Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-2000-0635

    The view_page.html sample page in the MiniVend shopping cart program allows remote attackers to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : minivend
    • Published: Jul. 10, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0640

    Guild FTPd allows remote attackers to determine the existence of files outside the FTP root via a .. (dot dot) attack, which provides different error messages depending on whether the file exists or not.... Read more

    Affected Products : guildftpd
    • Published: Jul. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0641

    Savant web server allows remote attackers to execute arbitrary commands via a long GET request.... Read more

    Affected Products : savant_webserver
    • Published: Jul. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0651

    The ClientTrust program in Novell BorderManager does not properly verify the origin of authentication requests, which could allow remote attackers to impersonate another user by replaying the authentication requests and responses from port 3024 of the vic... Read more

    Affected Products : bordermanager
    • Published: Jul. 07, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0603

    Microsoft SQL Server 7.0 allows a local user to bypass permissions for stored procedures by referencing them via a temporary stored procedure, aka the "Stored Procedure Permissions" vulnerability.... Read more

    Affected Products : sql_server
    • Published: Jul. 07, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0574

    FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), which allows remote attackers to cause a denial of servic... Read more

    Affected Products : wu-ftpd ftpd
    • Published: Jul. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0573

    The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command.... Read more

    Affected Products : hp-ux
    • Published: Jul. 07, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0575

    SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is installed on N... Read more

    Affected Products : ssh
    • Published: Jul. 05, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0576

    Oracle Web Listener for AIX versions 4.0.7.0.0 and 4.0.8.1.0 allows remote attackers to cause a denial of service via a malformed URL.... Read more

    Affected Products : web_listener
    • Published: Jul. 05, 2000
    • Modified: Apr. 03, 2025

  • 6.4

    MEDIUM
    CVE-2000-0571

    LocalWEB HTTP server 1.2.0 allows remote attackers to cause a denial of service via a long GET request.... Read more

    Affected Products : localweb_http_server
    • Published: Jul. 05, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0595

    libedit searches for the .editrc file in the current directory instead of the user's home directory, which may allow local users to execute arbitrary commands by installing a modified .editrc in another directory.... Read more

    Affected Products : freebsd
    • Published: Jul. 05, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0591

    Novell BorderManager 3.0 and 3.5 allows remote attackers to bypass URL filtering by encoding characters in the requested URL.... Read more

    Affected Products : bordermanager
    • Published: Jul. 05, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0572

    The Razor configuration management tool uses weak encryption for its password file, which allows local users to gain privileges.... Read more

    Affected Products : razor
    • Published: Jul. 05, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0594

    BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters.... Read more

    • Published: Jul. 04, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0590

    Poll It 2.0 CGI script allows remote attackers to read arbitrary files by specifying the file name in the data_dir parameter.... Read more

    Affected Products : poll_it
    • Published: Jul. 04, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0566

    makewhatis in Linux man package allows local users to overwrite files via a symlink attack.... Read more

    Affected Products : linux mandrake_linux openlinux
    • Published: Jul. 03, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0584

    Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group name.... Read more

    Affected Products : debian_linux freebsd
    • Published: Jul. 02, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-0585

    A Windows NT administrator account has the default name of Administrator.... Read more

    Affected Products : windows_2000 windows_nt
    • Published: Jul. 01, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0581

    Windows 2000 Telnet Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros, which causes the server to crash.... Read more

    Affected Products : windows_2000
    • Published: Jun. 30, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0569

    Sybergen Sygate allows remote attackers to cause a denial of service by sending a malformed DNS UDP packet to its internal interface.... Read more

    Affected Products : sygate
    • Published: Jun. 30, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 292770 Results