Security Vulnerabilities, CVEs, Published In January 2000
A Windows NT system does not clear the system page file during shutdown, which might allow sensitive information to be recorded.
Max CVSS
2.1
EPSS Score
0.04%
Published
2000-01-20
Updated
2022-08-17
KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories.
Max CVSS
4.6
EPSS Score
0.04%
Published
2000-01-04
Updated
2008-09-09
Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request.
Max CVSS
7.5
EPSS Score
4.53%
Published
2000-01-04
Updated
2008-09-05
Buffer overflow in Internet Explorer 4.0 via EMBED tag.
Max CVSS
10.0
EPSS Score
1.00%
Published
2000-01-04
Updated
2021-07-22
Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals.
Max CVSS
10.0
EPSS Score
1.06%
Published
2000-01-04
Updated
2022-08-17
Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATH_LOCALE environment variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-01-01
Updated
2008-09-09
HP VirtualVault with the PHSS_17692 patch allows unprivileged processes to bypass access restrictions via the Trusted Gateway Proxy (TGP).
Max CVSS
10.0
EPSS Score
1.21%
Published
2000-01-18
Updated
2008-09-05
Netscape Navigator uses weak encryption for storing a user's Netscape mail password.
Max CVSS
5.0
EPSS Score
0.22%
Published
2000-01-12
Updated
2016-10-18
Macros in War FTP 1.70 and 1.67b2 allow local or remote attackers to read arbitrary files or execute commands.
Max CVSS
10.0
EPSS Score
0.49%
Published
2000-01-06
Updated
2008-09-10
MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege.
Max CVSS
6.4
EPSS Score
0.28%
Published
2000-01-11
Updated
2019-10-07
Buffer overflow in ICQ 99b 1.1.1.1 client allows remote attackers to execute commands via a malformed URL within an ICQ message.
Max CVSS
7.5
EPSS Score
2.51%
Published
2000-01-10
Updated
2008-09-10
get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-01-12
Updated
2008-09-10
Buffer overflow in Winamp client allows remote attackers to execute commands via a long entry in a .pls file.
Max CVSS
7.2
EPSS Score
0.31%
Published
2000-01-04
Updated
2008-09-10
The Allaire Spectra Webtop allows authenticated users to access other Webtop sections by specifying explicit URLs.
Max CVSS
4.6
EPSS Score
0.05%
Published
2000-01-04
Updated
2008-09-10
The Allaire Spectra Configuration Wizard allows remote attackers to cause a denial of service by repeatedly resubmitting data collections for indexing via a URL.
Max CVSS
5.0
EPSS Score
0.25%
Published
2000-01-04
Updated
2008-09-10
Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-01-04
Updated
2008-09-10
Microsoft Commercial Internet System (MCIS) IMAP server allows remote attackers to cause a denial of service via a malformed IMAP request.
Max CVSS
7.5
EPSS Score
2.11%
Published
2000-01-04
Updated
2018-10-12
Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-01-06
Updated
2018-10-30
IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi.
Max CVSS
5.0
EPSS Score
0.59%
Published
2000-01-05
Updated
2008-09-10
Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information.
Max CVSS
7.5
EPSS Score
1.68%
Published
2000-01-04
Updated
2008-09-10
Network HotSync program in Handspring Visor does not have authentication, which allows remote attackers to retrieve email and files.
Max CVSS
5.0
EPSS Score
0.56%
Published
2000-01-05
Updated
2008-09-10
PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands.
Max CVSS
10.0
EPSS Score
6.40%
Published
2000-01-04
Updated
2008-09-10
Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document has been loaded, which could allow remote attackers to execute Javascript in a different security context while the document is loading.
Max CVSS
10.0
EPSS Score
1.17%
Published
2000-01-07
Updated
2021-07-23
The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities.
Max CVSS
10.0
EPSS Score
0.88%
Published
2000-01-04
Updated
2008-09-10
cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to read arbitrary files by specifying the filename in a parameter to the script.
Max CVSS
5.0
EPSS Score
0.95%
Published
2000-01-17
Updated
2008-09-10