Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2000-0549

    Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote attackers to cause a denial of service via a malformed request.... Read more

    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0550

    Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote attackers to cause a denial of service.... Read more

    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0555

    Ceilidh allows remote attackers to cause a denial of service via a large number of POST requests.... Read more

    Affected Products : ceilidh
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0548

    Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the e_msg variable in the kerb_err_reply function.... Read more

    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0506

    The "capabilities" feature in Linux before 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."... Read more

    Affected Products : linux_kernel
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0527

    userreg.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : mailstudio_2000
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0526

    mailview.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.... Read more

    Affected Products : mailstudio_2000
    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0547

    Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the localrealm variable in the process_v4 function.... Read more

    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0546

    Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the lastrealm variable in the set_tgtkey function.... Read more

    • Published: Jun. 09, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0525

    OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.... Read more

    Affected Products : openssh
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0377

    The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.... Read more

    Affected Products : windows_nt
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0497

    IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : websphere_application_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0499

    The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : weblogic_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0502

    Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion.... Read more

    Affected Products : virusscan
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0522

    RSA ACE/Server allows remote attackers to cause a denial of service by flooding the server's authentication request port with UDP packets, which causes the server to crash.... Read more

    Affected Products : ace_server
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0498

    Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.... Read more

    Affected Products : ewave_servletexec
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0554

    Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translated_path hidden form field.... Read more

    Affected Products : ceilidh
    • Published: Jun. 08, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0520

    Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.... Read more

    Affected Products : pop_dump
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0376

    Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.... Read more

    Affected Products : filo
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0534

    The apsfilter software in the FreeBSD ports package does not properly read user filter configurations, which allows local users to execute commands as the lpd user.... Read more

    Affected Products : apsfilter
    • Published: Jun. 07, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 293164 Results