Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2000-0030

    Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %0.44
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0036

    Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability.... Read more

    Affected Products : outlook_express ie
    • EPSS Score: %19.71
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0119

    The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection.... Read more

    Affected Products : norton_antivirus virusscan
    • EPSS Score: %0.96
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0034

    Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords."... Read more

    Affected Products : communicator
    • EPSS Score: %0.61
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0018

    wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file.... Read more

    Affected Products : wmmon
    • EPSS Score: %0.15
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1109

    Sendmail before 8.10.0 allows remote attackers to cause a denial of service by sending a series of ETRN commands then disconnecting from the server, while Sendmail continues to process the commands after the connection has been terminated.... Read more

    Affected Products : sendmail
    • EPSS Score: %5.22
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1066

    Quake 1 server responds to an initial UDP game connection request with a large amount of traffic, which allows remote attackers to use the server as an amplifier in a "Smurf" style attack on another host, by spoofing the connection request.... Read more

    Affected Products : quake_1_server
    • EPSS Score: %0.66
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0002

    Buffer overflow in ZBServer Pro 1.50 allows remote attackers to execute commands via a long GET request.... Read more

    Affected Products : zbserver
    • EPSS Score: %9.29
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0025

    IIS 4.0 and Site Server 3.0 allow remote attackers to read source code for ASP files if the file is in a virtual directory whose name includes extensions such as .com, .exe, .sh, .cgi, or .dll, aka the "Virtual Directory Naming" vulnerability.... Read more

    • EPSS Score: %46.05
    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0026

    Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.... Read more

    Affected Products : unixware wmmon
    • EPSS Score: %3.57
    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 6.4

    MEDIUM
    CVE-2000-0024

    IIS does not properly canonicalize URLs, potentially allowing remote attackers to bypass access restrictions in third-party software via escape characters, aka the "Escape Character Parsing" vulnerability.... Read more

    • EPSS Score: %12.04
    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0023

    Buffer overflow in Lotus Domino HTTP server allows remote attackers to cause a denial of service via a long URL.... Read more

    Affected Products : domino_server
    • EPSS Score: %0.71
    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0022

    Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory.... Read more

    Affected Products : domino_server
    • EPSS Score: %0.61
    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0017

    Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter.... Read more

    Affected Products : linux
    • EPSS Score: %2.98
    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-1497

    Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to read passwords for e-mail accounts.... Read more

    Affected Products : imail
    • EPSS Score: %0.22
    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0997

    wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.... Read more

    Affected Products : linux wu-ftpd anonftp
    • EPSS Score: %3.82
    • Published: Dec. 20, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0020

    DNS PRO allows remote attackers to conduct a denial of service via a large number of connections.... Read more

    Affected Products : dns_pro
    • EPSS Score: %0.66
    • Published: Dec. 20, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1005

    Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.... Read more

    Affected Products : groupwise enterprise_server
    • EPSS Score: %1.70
    • Published: Dec. 19, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1006

    Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter.... Read more

    Affected Products : groupwise
    • EPSS Score: %0.29
    • Published: Dec. 19, 1999
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-1999-1001

    Cisco Cache Engine allows a remote attacker to gain access via a null username and password.... Read more

    Affected Products : cache_engine
    • EPSS Score: %0.32
    • Published: Dec. 16, 1999
    • Modified: Apr. 03, 2025
Showing 20 of 290171 Results