Lucene search
K
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2020/11/23 12:0 a.m.•135 views

VMware ESXi SLP Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of VMware ESXi. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of SLP messages. The issue results from the lack of validating the...

8.8CVSS2.4AI score0.83015EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2021/01/21 12:0 a.m.•132 views

Microsoft Windows splwow64 Out-Of-Bounds Read Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the user-mode...

7.8CVSS4.7AI score0.01229EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/06/08 12:0 a.m.•130 views

(Pwn2Own) Western Digital MyCloud PR4100 RESTSDK Server-Side Request Forgery Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Western Digital MyCloud PR4100 NAS devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RESTSDK server. The issue results from the lack...

7.3CVSS6.9AI score0.00142EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2019/12/17 12:0 a.m.•130 views

(0Day) Microsoft Windows WebDAV Path Parsing Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.5CVSS5.5AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/02/16 12:0 a.m.•129 views

Apple macOS libFontParser TTF Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the libFontParser library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

7.8CVSS5AI score0.01261EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/11/11 12:0 a.m.•127 views

NETGEAR R6400v2 UPnP uuid Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400v2 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UPnP service, which listens on TCP port 5000 by default. When...

8.8CVSS8.8AI score0.05667EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/05/13 12:0 a.m.•127 views

(Pwn2Own) Canonical Ubuntu io_uring Integer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Canonical Ubuntu. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

8.8CVSS8.7AI score0.00629EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/04/19 12:0 a.m.•127 views

Oracle WebCenter Forms Recognition Sssplt30.ocx ActiveX Control Remote Code Execution Vulnerabilty

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle WebCenter Forms Recognition. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.5CVSS7.1AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/07/19 12:0 a.m.•126 views

(0Day) Autodesk Meshmixer 3MF File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Meshmixer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing ...

7.8CVSS4.2AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2023/12/20 12:0 a.m.•125 views

D-Link G416 httpd API-AUTH Digest Processing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HTTP service listening on TCP port 80. The issue results from the lack...

8.8CVSS7.5AI score0.00637EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/04/12 12:0 a.m.•125 views

ManageEngine ADManager Plus ChangePasswordAction Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine ADManager Plus. Authentication is required to exploit this vulnerability. The specific flaw exists within the ChangePasswordAction function. The issue results from the lack of proper...

7.2CVSS7.3AI score0.98388EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2020/12/03 12:0 a.m.•124 views

Apple macOS AudioToolboxCore Wave Header Parsing Sign Extension Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the AudioToolbox library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

7.8CVSS5.2AI score0.01684EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/08/20 12:0 a.m.•124 views

ManageEngine Service Desk File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ManageEngine ServiceDesk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of uploaded files. The issue lies in the ability to use director...

7.5CVSS7.5AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2021/09/16 12:0 a.m.•123 views

Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS...

7.8CVSS4.4AI score0.04634EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2006/10/05 12:0 a.m.•122 views

CA BrightStor ARCserve Discovery Service Remote Buffer Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup, Enterprise Backup, Server Protection Suite and Business Protection Suite. Authentication is not required to exploit this vulnerability and both clien...

7.5CVSS4.9AI score0.78513EPSS
Exploits12References1
Zero Day Initiative
Zero Day Initiative
•added 2022/06/30 12:0 a.m.•121 views

Tencent WeChat WXAM Decoder Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tencent WeChat. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WXAM decoder. T...

8.8CVSS3.9AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2015/03/11 12:0 a.m.•121 views

Microsoft Windows .LNK DLL Planting Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page or open a malicious directory or device. The specific flaw exists...

7.5CVSS7.2AI score0.71075EPSS
Exploits16References1
Zero Day Initiative
Zero Day Initiative
•added 2014/04/11 12:0 a.m.•120 views

(Pwn2Own) Google Chrome V8 Arbitrary Memory Read/Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Google Chrome. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS6.4AI score0.04822EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2015/07/20 12:0 a.m.•119 views

Apache Groovy Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apache Groovy. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Closure implementation which accepts and deserializes a Java serialized binary strea...

7.5CVSS9.4AI score0.42983EPSS
Exploits4References2
Zero Day Initiative
Zero Day Initiative
•added 2017/06/12 12:0 a.m.•118 views

(0Day) Schneider Electric U.motion Builder Hard-Coded Password Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. The specific flaw exists within the configuration of the product. The web service comes with a hidden system account with a hard-coded password. An attacker can...

7.5CVSS7.6AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2020/10/20 12:0 a.m.•117 views

VMware ESXi SLP Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of VMware ESXi. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of SLP messages. The issue results from the lack of validating the existence ...

9.8CVSS2.4AI score0.83015EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2020/07/21 12:0 a.m.•117 views

Apple macOS AudioToolboxCore CAF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the AudioToolbox library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

7.8CVSS5.6AI score0.01017EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/11/01 12:0 a.m.•117 views

Oracle WebLogic Commons DiskFileItem Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle WebLogic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the use of Apache Commons DiskFileItem. It is possible to execute arbitrary commands...

7.5CVSS4.8AI score0.05076EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/04/21 12:0 a.m.•116 views

(Pwn2Own) Canonical Ubuntu ShiftFS File System Double Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Canonical Ubuntu. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the ShiftFS module...

8.8CVSS4AI score0.01547EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2015/07/14 12:0 a.m.•116 views

Adobe Reader ARMSvc Elevation of Privilege Vulnerability

This vulnerability allows local attackers to elevate privileges on vulnerable installations of Adobe Reader. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ARMSvc service. An attacker can force the service to overwrite the Adobe updater with any...

6.9CVSS6.2AI score0.0107EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/05/13 12:0 a.m.•115 views

Adobe Reader AcroPDF messageHandler Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

6.8CVSS6.4AI score0.13364EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/01/10 12:0 a.m.•114 views

WordPress Core WP_Query SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of WordPress Core. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WPQuery class. The issue results from the lack of proper validation of a...

7.5CVSS1.2AI score0.97795EPSS
Exploits14References1
Zero Day Initiative
Zero Day Initiative
•added 2024/06/21 12:0 a.m.•113 views

Sony XAV-AX5500 Insufficient Verification of Data Authenticity Remote Code Execution Vulnerability

This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Sony XAV-AX5500 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of software updates. The issue results from the lack of...

6.8CVSS7AI score0.01761EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2021/05/13 12:0 a.m.•113 views

Microsoft SharePoint WebPart Interpretation Conflict Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of server-side controls in WebParts. By specifying a control using a...

8.8CVSS3.1AI score0.30045EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiative
•added 2020/09/10 12:0 a.m.•113 views

Microsoft Visual Studio DDS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Visual Studio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

3.3CVSS2.6AI score0.04285EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2020/03/25 12:0 a.m.•113 views

(Pwn2Own) TP-Link Archer A7 tmpServer Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the tmpServer service, which listens on TCP port 20002. The issue resul...

8.1CVSS5.1AI score0.055EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2015/12/08 12:0 a.m.•113 views

Microsoft Internet Explorer Mutation Observer Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS6.5AI score0.18763EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/04/09 12:0 a.m.•113 views

Cisco IOS Smart Install Configuration File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco IOS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Smart Install client. A specially crafted packet can be sent to the SMI IBC server to...

10CVSS3.1AI score0.01328EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/09/27 12:0 a.m.•112 views

(0Day) Exim SMTP Challenge Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NTLM challenge requests. The issue results from the lack of proper validation of th...

8.1CVSS7.3AI score0.03158EPSS
Exploits2
Zero Day Initiative
Zero Day Initiative
•added 2020/07/16 12:0 a.m.•112 views

(Pwn2Own) Microsoft Windows DirectComposition SetBufferProperty Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of th...

7.8CVSS4.4AI score0.0096EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/07/15 12:0 a.m.•110 views

ABB Automation Builder Platform Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of ABB Automation Builder Platform. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS6.2AI score0.00315EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/05/10 12:0 a.m.•110 views

Microsoft Windows Active Directory Certificate Services Improper Authorization Privilege Escalation Vulnerability

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of Microsoft Windows Active Directory Certificate Services. Authentication is required to exploit this vulnerability. The specific flaw exists within the issuance of certificates. By including...

9CVSS3.9AI score0.83277EPSS
Exploits8References1
Zero Day Initiative
Zero Day Initiative
•added 2022/06/24 12:0 a.m.•109 views

DevExpress SafeBinaryFormatter Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of DevExpress. Authentication is required to exploit this vulnerability. The specific flaw exists within the SafeBinaryFormatter library. The issue results from the lack of proper validation of...

8.8CVSS3.5AI score0.02494EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/06/02 12:0 a.m.•108 views

Apple macOS PackageKit PKInstallSandbox SIP Bypass vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within PackageKit. T...

5.5CVSS2.2AI score0.01633EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/01/13 12:0 a.m.•107 views

Microsoft Windows SilentCleanup Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the SilentCleanup...

7CVSS8.4AI score0.01483EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/05/12 12:0 a.m.•107 views

Microsoft Windows NtUserGetMessage Stack Information Disclosure Vulnerability

This vulnerability allows local attackers to leak sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handlin...

2.1CVSS5.9AI score0.03052EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/07/19 12:0 a.m.•106 views

(Pwn2Own) Microsoft Exchange Server CabUtility ExtractCab Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Microsoft Exchange Server. User interaction is required to exploit this vulnerability. The specific flaw exists within the parsing of CAB files. When handling filenames specified within a C...

7.1CVSS3.7AI score0.09581EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/07/15 12:0 a.m.•105 views

Microsoft Windows CLDFLT Integer Underflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the cldflt.sys...

8.8CVSS5.9AI score0.01208EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2017/09/15 12:0 a.m.•105 views

Trend Micro Mobile Security for Enterprise search_devices group_id SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Mobile Security for Enterprise. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of the searchdevices action. When parsing the...

9CVSS4.8AI score0.50166EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/23 12:0 a.m.•104 views

7-Zip SquashFS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SQFS files. T...

7.8CVSS6.8AI score0.27087EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2020/08/14 12:0 a.m.•104 views

Microsoft Windows fontdrvhost Font Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of T...

5CVSS6.1AI score0.04264EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/03/26 12:0 a.m.•104 views

FlexNet License Server Manager lmgrd Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of FlexNet License Server Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within lmgrd license server manager. lmgrd listens by default on TCP port 2700...

10CVSS8.5AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/05/15 12:0 a.m.•103 views

(Pwn2Own) Apple macOS IOGraphic Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the...

6.9CVSS3.5AI score0.0113EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/06/03 12:0 a.m.•103 views

Eclipse Jetty Protected Resource Bypass Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Eclipse Jetty. Authentication is not required to exploit this vulnerability. The specific flaw exists within the way the ContextHandler class restricts access to protected resources. By issuing a...

7.5CVSS2.5AI score0.06363EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/07/20 12:0 a.m.•103 views

Mozilla Firefox CSS font-face Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within handling of...

10CVSS4AI score0.09782EPSS
Exploits5References1
Total number of security vulnerabilities5000