Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.6

    MEDIUM
    CVE-2000-0595

    libedit searches for the .editrc file in the current directory instead of the user's home directory, which may allow local users to execute arbitrary commands by installing a modified .editrc in another directory.... Read more

    Affected Products : freebsd
    • Published: Jul. 05, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0572

    The Razor configuration management tool uses weak encryption for its password file, which allows local users to gain privileges.... Read more

    Affected Products : razor
    • Published: Jul. 05, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0575

    SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is installed on N... Read more

    Affected Products : ssh
    • Published: Jul. 05, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0590

    Poll It 2.0 CGI script allows remote attackers to read arbitrary files by specifying the file name in the data_dir parameter.... Read more

    Affected Products : poll_it
    • Published: Jul. 04, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0594

    BitchX IRC client does not properly cleanse an untrusted format string, which allows remote attackers to cause a denial of service via an invite to a channel whose name includes special formatting characters.... Read more

    • Published: Jul. 04, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0566

    makewhatis in Linux man package allows local users to overwrite files via a symlink attack.... Read more

    Affected Products : linux mandrake_linux openlinux
    • Published: Jul. 03, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0584

    Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group name.... Read more

    Affected Products : debian_linux freebsd
    • Published: Jul. 02, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-0585

    A Windows NT administrator account has the default name of Administrator.... Read more

    Affected Products : windows_2000 windows_nt
    • Published: Jul. 01, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0582

    Check Point FireWall-1 4.0 and 4.1 allows remote attackers to cause a denial of service by sending a stream of invalid commands (such as binary zeros) to the SMTP Security Server proxy.... Read more

    Affected Products : firewall-1
    • Published: Jun. 30, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0583

    vchkpw program in vpopmail before version 4.8 does not properly cleanse an untrusted format string used in a call to syslog, which allows remote attackers to cause a denial of service via a USER or PASS command that contains arbitrary formatting directive... Read more

    Affected Products : vpopmail_vchkpw
    • Published: Jun. 30, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0581

    Windows 2000 Telnet Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros, which causes the server to crash.... Read more

    Affected Products : windows_2000
    • Published: Jun. 30, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0569

    Sybergen Sygate allows remote attackers to cause a denial of service by sending a malformed DNS UDP packet to its internal interface.... Read more

    Affected Products : sygate
    • Published: Jun. 30, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0568

    Sybergen Secure Desktop 2.1 does not properly protect against false router advertisements (ICMP type 9), which allows remote attackers to modify default routes.... Read more

    Affected Products : secure_desktop
    • Published: Jun. 30, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0580

    Windows 2000 Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros to various TCP and UDP ports, which significantly increases the CPU utilization.... Read more

    Affected Products : windows_2000
    • Published: Jun. 30, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0612

    Windows 95 and Windows 98 do not properly process spoofed ARP packets, which allows remote attackers to overwrite static entries in the cache table.... Read more

    Affected Products : windows_95 windows_98
    • Published: Jun. 29, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0586

    Buffer overflow in Dalnet IRC server 4.6.5 allows remote attackers to cause a denial of service or execute arbitrary commands via the SUMMON command.... Read more

    Affected Products : ircd
    • Published: Jun. 29, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0599

    Buffer overflow in iMesh 1.02 allows remote attackers to execute arbitrary commands via a long string to the iMesh port.... Read more

    Affected Products : imesh
    • Published: Jun. 29, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0593

    WinProxy 2.0 and 2.0.1 allows remote attackers to cause a denial of service by sending an HTTP GET request without listing an HTTP version number.... Read more

    Affected Products : sapporoworks_winproxy
    • Published: Jun. 27, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0596

    Internet Explorer 5.x does not warn a user before opening a Microsoft Access database file that is referenced within ActiveX OBJECT tags in an HTML document, which could allow remote attackers to execute arbitrary commands, aka the "IE Script" vulnerabili... Read more

    Affected Products : internet_explorer
    • Published: Jun. 27, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0597

    Microsoft Office 2000 (Excel and PowerPoint) and PowerPoint 97 are marked as safe for scripting, which allows remote attackers to force Internet Explorer or some email clients to save files to arbitrary locations via the Visual Basic for Applications (VBA... Read more

    Affected Products : excel powerpoint
    • Published: Jun. 27, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 292860 Results