Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2000-0546

    Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the lastrealm variable in the set_tgtkey function.... Read more

    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0506

    The "capabilities" feature in Linux before 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."... Read more

    Affected Products : linux_kernel
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0555

    Ceilidh allows remote attackers to cause a denial of service via a large number of POST requests.... Read more

    Affected Products : ceilidh
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0548

    Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the e_msg variable in the kerb_err_reply function.... Read more

    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0527

    userreg.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : mailstudio_2000
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0547

    Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the localrealm variable in the process_v4 function.... Read more

    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0502

    Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion.... Read more

    Affected Products : virusscan
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0498

    Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : ewave_servletexec
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0554

    Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translated_path hidden form field.... Read more

    Affected Products : ceilidh
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0497

    IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : websphere_application_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0525

    OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.... Read more

    Affected Products : openssh
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0522

    RSA ACE/Server allows remote attackers to cause a denial of service by flooding the server's authentication request port with UDP packets, which causes the server to crash.... Read more

    Affected Products : ace_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0499

    The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : weblogic_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0377

    The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.... Read more

    Affected Products : windows_nt
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0515

    The snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.... Read more

    Affected Products : hp-ux
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0538

    ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password.... Read more

    Affected Products : coldfusion_server
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0559

    eTrust Intrusion Detection System (formerly SessionWall-3) uses weak encryption (XOR) to store administrative passwords in the registry, which allows local users to easily decrypt the passwords.... Read more

    Affected Products : etrust_intrusion_detection
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0520

    Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.... Read more

    Affected Products : pop_dump
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0376

    Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.... Read more

    Affected Products : filo
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0532

    A FreeBSD patch for SSH on 2000-01-14 configures ssh to listen on port 722 as well as port 22, which might allow remote attackers to access SSH through port 722 even if port 22 is otherwise filtered.... Read more

    Affected Products : freebsd
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 292801 Results