CVE List - 2000 / December
Showing 1 - 56 of 56 CVEs for December 2000 (Page 1 of 1)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2000-0899 | 2000-12-19 | Small HTTP Server 2.01 allows remote attackers to cause a denial of service by connecting to the server and sending out multiple GET, HEAD, or POST requests and closing the... |
| CVE-2000-1039 | 2000-12-19 | Various TCP/IP stacks and network applications allow remote attackers to cause a denial of service by flooding a target host with TCP connection attempts and completing the TCP/IP handshake without... |
| CVE-2000-1081 | 2000-12-19 | The xp_displayparamstmt function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL... |
| CVE-2000-1082 | 2000-12-19 | The xp_enumresultset function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL... |
| CVE-2000-1083 | 2000-12-19 | The xp_showcolv function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL... |
| CVE-2000-1084 | 2000-12-19 | The xp_updatecolvbm function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL... |
| CVE-2000-1085 | 2000-12-19 | The xp_peekqueue function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the... |
| CVE-2000-1086 | 2000-12-19 | The xp_printstatements function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the... |
| CVE-2000-1087 | 2000-12-19 | The xp_proxiedmetadata function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the... |
| CVE-2000-1088 | 2000-12-19 | The xp_SetSQLSecurity function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the... |
| CVE-2000-1092 | 2000-12-19 | loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target... |
| CVE-2000-1093 | 2000-12-19 | Buffer overflow in AOL Instant Messenger before 4.3.2229 allows remote attackers to execute arbitrary commands via a long "goim" command. |
| CVE-2000-1098 | 2000-12-19 | The web server for the SonicWALL SOHO firewall allows remote attackers to cause a denial of service via an empty GET or POST request. |
| CVE-2000-1100 | 2000-12-19 | The default configuration for PostACI webmail system installs the /includes/global.inc configuration file within the web root, which allows remote attackers to read sensitive information such as database usernames and passwords... |
| CVE-2000-1102 | 2000-12-19 | PTlink IRCD 3.5.3 and PTlink Services 1.8.1 allow remote attackers to cause a denial of service (server crash) via "mode +owgscfxeb" and "oper" commands. |
| CVE-2000-1103 | 2000-12-19 | rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on... |
| CVE-2000-1104 | 2000-12-19 | Variant of the "IIS Cross-Site Scripting" vulnerability as originally discussed in MS:MS00-060 (CVE-2000-0746) allows a malicious web site operator to embed scripts in a link to a trusted site, which... |
| CVE-2000-1105 | 2000-12-19 | The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the existence of files on visiting Windows... |
| CVE-2000-1110 | 2000-12-19 | document.d2w CGI program in the IBM Net.Data db2www package allows remote attackers to determine the physical path of the web server by sending a nonexistent command to the program. |
| CVE-2000-1114 | 2000-12-19 | Unify ServletExec AS v3.0C allows remote attackers to read source code for JSP pages via an HTTP request that ends with characters such as ".", or "+", or "%20". |
| CVE-2000-1116 | 2000-12-19 | Buffer overflow in TransSoft Broker FTP Server before 4.3.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long command. |
| CVE-2000-1117 | 2000-12-19 | The Extended Control List (ECL) feature of the Java Virtual Machine (JVM) in Lotus Notes Client R5 allows malicious web site operators to determine the existence of files on the... |
| CVE-2000-1118 | 2000-12-19 | 24Link 1.06 web server allows remote attackers to bypass access restrictions by prepending strings such as "/+/" or "/." to the HTTP GET request. |
| CVE-2000-1125 | 2000-12-19 | restore 0.4b15 and earlier in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH... |
| CVE-2000-1126 | 2000-12-19 | Vulnerability in auto_parms and set_parms in HP-UX 11.00 and earlier allows remote attackers to execute arbitrary commands or cause a denial of service. |
| CVE-2000-1127 | 2000-12-19 | registrar in the HP resource monitor service allows local users to read and modify arbitrary files by renaming the original registrar.log log file and creating a symbolic link to the... |
| CVE-2000-1128 | 2000-12-19 | The default configuration of McAfee VirusScan 4.5 does not quote the ImagePath variable, which improperly sets the search path and allows local users to place a Trojan horse "common.exe" program... |
| CVE-2000-1129 | 2000-12-19 | McAfee WebShield SMTP 4.5 allows remote attackers to cause a denial of service via a malformed recipient field. |
| CVE-2000-1130 | 2000-12-19 | McAfee WebShield SMTP 4.5 allows remote attackers to bypass email content filtering rules by including Extended ASCII characters in name of the attachment. |
| CVE-2000-1133 | 2000-12-19 | Authentix Authentix100 allows remote attackers to bypass authentication by inserting a . (dot) into the URL for a protected directory. |
| CVE-2000-1134 | 2000-12-19 | Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows... |
| CVE-2000-1138 | 2000-12-19 | Lotus Notes R5 client R5.0.5 and earlier does not properly warn users when an S/MIME email message has been modified, which could allow an attacker to modify the email in... |
| CVE-2000-1147 | 2000-12-19 | Buffer overflow in IIS ISAPI .ASP parsing mechanism allows attackers to execute arbitrary commands via a long string to the "LANGUAGE" argument in a script tag. |
| CVE-2000-1150 | 2000-12-19 | Felix IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL. |
| CVE-2000-1151 | 2000-12-19 | Baxter IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL. |
| CVE-2000-1152 | 2000-12-19 | Browser IRC client in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL. |
| CVE-2000-1153 | 2000-12-19 | PostMaster 1.0 in BeOS r5 pro and earlier allows remote attackers to conduct a denial of service via a message that contains a long URL. |
| CVE-2000-1154 | 2000-12-19 | RHConsole in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request. |
| CVE-2000-1155 | 2000-12-19 | RHDaemon in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request. |
| CVE-2000-1156 | 2000-12-19 | StarOffice 5.2 follows symlinks and sets world-readable permissions for the /tmp/soffice.tmp directory, which allows a local user to read files of the user who is using StarOffice. |
| CVE-2000-1157 | 2000-12-19 | Buffer overflow in NAI Sniffer Agent allows remote attackers to execute arbitrary commands via a long SNMP community name. |
| CVE-2000-1158 | 2000-12-19 | NAI Sniffer Agent uses base64 encoding for authentication, which allows attackers to sniff the network and easily decrypt usernames and passwords. |
| CVE-2000-1159 | 2000-12-19 | NAI Sniffer Agent allows remote attackers to gain privileges on the agent by sniffing the initial UDP authentication packets and spoofing commands. |
| CVE-2000-1160 | 2000-12-19 | NAI Sniffer Agent allows remote attackers to cause a denial of service (crash) by sending a large number of login requests. |
| CVE-2000-1161 | 2000-12-19 | The installation of AdCycle banner management system leaves the build.cgi program in a web-accessible directory, which allows remote attackers to execute the program and view passwords or delete databases. |
| CVE-2000-1168 | 2000-12-19 | IBM HTTP Server 1.3.6 (based on Apache) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request. |
| CVE-2000-1172 | 2000-12-19 | Buffer overflow in Gaim 0.10.3 and earlier using the OSCAR protocol allows remote attackers to conduct a denial of service and possibly execute arbitrary commands via a long HTML tag. |
| CVE-2000-1173 | 2000-12-19 | Microsys CyberPatrol uses weak encryption (trivial encoding) for credit card numbers and uses no encryption for the remainder of the information during registration, which could allow attackers to sniff network... |
| CVE-2000-1175 | 2000-12-19 | Buffer overflow in Koules 1.4 allows local users to execute arbitrary commands via a long command line argument. |
| CVE-2000-1176 | 2000-12-19 | Directory traversal vulnerability in YaBB search.pl CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catsearch" form field. |
| CVE-2000-1177 | 2000-12-19 | bb-hist.sh, bb-histlog.sh, bb-hostsvc.sh, bb-rep.sh, bb-replog.sh, and bb-ack.sh in Big Brother (BB) before 1.5d3 allows remote attackers to determine the existence of files and user ID's by specifying the target file... |
| CVE-2000-1183 | 2000-12-19 | Buffer overflow in socks5 server on Linux allows attackers to execute arbitrary commands via a long connection request. |
| CVE-2000-1185 | 2000-12-19 | The telnet proxy in RideWay PN proxy server allows remote attackers to cause a denial of service via a flood of connections that contain malformed requests. |
| CVE-2000-1186 | 2000-12-19 | Buffer overflow in phf CGI program allows remote attackers to execute arbitrary commands by specifying a large number of arguments and including a long MIME header. |
| CVE-2000-1188 | 2000-12-19 | Directory traversal vulnerability in Quikstore shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "page" parameter. |
| CVE-2000-0048 | 2001-01-22 | get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program. |
| CVE-2000-0080 | 2001-01-22 | AIX techlibss allows local users to overwrite files via a symlink attack. |
| CVE-2000-0111 | 2001-01-22 | The RightFax web client uses predictable session numbers, which allows remote attackers to hijack user sessions. |
| CVE-2000-0252 | 2001-01-22 | The dansie shopping cart application cart.pl allows remote attackers to execute commands via a shell metacharacters in a form variable. |
| CVE-2000-0253 | 2001-01-22 | The dansie shopping cart application cart.pl allows remote attackers to modify sensitive purchase information via hidden form fields. |
| CVE-2000-0254 | 2001-01-22 | The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration information via a URL that references either the env, db, or vars form... |
| CVE-2000-0255 | 2001-01-22 | The Nbase-Xyplex EdgeBlaster router allows remote attackers to cause a denial of service via a scan for the FormMail CGI program. |
| CVE-2000-0276 | 2001-01-22 | BeOS 4.5 and 5.0 allow local users to cause a denial of service via malformed direct system calls using interrupt 37. |
| CVE-2000-0278 | 2001-01-22 | The SalesLogix Eviewer allows remote attackers to cause a denial of service by accessing the URL for the slxweb.dll administration program, which does not authenticate the user. |
| CVE-2000-0283 | 2001-01-22 | The default installation of IRIX Performance Copilot allows remote attackers to access sensitive system information via the pmcd daemon. |
| CVE-2000-0287 | 2001-01-22 | The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter. |
| CVE-2000-0292 | 2001-01-22 | The Adtran MX2800 M13 Multiplexer allows remote attackers to cause a denial of service via a ping flood to the Ethernet interface, which causes the device to crash. |
| CVE-2000-0296 | 2001-01-22 | fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck. |
| CVE-2000-0341 | 2001-01-22 | ATRIUM Cassandra NNTP Server 1.10 allows remote attackers to cause a denial of service via a long login name. |
| CVE-2000-0488 | 2001-01-22 | Buffer overflow in ITHouse mail server 1.04 allows remote attackers to execute arbitrary commands via a long RCPT TO mail command. |
| CVE-2000-0498 | 2001-01-22 | Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case. |
| CVE-2000-0523 | 2001-01-22 | Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command. |
| CVE-2000-0542 | 2001-01-22 | Tigris remote access server before 11.5.4.22 does not properly record Radius accounting information when a user fails the initial login authentication but subsequently succeeds. |
| CVE-2000-0565 | 2001-01-22 | SmartFTP Daemon 0.2 allows a local user to access arbitrary files by uploading and specifying an alternate user configuration file via a .. (dot dot) attack. |
| CVE-2000-0672 | 2001-01-22 | The default configuration of Jakarta Tomcat does not restrict access to the /admin context, which allows remote attackers to read arbitrary files by directly calling the administrative servlets to add... |
| CVE-2000-0679 | 2001-01-22 | The CVS 1.10.8 client trusts pathnames that are provided by the CVS server, which allows the server to force the client to create arbitrary files. |
| CVE-2000-0698 | 2001-01-22 | Minicom 1.82.1 and earlier on some Linux systems allows local users to create arbitrary files owned by the uucp user via a symlink attack. |
| CVE-2000-0702 | 2001-01-22 | The net.init rc script in HP-UX 11.00 (S008net.init) allows local users to overwrite arbitrary files via a symlink attack that points from /tmp/stcp.conf to the targeted file. |
| CVE-2000-0716 | 2001-01-22 | WorldClient email client in MDaemon 2.8 includes the session ID in the referer field of an HTTP request when the user clicks on a URL, which allows the visited web... |
| CVE-2000-0729 | 2001-01-22 | FreeBSD 5.x, 4.x, and 3.x allows local users to cause a denial of service by executing a program with a malformed ELF image header. |
| CVE-2000-0732 | 2001-01-22 | Worm HTTP server allows remote attackers to cause a denial of service via a long URL. |
| CVE-2000-0738 | 2001-01-22 | WebShield SMTP 4.5 allows remote attackers to cause a denial of service by sending e-mail with a From: address that has a . (period) at the end, which causes WebShield... |
| CVE-2000-0749 | 2001-01-22 | Buffer overflow in the Linux binary compatibility module in FreeBSD 3.x through 5.x allows local users to gain root privileges via long filenames in the linux shadow file system. |
| CVE-2000-0762 | 2001-01-22 | The default installation of eTrust Access Control (formerly SeOS) uses a default encryption key, which allows remote attackers to spoof the eTrust administrator and gain privileges. |
| CVE-2000-0764 | 2001-01-22 | Intel Express 500 series switches allow a remote attacker to cause a denial of service via a malformed IP packet. |
| CVE-2000-0766 | 2001-01-22 | Buffer overflow in vqSoft vqServer 1.4.49 allows remote attackers to cause a denial of service or possibly gain privileges via a long HTTP GET request. |
| CVE-2000-0783 | 2001-01-22 | Watchguard Firebox II allows remote attackers to cause a denial of service by sending a malformed URL to the authentication service on port 4100. |
| CVE-2000-0804 | 2001-01-22 | Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass the directionality check via fragmented TCP connection requests or reopening closed TCP connection requests, aka "One-way Connection Enforcement Bypass." |
| CVE-2000-0805 | 2001-01-22 | Check Point VPN-1/FireWall-1 4.1 and earlier improperly retransmits encapsulated FWS packets, even if they do not come from a valid FWZ client, aka "Retransmission of Encapsulated Packets." |
| CVE-2000-0806 | 2001-01-22 | The inter-module authentication mechanism (fwa1) in Check Point VPN-1/FireWall-1 4.1 and earlier may allow remote attackers to conduct a denial of service, aka "Inter-module Communications Bypass." |
| CVE-2000-0807 | 2001-01-22 | The OPSEC communications authentication mechanism (fwn1) in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to spoof connections, aka the "OPSEC Authentication Vulnerability." |
| CVE-2000-0808 | 2001-01-22 | The seed generation mechanism in the inter-module S/Key authentication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to bypass authentication via a brute force attack, aka "One-time... |
| CVE-2000-0809 | 2001-01-22 | Buffer overflow in Getkey in the protocol checker in the inter-module communication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to cause a denial of service. |
| CVE-2000-0810 | 2001-01-22 | Auction Weaver 1.0 through 1.04 does not properly validate the names of form fields, which allows remote attackers to delete arbitrary files and directories via a .. (dot dot) attack. |
| CVE-2000-0811 | 2001-01-22 | Auction Weaver 1.0 through 1.04 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the username or bidfile form fields. |
| CVE-2000-0813 | 2001-01-22 | Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers ("FTP Bounce") via invalid FTP commands that are processed improperly by FireWall-1, aka "FTP... |
| CVE-2000-0824 | 2001-01-22 | The unsetenv function in glibc 2.1.1 does not properly unset an environmental variable if the variable is provided twice to a program, which could allow local users to execute arbitrary... |
| CVE-2000-0834 | 2001-01-22 | The Windows 2000 telnet client attempts to perform NTLM authentication by default, which allows remote attackers to capture and replay the NTLM challenge/response via a telnet:// URL that points to... |
| CVE-2000-0837 | 2001-01-22 | FTP Serv-U 2.5e allows remote attackers to cause a denial of service by sending a large number of null bytes. |
| CVE-2000-0844 | 2001-01-22 | Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and... |