CVE List - 2000 / May
Showing 1 - 12 of 12 CVEs for May 2000 (Page 1 of 1)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2000-0321 | 2000-05-18 | Buffer overflow in IC Radius package allows a remote attacker to cause a denial of service via a long user name. |
| CVE-2000-0325 | 2000-05-18 | The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability. |
| CVE-2000-0326 | 2000-05-18 | Meeting Maker uses weak encryption (a polyalphabetic substitution cipher) for passwords, which allows remote attackers to sniff and decrypt passwords for Meeting Maker accounts. |
| CVE-2000-0333 | 2000-05-18 | tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump... |
| CVE-2000-0343 | 2000-05-18 | Buffer overflow in Sniffit 0.3.x with the -L logging option enabled allows remote attackers to execute arbitrary commands via a long MAIL FROM mail header. |
| CVE-2000-0345 | 2000-05-18 | The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command. |
| CVE-2000-0355 | 2000-05-24 | pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files. |
| CVE-2000-0357 | 2000-05-24 | ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys. |
| CVE-2000-0358 | 2000-05-24 | ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program. |
| CVE-2000-0364 | 2000-05-24 | screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys. |
| CVE-2000-0365 | 2000-05-24 | Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices. |
| CVE-1999-0031 | 2000-06-02 | JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability. |
| CVE-1999-0118 | 2000-06-02 | AIX infod allows local users to gain root access through an X display. |
| CVE-1999-0124 | 2000-06-02 | Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon. |
| CVE-1999-0142 | 2000-06-02 | The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts. |
| CVE-1999-0210 | 2000-06-02 | Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters. |
| CVE-1999-0225 | 2000-06-02 | Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed SMB logon request in which the actual data size does not match the specified size. |
| CVE-1999-0323 | 2000-06-02 | FreeBSD mmap function allows users to modify append-only or immutable files. |
| CVE-1999-0407 | 2000-06-02 | By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the... |
| CVE-1999-0464 | 2000-06-02 | Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames. |
| CVE-1999-0491 | 2000-06-02 | The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute. |
| CVE-1999-0493 | 2000-06-02 | rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs... |
| CVE-1999-0668 | 2000-06-02 | The scriptlet.typelib ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy. |
| CVE-1999-0696 | 2000-06-02 | Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd). |
| CVE-1999-0719 | 2000-06-02 | The Guile plugin for the Gnumeric spreadsheet package allows attackers to execute arbitrary code. |
| CVE-1999-0754 | 2000-06-02 | The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable. |
| CVE-1999-0819 | 2000-06-02 | NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it. |
| CVE-1999-0832 | 2000-06-02 | Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname. |
| CVE-1999-0836 | 2000-06-02 | UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack. |
| CVE-1999-0838 | 2000-06-02 | Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command. |
| CVE-1999-0842 | 2000-06-02 | Symantec Mail-Gear 1.0 web interface server allows remote users to read arbitrary files via a .. (dot dot) attack. |
| CVE-1999-0854 | 2000-06-02 | Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file. |
| CVE-1999-0856 | 2000-06-02 | login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist. |
| CVE-1999-0859 | 2000-06-02 | Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse properly. |
| CVE-1999-0864 | 2000-06-02 | UnixWare programs that dump core allow a local user to modify files via a symlink attack on the ./core.pid file. |
| CVE-1999-0865 | 2000-06-02 | Buffer overflow in CommuniGatePro via a long string to the HTTP configuration port. |
| CVE-1999-0866 | 2000-06-02 | Buffer overflow in UnixWare xauto program allows local users to gain root privilege. |
| CVE-1999-0874 | 2000-06-02 | Buffer overflow in IIS 4.0 allows remote attackers to cause a denial of service via a malformed request for files with .HTR, .IDC, or .STM extensions. |
| CVE-1999-0976 | 2000-06-02 | Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail. |
| CVE-1999-1011 | 2000-06-02 | The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands. |
| CVE-2000-0004 | 2000-06-02 | ZBServer Pro allows remote attackers to read source code for executable files by inserting a . (dot) into the URL. |
| CVE-2000-0113 | 2000-06-02 | The SyGate Remote Management program does not properly restrict access to its administration service, which allows remote attackers to cause a denial of service, or access network traffic statistics. |
| CVE-2000-0169 | 2000-06-02 | Batch files in the Oracle web listener ows-bin directory allow remote attackers to execute commands via a malformed URL that includes '?&'. |
| CVE-2000-0171 | 2000-06-02 | atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges. |
| CVE-2000-0226 | 2000-06-02 | IIS 4.0 allows attackers to cause a denial of service by requesting a large buffer in a POST or PUT command which consumes memory, aka the "Chunked Transfer Encoding Buffer... |
| CVE-2000-0228 | 2000-06-02 | Microsoft Windows Media License Manager allows remote attackers to cause a denial of service by sending a malformed request that causes the manager to halt, aka the "Malformed Media License... |
| CVE-2000-0229 | 2000-06-02 | gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root. |
| CVE-2000-0230 | 2000-06-02 | Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable. |
| CVE-2000-0231 | 2000-06-02 | Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges. |
| CVE-2000-0232 | 2000-06-02 | Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request. |
| CVE-2000-0233 | 2000-06-02 | SuSE Linux IMAP server allows remote attackers to bypass IMAP authentication and gain privileges. |
| CVE-2000-0234 | 2000-06-02 | The default configuration of Cobalt RaQ2 and RaQ3 as specified in access.conf allows remote attackers to view sensitive contents of a .htaccess file. |
| CVE-2000-0235 | 2000-06-02 | Buffer overflow in the huh program in the orville-write package allows local users to gain root privileges. |
| CVE-2000-0245 | 2000-06-02 | Vulnerability in SGI IRIX objectserver daemon allows remote attackers to create user accounts. |
| CVE-2000-0246 | 2000-06-02 | IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code... |
| CVE-2000-0258 | 2000-06-02 | IIS 4.0 and 5.0 allows remote attackers to cause a denial of service by sending many URLs with a large number of escaped characters, aka the "Myriad Escaped Characters" Vulnerability. |
| CVE-2000-0260 | 2000-06-02 | Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute commands, aka the "Link View Server-Side Component" vulnerability. |
| CVE-2000-0267 | 2000-06-02 | Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password. |
| CVE-2000-0268 | 2000-06-02 | Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it,... |
| CVE-2000-0274 | 2000-06-02 | The Linux trustees kernel patch allows attackers to cause a denial of service by accessing a file or directory with a long name. |
| CVE-2000-0277 | 2000-06-02 | Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which could allow an attacker to execute a macro... |
| CVE-2000-0294 | 2000-06-02 | Buffer overflow in healthd for FreeBSD allows local users to gain root privileges. |
| CVE-2000-0323 | 2000-06-02 | The Microsoft Jet database engine allows an attacker to modify text files via a database query, aka the "Text I-ISAM" vulnerability. |
| CVE-2000-0327 | 2000-06-02 | Microsoft Virtual Machine (VM) allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, aka the "Virtual Machine Verifier" vulnerability. |
| CVE-2000-0328 | 2000-06-02 | Windows NT 4.0 generates predictable random TCP initial sequence numbers (ISN), which allows remote attackers to perform spoofing and session hijacking. |
| CVE-2000-0329 | 2000-06-02 | A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control"... |
| CVE-2000-0330 | 2000-06-02 | The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability. |
| CVE-2000-0383 | 2000-06-15 | The file transfer component of AOL Instant Messenger (AIM) reveals the physical path of the transferred file to the remote recipient. |
| CVE-2000-0384 | 2000-06-15 | NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access. |
| CVE-2000-0385 | 2000-06-15 | FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilities. |
| CVE-2000-0386 | 2000-06-15 | FileMaker Pro 5 Web Companion allows remote attackers to send anonymous or forged email. |
| CVE-2000-0400 | 2000-06-15 | The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to... |
| CVE-2000-0401 | 2000-06-15 | Buffer overflows in redirect.exe and changepw.exe in PDGSoft shopping cart allow remote attackers to execute arbitrary commands via a long query string. |
| CVE-2000-0412 | 2000-06-15 | The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the... |
| CVE-2000-0413 | 2000-06-15 | The shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers to determine the physical path of HTML, HTM, ASP, and SHTML files by requesting... |
| CVE-2000-0415 | 2000-06-15 | Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long... |
| CVE-2000-0420 | 2000-06-15 | The default configuration of SYSKEY in Windows 2000 stores the startup key in the registry, which could allow an attacker tor ecover it and use it to decrypt Encrypted File... |
| CVE-2000-0422 | 2000-06-15 | Buffer overflow in Netwin DMailWeb CGI program allows remote attackers to execute arbitrary commands via a long utoken parameter. |
| CVE-2000-0423 | 2000-06-15 | Buffer overflow in Netwin DNEWSWEB CGI program allows remote attackers to execute arbitrary commands via long parameters such as group, cmd, and utag. |
| CVE-2000-0429 | 2000-06-15 | A backdoor password in Cart32 3.0 and earlier allows remote attackers to execute arbitrary commands. |
| CVE-2000-0433 | 2000-06-15 | The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accounts by creating standard user startup scripts... |
| CVE-2000-0434 | 2000-06-15 | The administrative password for the Allmanage web site administration software is stored in plaintext in a file which could be accessed by remote attackers. |
| CVE-2000-0444 | 2000-06-15 | HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000. |
| CVE-2000-0449 | 2000-06-15 | Omnis Studio 2.4 uses weak encryption (trivial encoding) for encrypting database fields. |
| CVE-2000-0450 | 2000-06-15 | Vulnerability in bbd server in Big Brother System and Network Monitor allows an attacker to execute arbitrary commands. |
| CVE-1999-0378 | 2000-07-12 | InterScan VirusWall for Solaris doesn't scan files for viruses when a single HTTP request includes two GET commands. |
| CVE-1999-0387 | 2000-07-12 | A legacy credential caching mechanism used in Windows 95 and Windows 98 systems allows attackers to read plaintext network passwords. |
| CVE-1999-0415 | 2000-07-12 | The HTTP server in Cisco 7xx series routers 3.2 through 4.2 is enabled by default, which allows remote attackers to change the router's configuration. |
| CVE-1999-0416 | 2000-07-12 | Vulnerability in Cisco 7xx series routers allows a remote attacker to cause a system reload via a TCP connection to the router's TELNET port. |
| CVE-1999-0820 | 2000-07-12 | FreeBSD seyon allows users to gain privileges via a modified PATH variable for finding the xterm and seyon-emu commands. |
| CVE-1999-0959 | 2000-07-12 | IRIX startmidi program allows local users to modify arbitrary files via a symlink attack. |
| CVE-2000-0001 | 2000-07-12 | RealMedia server allows remote attackers to cause a denial of service via a long ramgen request. |
| CVE-2000-0011 | 2000-07-12 | Buffer overflow in AnalogX SimpleServer:WWW HTTP server allows remote attackers to execute commands via a long GET request. |
| CVE-2000-0013 | 2000-07-12 | IRIX soundplayer program allows local users to gain privileges by including shell metacharacters in a .wav file, which is executed via the midikeys program. |
| CVE-2000-0015 | 2000-07-12 | CascadeView TFTP server allows local users to gain privileges via a symlink attack. |
| CVE-2000-0018 | 2000-07-12 | wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file. |
| CVE-2000-0030 | 2000-07-12 | Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database. |
| CVE-2000-0032 | 2000-07-12 | Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database. |
| CVE-2000-0034 | 2000-07-12 | Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords." |
| CVE-2000-0045 | 2000-07-12 | MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege. |