Alan Cox 1 Gnome-lokkit 2008-09-05 7.5
Gnome Lokkit firewall package before 0.41 does not properly restrict access to some ports, even if a user does not make any services available.
CVE-2000-0791 1 Trustix 1 Secure Linux 2008-09-05 4.6
Trustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows local users to replace it with a Trojan horse.
CVE-2000-0789 1 Bardon Data Systems 1 Winu 2008-09-05 4.6
WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges.
CVE-2000-0784 1 Rapidstream 1 Rapidstream 2008-09-05 10.0
sshd program in the Rapidstream 2.1 Beta VPN appliance has a hard-coded "rsadmin" account with a null password, which allows remote attackers to execute arbitrary commands via ssh.
CVE-2000-0775 1 Robtex 1 Viking Server 2008-09-05 7.5
Buffer overflow in RobTex Viking server earlier than 1.06-370 allows remote attackers to cause a denial of service or execute arbitrary commands via a long HTTP GET request, or long Unless-Modified-Since, If-Range, or If-Modified-Since headers.
CVE-2000-0774 1 Bajie 1 Java Http Server 2008-09-05 5.0
The sample Java servlet "test" in Bajie HTTP web server 0.30a reveals the real pathname of the web document root.
CVE-2000-0763 1 David Bagley 1 Xlock 2008-09-05 7.2
xlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option.
CVE-2000-0761 1 Ibm 1 Os2 Ftp Server 2008-09-05 5.0
OS2/Warp 4.5 FTP server allows remote attackers to cause a denial of service via a long username.
CVE-2000-0760 1 Apache 1 Tomcat 2008-09-05 6.4
The Snoop servlet in Jakarta Tomcat 3.1 and 3.0 under Apache reveals sensitive system information when a remote attacker requests a nonexistent URL with a .snp extension.
CVE-2000-0759 1 Apache 1 Tomcat 2008-09-05 6.4
Jakarta Tomcat 3.1 under Apache reveals physical path information when a remote attacker requests a URL that does not exist, which generates an error message that includes the physical path.
CVE-2000-0758 1 Lyris 1 List Manager 2008-09-05 4.6
The web interface for Lyris List Manager 3 and 4 allows list subscribers to obtain administrative access by modifying the value of the list_admin hidden form field.
CVE-2000-0757 1 Aptis Software 1 Totalbill 2008-09-05 10.0
The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed.
CVE-2000-0756 1 Microsoft 1 Outlook 2008-09-05 5.0
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows attackers to cause a denial of service.
CVE-2000-0755 1 Hp 1 Openview Network Node Manager 2008-09-05 4.6
Vulnerability in the newgrp command in HP-UX 11.00 allows local users to gain privileges.
CVE-2000-0754 1 Hp 1 Openview Network Node Manager 2008-09-05 2.1
Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords.
CVE-2000-0752 1 Freebsd 1 Freebsd 2008-09-05 7.2
Buffer overflows in brouted in FreeBSD and possibly other OSes allows local users to gain root privileges via long command line arguments.