Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2000-0631

    An administrative script from IIS 3.0, later included in IIS 4.0 and 5.0, allows remote attackers to cause a denial of service by accessing the script without a particular argument, aka the "Absent Directory Browser Argument" vulnerability.... Read more

    • Published: Jul. 14, 2000
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-2000-0649

    IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic authentication and has no realm defined.... Read more

    • Published: Jul. 13, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0675

    Buffer overflow in Infopulse Gatekeeper 3.5 and earlier allows remote attackers to execute arbitrary commands via a long string.... Read more

    Affected Products : gatekeeper
    • Published: Jul. 13, 2000
    • Modified: Apr. 03, 2025

  • 7.6

    HIGH
    CVE-1999-0812

    Race condition in Samba smbmnt allows local users to mount file systems in arbitrary locations.... Read more

    Affected Products : samba
    • Published: Jul. 12, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0642

    The default configuration of WebActive HTTP Server 1.00 stores the web access log active.log in the document root, which allows remote attackers to view the logs by directly requesting the page.... Read more

    Affected Products : webactive
    • Published: Jul. 12, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0372

    Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges.... Read more

    Affected Products : openlinux
    • Published: Jul. 12, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0629

    The default configuration of the Sun Java web server 2.0 and earlier allows remote attackers to execute arbitrary commands by uploading Java code to the server via board.html, then directly calling the JSP compiler servlet.... Read more

    Affected Products : java_system_web_server
    • Published: Jul. 12, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0660

    The WDaemon web server for WorldClient 2.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack.... Read more

    Affected Products : worldclient
    • Published: Jul. 12, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0674

    ftp.pl CGI program for Virtual Visions FTP browser allows remote attackers to read directories outside of the document root via a .. (dot dot) attack.... Read more

    Affected Products : ftp_browser
    • Published: Jul. 12, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0643

    Buffer overflow in WebActive HTTP Server 1.00 allows remote attackers to cause a denial of service via a long URL.... Read more

    Affected Products : webactive
    • Published: Jul. 12, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0670

    The cvsweb CGI script in CVSWeb 1.80 allows remote attackers with write access to a CVS repository to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : cvsweb
    • Published: Jul. 12, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0650

    The default installation of VirusScan 4.5 and NetShield 4.5 has insecure permissions for the registry key that identifies the AutoUpgrade directory, which allows local users to execute arbitrary commands by replacing SETUP.EXE in that directory with a Tro... Read more

    Affected Products : netshield virusscan
    • Published: Jul. 11, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0638

    bb-hostsvc.sh in Big Brother 1.4h1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack on the HOSTSVC parameter.... Read more

    Affected Products : big_brother
    • Published: Jul. 11, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0654

    Microsoft Enterprise Manager allows local users to obtain database passwords via the Data Transformation Service (DTS) package Registered Servers Dialog dialog, aka a variant of the "DTS Password" vulnerability.... Read more

    Affected Products : sql_server
    • Published: Jul. 11, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0648

    WFTPD and WFTPD Pro 2.41 allows local users to cause a denial of service by executing the RENAME TO (RNTO) command before a RENAME FROM (RNFR) command.... Read more

    Affected Products : wftpd
    • Published: Jul. 11, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0628

    The source.asp example script in the Apache ASP module Apache::ASP 1.93 and earlier allows remote attackers to modify files.... Read more

    Affected Products : apache_asp
    • Published: Jul. 11, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0669

    Novell NetWare 5.0 allows remote attackers to cause a denial of service by flooding port 40193 with random data.... Read more

    Affected Products : netware
    • Published: Jul. 11, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0635

    The view_page.html sample page in the MiniVend shopping cart program allows remote attackers to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : minivend
    • Published: Jul. 10, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0661

    WircSrv IRC Server 5.07s allows remote attackers to cause a denial of service via a long string to the server port.... Read more

    Affected Products : irc_server
    • Published: Jul. 10, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0605

    Blackboard CourseInfo 4.0 stores the local and SQL administrator user names and passwords in cleartext in a registry key whose access control allows users to access the passwords.... Read more

    Affected Products : courseinfo
    • Published: Jul. 10, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 292770 Results