CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In May 2000 (CVSS score >= 8)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2000-0551 2000-05-23 2017-10-09
10.0
Admin Remote Low Not required Complete Complete Complete
The file transfer mechanism in Danware NetOp 6.0 does not provide authentication, which allows remote attackers to access and modify arbitrary files.
2 CVE-2000-0491 DoS Exec Code Overflow 2000-05-24 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of service via a long FORWARD_QUERY request.
3 CVE-2000-0488 Exec Code Overflow 2000-05-30 2017-10-09
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in ITHouse mail server 1.04 allows remote attackers to execute arbitrary commands via a long RCPT TO mail command.
4 CVE-2000-0449 2000-05-01 2008-09-10
10.0
None Remote Low Not required Complete Complete Complete
Omnis Studio 2.4 uses weak encryption (trivial encoding) for encrypting database fields.
5 CVE-2000-0437 DoS Exec Code Overflow 2000-05-18 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in the CyberPatrol daemon "cyberdaemon" used in gauntlet and WebShield allows remote attackers to cause a denial of service or execute arbitrary commands.
6 CVE-2000-0428 Exec Code Overflow 2000-05-04 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in the SMTP gateway for InterScan Virus Wall 3.32 and earlier allows a remote attacker to execute arbitrary commands via a long filename for a uuencoded attachment.
7 CVE-2000-0425 Exec Code Overflow 2000-05-03 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands.
8 CVE-2000-0405 Exec Code Overflow 2000-05-16 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in L0pht AntiSniff allows remote attackers to execute arbitrary commands via a malformed DNS response packet.
9 CVE-2000-0398 Exec Code Overflow 2000-05-24 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long query_string parameter in the HTTP GET request.
10 CVE-2000-0391 Overflow +Priv 2000-05-16 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.
11 CVE-2000-0390 Overflow +Priv 2000-05-16 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges.
12 CVE-2000-0389 Overflow +Priv 2000-05-16 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges.
13 CVE-2000-0384 2000-05-08 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access.
14 CVE-2000-0343 Exec Code Overflow 2000-05-02 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in Sniffit 0.3.x with the -L logging option enabled allows remote attackers to execute arbitrary commands via a long MAIL FROM mail header.
Total number of vulnerabilities : 14   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.