Total
29898 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-0038 | 1 Glftpd | 1 Glftpd | 2026-04-16 | N/A |
| glFtpD includes a default glftpd user account with a default password and a UID of 0. | ||||
| CVE-2000-0039 | 1 Altavista | 1 Search Intranet | 2026-04-16 | N/A |
| AltaVista search engine allows remote attackers to read files above the document root via a .. (dot dot) in the query.cgi CGI program. | ||||
| CVE-2000-0048 | 1 Corel | 1 Linux | 2026-04-16 | N/A |
| get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program. | ||||
| CVE-2003-1115 | 1 Nortel | 1 Succession Communication Server 2000 | 2026-04-16 | N/A |
| The Session Initiation Protocol (SIP) implementation in Nortel Networks Succession Communication Server 2000, when using SIP-T, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | ||||
| CVE-2000-0049 | 1 Nullsoft | 1 Winamp | 2026-04-16 | N/A |
| Buffer overflow in Winamp client allows remote attackers to execute commands via a long entry in a .pls file. | ||||
| CVE-2000-0051 | 1 Allaire | 1 Spectra | 2026-04-16 | N/A |
| The Allaire Spectra Configuration Wizard allows remote attackers to cause a denial of service by repeatedly resubmitting data collections for indexing via a URL. | ||||
| CVE-2000-0072 | 1 Computer Power Solutions | 1 Visual Casel | 2026-04-16 | N/A |
| Visual Casel (Vcasel) does not properly prevent users from executing files, which allows local users to use a relative pathname to specify an alternate file which has an approved name and possibly gain privileges. | ||||
| CVE-2003-1120 | 1 Ssh | 1 Tectia Server | 2026-04-16 | N/A |
| Race condition in SSH Tectia Server 4.0.3 and 4.0.4 for Unix, when the password change plugin (ssh-passwd-plugin) is enabled, allows local users to obtain the server's private key. | ||||
| CVE-2000-0079 | 1 W3c | 1 Cern Httpd | 2026-04-16 | N/A |
| The W3C CERN httpd HTTP server allows remote attackers to determine the real pathnames of some commands via a request for a nonexistent URL. | ||||
| CVE-2000-0082 | 1 Microsoft | 1 Webtv | 2026-04-16 | N/A |
| WebTV email client allows remote attackers to force the client to send email without the user's knowledge via HTML. | ||||
| CVE-2000-0083 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges. | ||||
| CVE-2003-1121 | 1 Scriptlogic | 1 Scriptlogic | 2026-04-16 | N/A |
| Services in ScriptLogic 4.01, and possibly other versions before 4.14, process client requests at raised privileges, which allows remote attackers to (1) modify arbitrary registry entries via the ScriptLogic RPC service (SLRPC) or (2) modify arbitrary configuration via the RunAdmin services (SLRAserver.exe and SLRAclient.exe). | ||||
| CVE-2000-0085 | 1 Microsoft | 1 Hotmail | 2026-04-16 | N/A |
| Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute code via the LOWSRC or DYNRC parameters in the IMG tag. | ||||
| CVE-2000-0089 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | N/A |
| The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration File" vulnerability. | ||||
| CVE-2000-0090 | 1 Vmware | 1 Workstation | 2026-04-16 | N/A |
| VMWare 1.1.2 allows local users to cause a denial of service via a symlink attack. | ||||
| CVE-2000-0095 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier. | ||||
| CVE-2000-0096 | 1 Qualcomm | 1 Qpopper | 2026-04-16 | N/A |
| Buffer overflow in qpopper 3.0 beta versions allows local users to gain privileges via a long LIST command. | ||||
| CVE-2003-1129 | 1 Yahoo | 1 Audio Conferencing Activex Control | 2026-04-16 | N/A |
| Buffer overflow in the Yahoo! Audio Conferencing (aka Voice Chat) ActiveX control before 1,0,0,45 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a URL with a long hostname to Yahoo! Messenger or Yahoo! Chat. | ||||
| CVE-2000-0112 | 1 Debian | 1 Debian Linux | 2026-04-16 | N/A |
| The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the installation. | ||||
| CVE-2000-0122 | 1 Microsoft | 1 Frontpage | 2026-04-16 | N/A |
| Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program. | ||||