Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.4

    MEDIUM
    CVE-2000-0237

    Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse the directories.... Read more

    Affected Products : enterprise_server
    • Published: Mar. 11, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0171

    atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges.... Read more

    Affected Products : atsar_linux
    • Published: Mar. 11, 2000
    • Modified: Apr. 03, 2025

  • 5.1

    MEDIUM
    CVE-2000-0183

    Buffer overflow in ircII 4.4 IRC client allows remote attackers to execute commands via the DCC chat capability.... Read more

    Affected Products : ircii
    • Published: Mar. 10, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0173

    Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service.... Read more

    Affected Products : unixware
    • Published: Mar. 10, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0223

    Buffer overflow in the wmcdplay CD player program for the WindowMaker desktop allows local users to gain root privileges via a long parameter.... Read more

    Affected Products : wmcdplay
    • Published: Mar. 10, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0175

    Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command.... Read more

    Affected Products : staroffice
    • Published: Mar. 09, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0184

    Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords.... Read more

    Affected Products : linux mandrake_linux
    • Published: Mar. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0174

    StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.... Read more

    Affected Products : staroffice
    • Published: Mar. 09, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0202

    Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0 allow remote attackers to gain privileges via a malformed Select statement in an SQL query.... Read more

    Affected Products : sql_server data_engine
    • Published: Mar. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0185

    RealMedia RealServer reveals the real IP address of a Real Server, even if the address is supposed to be private.... Read more

    Affected Products : realserver realserver_g2
    • Published: Mar. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0225

    The Pocsag POC32 program does not properly prevent remote users from accessing its server port, even if the option has been disabled.... Read more

    Affected Products : poc32
    • Published: Mar. 07, 2000
    • Modified: Apr. 03, 2025

  • 5.1

    MEDIUM
    CVE-2000-0200

    Buffer overflow in Microsoft Clip Art Gallery allows remote attackers to cause a denial of service or execute commands via a malformed CIL (clip art library) file, aka the "Clip Art Buffer Overrun" vulnerability.... Read more

    Affected Products : clip_art greetings home_publishing
    • Published: Mar. 06, 2000
    • Modified: Apr. 03, 2025

  • 6.2

    MEDIUM
    CVE-2000-0206

    The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges.... Read more

    Affected Products : oracle8i
    • Published: Mar. 05, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0192

    The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.... Read more

    Affected Products : openlinux
    • Published: Mar. 05, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0168

    Microsoft Windows 9x operating systems allow an attacker to cause a denial of service via a pathname that includes file device names, aka the "DOS Device in Path Name" vulnerability.... Read more

    • Published: Mar. 04, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0172

    The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges.... Read more

    Affected Products : turbolinux mtr
    • Published: Mar. 03, 2000
    • Modified: Apr. 03, 2025

  • 6.4

    MEDIUM
    CVE-2000-0205

    Trend Micro OfficeScan allows remote attackers to replay administrative commands and modify the configuration of OfficeScan clients.... Read more

    Affected Products : officescan
    • Published: Mar. 03, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0193

    The default configuration of Dosemu in Corel Linux 1.0 allows local users to execute the system.com program and gain privileges.... Read more

    Affected Products : linux
    • Published: Mar. 02, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-0693

    Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.... Read more

    Affected Products : aix hp-ux unixware
    • Published: Mar. 02, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0190

    AOL Instant Messenger (AIM) client allows remote attackers to cause a denial of service via a message with a malformed ASCII value.... Read more

    Affected Products : instant_messenger
    • Published: Mar. 02, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 292811 Results