Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 2.1

    LOW
    CVE-1999-1476

    A bug in Intel Pentium processor (MMX and Overdrive) allows local users to cause a denial of service (hang) in Intel-based operating systems such as Windows NT and Windows 95, via an invalid instruction, aka the "Invalid Operand with Locked CMPXCHG8B Inst... Read more

    Affected Products : pentium pentuim
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0281

    Buffer overflow in the Napster client beta 5 allows remote attackers to cause a denial of service via a long message.... Read more

    Affected Products : napster_client
    • Published: Mar. 26, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-1141

    Recourse ManTrap 1.6 modifies the kernel so that ".." does not appear in the /proc listing, which allows attackers to determine that they are in a honeypot system.... Read more

    Affected Products : mantrap
    • Published: Jan. 09, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1518

    RunAs (runas.exe) in Windows 2000 only creates one session instance at a time, which allows local users to cause a denial of service (RunAs hang) by creating a named pipe session with the authentication server without any request for service. NOTE: the v... Read more

    Affected Products : windows_2000
    • Published: Dec. 31, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-0372

    The installer for BackOffice Server includes account names and passwords in a setup file (reboot.ini) which is not deleted.... Read more

    Affected Products : windows_2000 windows_nt backoffice
    • Published: Feb. 12, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0881

    The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files.... Read more

    Affected Products : lpplus
    • Published: Nov. 14, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0076

    nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.... Read more

    Affected Products : debian_linux nvi
    • Published: Dec. 30, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1550

    CentraOne 5.2 and Centra ASP with basic authentication enabled creates world-writable base64 encoded log files, which allows local users to obtain cleartext passwords from decoded log files and impersonate users.... Read more

    Affected Products : asp centraone smart_connect
    • Published: Dec. 31, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1495

    xtvscreen in SuSE Linux 6.0 allows local users to overwrite arbitrary files via a symlink attack on the pic000.pnm file.... Read more

    Affected Products : suse_linux
    • Published: Feb. 18, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0263

    The X font server xfs in Red Hat Linux 6.x allows an attacker to cause a denial of service via a malformed request.... Read more

    Affected Products : linux
    • Published: Apr. 16, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1534

    mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's using predictable information including host IP address, system time and server process ID, which allows local users to obtain session ID's and bypass authentication when these session I... Read more

    Affected Products : http_server
    • Published: Dec. 31, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1098

    Cisco PIX firewall manager (PFM) 4.3(2)g logs the enable password in plaintext in the pfm.log file, which could allow local users to obtain the password by reading the file.... Read more

    Affected Products : pix_firewall_manager
    • Published: Oct. 10, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0124

    surfCONTROL SuperScout does not properly asign a category to web sites with a . (dot) at the end, which may allow users to bypass web access restrictions.... Read more

    Affected Products : superscout
    • Published: Feb. 03, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1564

    setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropped, which could allow local users to cause a denial of service by exhausting available d... Read more

    Affected Products : hp-ux
    • Published: Dec. 31, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0129

    Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.... Read more

    Affected Products : windows_95 windows_98 windows_nt
    • Published: Feb. 04, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0069

    The recover program in Solstice Backup allows local users to restore sensitive files.... Read more

    Affected Products : solstice_backup
    • Published: Jan. 01, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-0803

    The fwluser script in AIX eNetwork Firewall allows local users to write to arbitrary files via a symlink attack.... Read more

    Affected Products : aix_enetwork_firewall
    • Published: May. 25, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0019

    IMail POP3 daemon uses weak encryption, which allows local users to read files.... Read more

    Affected Products : imail
    • Published: Mar. 04, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1269

    Info-ZIP UnZip 5.42 and earlier allows attackers to overwrite arbitrary files during archive extraction via filenames in the archive that begin with the '/' (slash) character.... Read more

    Affected Products : unzip
    • Published: Jul. 12, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0067

    CyberCash Merchant Connection Kit (MCK) allows local users to modify files via a symlink attack.... Read more

    Affected Products : merchant_connection_kit
    • Published: Jan. 11, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 293360 Results