Search Results (363021 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2000-0351 1 Sco 1 Unixware 2026-04-16 N/A
Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages.
CVE-2000-0353 1 University Of Washington 1 Pine 2026-04-16 N/A
Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine.
CVE-2000-0354 1 Lee Mcloughlin 1 Mirror 2026-04-16 N/A
mirror 2.8.x in Linux systems allows remote attackers to create files one level above the local target directory.
CVE-2000-0366 1 Debian 1 Debian Linux 2026-04-16 N/A
dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files.
CVE-2000-0372 1 Caldera 1 Openlinux 2026-04-16 N/A
Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges.
CVE-2000-0373 1 Kde 1 Kvt 2026-04-16 N/A
Vulnerabilities in the KDE kvt terminal program allow local users to gain root privileges.
CVE-2003-0748 1 Sap 1 Internet Transaction Server 2026-04-16 N/A
Directory traversal vulnerability in wgate.dll for SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the ~theme parameter and a ~template parameter with a filename followed by space characters, which can prevent SAP from effectively adding a .html extension to the filename.
CVE-2000-0377 1 Microsoft 1 Windows Nt 2026-04-16 N/A
The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.
CVE-2003-0751 1 Py-membres 1 Py-membres 2026-04-16 N/A
SQL injection vulnerability in pass_done.php for PY-Membres 4.2 and earlier allows remote attackers to execute arbitrary SQL queries via the email parameter.
CVE-2000-0381 1 Gossamer Threads 1 Dbman 2026-04-16 N/A
The Gossamer Threads DBMan db.cgi CGI script allows remote attackers to view environmental variables and setup information by referencing a non-existing database in the db parameter.
CVE-2000-0383 1 Aol 1 Instant Messenger 2026-04-16 N/A
The file transfer component of AOL Instant Messenger (AIM) reveals the physical path of the transferred file to the remote recipient.
CVE-2000-0391 3 Cygnus, Mit, Redhat 5 Cygnus Network Security, Kerbnet, Kerberos and 2 more 2026-04-16 N/A
Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.
CVE-2003-0756 1 Sitebuilder 1 Sitebuilder 2026-04-16 N/A
Directory traversal vulnerability in sitebuilder.cgi in SiteBuilder 1.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the selectedpage parameter.
CVE-2000-0393 1 Kde 1 Kde 2026-04-16 N/A
The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute.
CVE-2003-0760 1 Optisoft 1 Blubster 2026-04-16 N/A
Blubster 2.5 allows remote attackers to cause a denial of service (crash) via a flood of connections to UDP port 701.
CVE-2006-4459 1 Digi International Inc 1 Anywhere Usb5 2026-04-16 N/A
Integer overflow in AnywhereUSB/5 1.80.00 allows local users to cause a denial of service (crash) via a 1 byte header size specified in the USB string descriptor.
CVE-2000-0396 1 Pacific Software 1 Carello 2026-04-16 N/A
The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files.
CVE-2000-0398 1 Rockliffe 1 Mailsite 2026-04-16 N/A
Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long query_string parameter in the HTTP GET request.
CVE-2000-0400 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by encoding it within an email message or news post.
CVE-2000-0406 1 Netscape 1 Communicator 2026-04-16 N/A
Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the "Acros-Suencksen SSL" vulnerability.