CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In 2000(Gain Privilege)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2000-1222 +Priv 2000-12-10 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program.
2 CVE-2000-1220 Exec Code +Priv 2000-01-08 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.
3 CVE-2000-1216 Overflow +Priv 2000-01-27 2005-10-20
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_error routine.
4 CVE-2000-1214 Overflow +Priv 2000-10-18 2008-09-10
4.6
User Local Low Not required Partial Partial Partial
Buffer overflows in the (1) outpack or (2) buf variables of ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, may allow local users to gain privileges.
5 CVE-2000-1076 +Priv 2000-12-11 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.
6 CVE-2000-1074 +Priv 2000-12-11 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory.
7 CVE-2000-1073 +Priv 2000-12-11 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
csstart program in iCal 2.1 Patch 2 searches for the cshttpd program in the current working directory, which allows local users to gain root privileges by creating a Trojan Horse cshttpd program in a directory and calling csstart from that directory.
8 CVE-2000-1071 +Priv 2000-12-11 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote attackers to monitor X Windows events and gain privileges.
9 CVE-2000-1060 +Priv Bypass 2000-12-11 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
The default configuration of XFCE 3.5.1 bypasses the Xauthority access control mechanism with an "xhost + localhost" command in the xinitrc program, which allows local users to sniff X Windows traffic and gain privileges.
10 CVE-2000-1059 +Priv Bypass 2000-12-11 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
The default configuration of the Xsession file in Mandrake Linux 7.1 and 7.0 bypasses the Xauthority access control mechanism with an "xhost + localhost" command, which allows local users to sniff X Windows events and gain privileges.
11 CVE-2000-1057 +Priv 2000-12-11 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Vulnerabilities in database configuration scripts in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows local users to gain privileges, possibly via insecure permissions.
12 CVE-2000-1044 +Priv 2000-12-11 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Format string vulnerability in ypbind-mt in SuSE SuSE-6.2, and possibly other Linux operating systems, allows an attacker to gain root privileges.
13 CVE-2000-1043 +Priv 2000-12-11 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.
14 CVE-2000-1042 Overflow +Priv 2000-12-11 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.
15 CVE-2000-1041 Overflow +Priv 2000-12-11 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in ypbind 3.3 possibly allows an attacker to gain root privileges.
16 CVE-2000-1028 Overflow +Priv 2000-12-11 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in cu program in HP-UX 11.0 may allow local users to gain privileges via a long -l command line argument.
17 CVE-2000-1011 Overflow +Priv 2000-12-11 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in catopen() function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to gain root privileges via a long environmental variable.
18 CVE-2000-0999 +Priv 2000-12-11 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges.
19 CVE-2000-0998 +Priv 2000-12-11 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function.
20 CVE-2000-0997 +Priv 2000-12-19 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Format string vulnerabilities in eeprom program in OpenBSD, NetBSD, and possibly other operating systems allows local attackers to gain root privileges.
21 CVE-2000-0996 +Priv 2000-12-19 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Format string vulnerability in OpenBSD su program (and possibly other BSD-based operating systems) allows local attackers to gain root privileges via a malformed shell.
22 CVE-2000-0995 +Priv 2000-12-19 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Format string vulnerability in OpenBSD yp_passwd program (and possibly other BSD-based operating systems) allows attackers to gain root privileges a malformed name.
23 CVE-2000-0994 +Priv 2000-12-19 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Format string vulnerability in OpenBSD fstat program (and possibly other BSD-based operating systems) allows local users to gain root privileges via the PWD environmental variable.
24 CVE-2000-0993 +Priv 2000-12-19 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd.
25 CVE-2000-0987 Overflow +Priv 2000-12-19 2008-09-10
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in oidldapd in Oracle 8.1.6 allow local users to gain privileges via a long "connect" command line parameter.
26 CVE-2000-0986 Overflow +Priv 2000-12-19 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME environmental variable.
27 CVE-2000-0966 Overflow +Priv 2000-12-19 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflows in lpspooler in the fileset PrinterMgmt.LP-SPOOL of HP-UX 11.0 and earlier allows local users to gain privileges.
28 CVE-2000-0955 +Priv 2000-12-19 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain privileges.
29 CVE-2000-0946 +Priv 2000-12-19 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Compaq Easy Access Keyboard software 1.3 does not properly disable access to custom buttons when the screen is locked, which could allow an attacker to gain privileges or execute programs without authorization.
30 CVE-2000-0933 +Priv 2000-12-19 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
The Input Method Editor (IME) in the Simplified Chinese version of Windows 2000 does not disable access to privileged functionality that should normally be restricted, which allows local users to gain privileges, aka the "Simplified Chinese IME State Recognition" vulnerability.
31 CVE-2000-0901 +Priv 2000-12-19 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Format string vulnerability in screen 3.9.5 and earlier allows local users to gain root privileges via format characters in the vbell_msg initialization variable.
32 CVE-2000-0867 +Priv 2000-11-14 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.
33 CVE-2000-0865 Overflow +Priv 2000-11-14 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in dvtermtype in Tridia Double Vision 3.07.00 allows local users to gain root privileges via a long terminal type argument.
34 CVE-2000-0864 362 +Priv 2000-11-14 2008-09-10
6.2
Admin Local High Not required Complete Complete Complete
Race condition in the creation of a Unix domain socket in GNOME esound 0.2.19 and earlier allows a local user to change the permissions of arbitrary files and directories, and gain additional privileges, via a symlink attack.
35 CVE-2000-0863 Overflow +Priv 2000-11-14 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in listmanager earlier than 2.105.1 allows local users to gain additional privileges.
36 CVE-2000-0852 Overflow +Priv 2000-11-14 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Multiple buffer overflows in eject on FreeBSD and possibly other OSes allows local users to gain root privileges.
37 CVE-2000-0851 Overflow +Priv 2000-11-14 2013-07-06
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in the Still Image Service in Windows 2000 allows local users to gain additional privileges via a long WM_USER message, aka the "Still Image Service Privilege Escalation" vulnerability.
38 CVE-2000-0803 +Priv 2000-12-19 2008-09-05
10.0
None Remote Low Not required Complete Complete Complete
GNU Groff uses the current working directory to find a device description file, which allows a local user to gain additional privileges by including a malicious postpro directive in the description file, which is executed when another user runs groff.
39 CVE-2000-0801 Overflow +Priv 2000-10-20 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in bdf program in HP-UX 11.00 may allow local users to gain root privileges via a long -t option.
40 CVE-2000-0800 +Priv 2000-10-20 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
String parsing error in rpc.kstatd in the linuxnfs or knfsd packages in SuSE and possibly other Linux systems allows remote attackers to gain root privileges.
41 CVE-2000-0799 +Priv 2000-10-20 2008-09-05
3.7
User Local High Not required Partial Partial Partial
inpview in InPerson in SGI IRIX 5.3 through IRIX 6.5.10 allows local users to gain privileges via a symlink attack on the .ilmpAAA temporary file.
42 CVE-2000-0797 Overflow +Priv 2000-10-20 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in gr_osview in IRIX 6.2 and 6.3 allows local users to gain privileges via a long -D option.
43 CVE-2000-0796 Overflow +Priv 2000-10-20 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in dmplay in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long command line option.
44 CVE-2000-0795 Overflow +Priv 2000-10-20 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in lpstat in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long -n option.
45 CVE-2000-0794 Overflow +Priv 2000-10-20 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in IRIX libgl.so library allows local users to gain root privileges via a long HOME variable to programs such as (1) gmemusage and (2) gr_osview.
46 CVE-2000-0789 +Priv 2000-10-20 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges.
47 CVE-2000-0766 DoS Overflow +Priv 2000-10-20 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in vqSoft vqServer 1.4.49 allows remote attackers to cause a denial of service or possibly gain privileges via a long HTTP GET request.
48 CVE-2000-0763 +Priv 2000-10-20 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
xlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option.
49 CVE-2000-0762 +Priv 2000-10-20 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
The default installation of eTrust Access Control (formerly SeOS) uses a default encryption key, which allows remote attackers to spoof the eTrust administrator and gain privileges.
50 CVE-2000-0757 Exec Code +Priv 2000-10-20 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed.
Total number of vulnerabilities : 138   Page : 1 (This Page)2 3
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.