CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

securityvulns•added 2000/12/02 12:0 a.m.•56 views

AnalogX Proxy Server Buffer Overflow Vulnerability

From "zer0-logic" [email protected]: Network Security Solutions Inc. Security Advisory Philippine based Security Company Http://www.nssolution.net Http://connect.to/nssi AnalogX Proxy Server DoS/Buffer Overflow Vulnerabilty Author: Abraham Lincoln H. Handle: zer0logic Email :...

7.1AI score

CVE•added 2000/10/18 4:0 a.m.•43 views

CVE-2000-0880

The CVE-2000-0880 entry concerns LPPlus creating the lpdprocess file with world-writable permissions, which allows local users to kill arbitrary processes by specifying a process ID and using the setuid dcclpdshut program to terminate the specified process. Impact is local access and partial inte...

3.6CVSS6.8AI score0.00745EPSS

Exploits1References3Affected Software1

Cvelist•added 2000/10/13 4:0 a.m.•18 views

CVE-2000-0318

Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot .. attack...

6.3AI score0.01191EPSS

Cvelist•added 2000/10/13 4:0 a.m.•21 views

CVE-2000-0468

man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack...

6.3AI score0.00845EPSS

CVE•added 2000/09/21 4:0 a.m.•52 views

CVE-2000-0695

The CVE-2000-0695 entry relates to buffer overflows in the pgxconfig component of the Raptor GFX configuration tool, enabling local users to escalate privileges via crafted command line options. Affected software is the pgxconfig utility within Raptor GFX; the underlying issue is a buffer overflo...

7.2CVSS7.1AI score0.00873EPSS

Exploits1References1Affected Software1

exploitpack•added 2000/08/02 12:0 a.m.•17 views

IRIX 6.5.x - usrsbindmplay Local Buffer Overflow

IRIX 6.5.x - usrsbindmplay Local Buffer Overflow / source: https://www.securityfocus.com/bid/1528/info Certain versions of IRIX ship with a version of dmplay which is vulnerable to a buffer overflow attack. The program, dmplay, is used to play movie files under IRIX. The problem at hand is the wa...

0.1AI score

securityvulns•added 2000/07/01 12:0 a.m.•29 views

Дырки в Secure desktop

Локальные и удаленный возможности для DoS-атаки, включая подмену адреса default gateway...

0.7AI score

NVD•added 2000/06/02 4:0 a.m.•16 views

CVE-2000-0468

man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack...

4.6CVSS6.3AI score0.00845EPSS

CVE•added 2000/04/10 4:0 a.m.•43 views

CVE-2000-0224

The CVE-2000-0224 entry refers to ARCserve agent on SCO UnixWare 7.x. The vulnerability is a local privilege escalation via a symlink attack that could allow a local attacker to obtain root privileges. The description clearly states the affected product/component and the root cause (symlink-relat...

1.2CVSS7AI score0.00563EPSS

NVD•added 2000/03/09 5:0 a.m.•13 views

CVE-2000-0184

Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords...

2.1CVSS6.3AI score0.00382EPSS

Exploits0References2

NVD•added 2000/02/18 5:0 a.m.•17 views

CVE-2000-0155

Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive...

7.2CVSS6.6AI score0.03939EPSS

CVE•added 2000/02/04 5:0 a.m.•57 views

CVE-1999-0480

Midnight Commander 4.x is affected by a local denial of service via a symlink attack. The connected PT-1999-1160 entry confirms the issue in Midnight Commander 4.x and attributes it to a symlink-based condition exploitable by a local attacker to trigger DoS. No remediation or patched versions are...

2.1CVSS6.9AI score0.00339EPSS

NVD•added 2000/02/01 5:0 a.m.•18 views

CVE-2000-0107

Linux apcd program allows local attackers to modify arbitrary files via a symlink attack...

7.2CVSS6.4AI score0.00788EPSS

Exploits0References2

Debian•added 2000/01/09 2:16 a.m.•2 views

[SECURITY] New version of nvi released

Package: nvi Vulnerability type: local attack Debian-specific: no The version of nvi that was distributed with Debian GNU/Linux 2.1 has an error in the default /etc/init.d/nviboot script: it did not handle filenames with embedded spaces correctly. This made it possible to remove files in the root...

5.8AI score

CVE•added 2000/01/04 5:0 a.m.•52 views

CVE-1999-0439

The CVE-1999-0439 issue is a Buffer Overflow in procmail prior to 3.12. The vulnerability arises from expansions in the procmailrc configuration file, allowing remote or local attackers to execute commands. Exploitation is possible via the procmailrc processing and can impact confidentiality, int...

7.5CVSS7.6AI score0.02552EPSS

Packet Storm•added 1999/12/31 12:0 a.m.•23 views

savant.dos.txt

Local / Remote D.o.S Attack in Savant Web Server V2.0 WIN9X / NT / 2K USSR Advisory Code: USSR-99026 Release Date: December 28, 1999 2/5 Systems Affected: Savant Web Server V2.0 Win9X / NT / 2K and possibly others versions. About The Software: Savant provides support for most modern web features...

7.4AI score

NVD•added 1999/12/21 5:0 a.m.•17 views

CVE-1999-1497

Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to read passwords for e-mail accounts...

7.2CVSS6.3AI score0.01404EPSS

Packet Storm•added 1999/12/14 12:0 a.m.•25 views

warftp.dos.txt

Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability PROBLEM UssrLabs found a Local/Remote DoS Attack in War FTP Daemon 1.70 the buffer overflow is caused by a Multiples connections at the same time over 60 in the ftp server , and some characters in the login name. There is not much t...

7.4AI score