The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration File" vulnerability.
Max CVSS
2.1
EPSS Score
0.05%
Published
2000-02-04
Updated
2018-10-12
procfs in BSD systems allows local users to gain root privileges by modifying the /proc/pid/mem interface via a modified file descriptor for stderr.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-02-16
Updated
2018-05-03
The Make-a-Store OrderPage shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-02-01
Updated
2022-08-17
The SalesCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-02-01
Updated
2022-08-17
The SmartCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-02-01
Updated
2022-08-17
The Shoptron shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-02-01
Updated
2022-08-17
Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client.
Max CVSS
5.0
EPSS Score
86.85%
Published
2000-02-01
Updated
2008-09-10
The EasyCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-02-01
Updated
2022-08-17
Linux apcd program allows local attackers to modify arbitrary files via a symlink attack.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-02-01
Updated
2008-09-10
The Intellivend shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-02-01
Updated
2022-08-17
The WebSiteTool shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.51%
Published
2000-02-01
Updated
2022-08-17
The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the installation.
Max CVSS
7.2
EPSS Score
0.05%
Published
2000-02-02
Updated
2016-10-18
Frontpage Server Extensions allows remote attackers to determine the name of the anonymous account via an RPC POST request to shtml.dll in the /_vti_bin/ virtual directory.
Max CVSS
5.0
EPSS Score
15.96%
Published
2000-02-02
Updated
2022-08-17
The Recycle Bin utility in Windows NT and Windows 2000 allows local users to read or modify files by creating a subdirectory with the victim's SID in the recycler directory, aka the "Recycle Bin Creation" vulnerability.
Max CVSS
3.6
EPSS Score
0.22%
Published
2000-02-01
Updated
2018-10-12
Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program.
Max CVSS
5.0
EPSS Score
2.86%
Published
2000-02-03
Updated
2018-10-19
The shopping cart application provided with Filemaker allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-02-01
Updated
2022-08-17
surfCONTROL SuperScout does not properly asign a category to web sites with a . (dot) at the end, which may allow users to bypass web access restrictions.
Max CVSS
2.1
EPSS Score
0.04%
Published
2000-02-03
Updated
2008-09-10
wwwthreads does not properly cleanse numeric data or table names that are passed to SQL queries, which allows remote attackers to gain privileges for wwwthreads forums.
Max CVSS
7.5
EPSS Score
1.96%
Published
2000-02-03
Updated
2008-09-10
The Webspeed configuration program does not properly disable access to the WSMadmin utility, which allows remote attackers to gain privileges via wsisa.dll.
Max CVSS
7.5
EPSS Score
0.60%
Published
2000-02-03
Updated
2008-09-10
The Finger Server 0.82 allows remote attackers to execute commands via shell metacharacters.
Max CVSS
10.0
EPSS Score
2.21%
Published
2000-02-04
Updated
2008-09-10
Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.
Max CVSS
2.1
EPSS Score
0.05%
Published
2000-02-04
Updated
2022-08-17
Buffer overflow in War FTPd 1.6x allows users to cause a denial of service via long MKD and CWD commands.
Max CVSS
5.0
EPSS Score
1.23%
Published
2000-02-01
Updated
2016-10-18
Buffer overflows in Tiny FTPd 0.52 beta3 FTP server allows users to execute commands via the STOR, RNTO, MKD, XMKD, RMD, XRMD, APPE, SIZE, and RNFR commands.
Max CVSS
10.0
EPSS Score
23.99%
Published
2000-02-01
Updated
2008-09-10
The Check It Out shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-02-01
Updated
2022-08-17
The @Retail shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-02-01
Updated
2022-08-17
86 vulnerabilities found
1 2 3 4
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!