Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 10.0

    HIGH
    CVE-2000-0587

    The privpath directive in glftpd 1.18 allows remote attackers to bypass access restrictions for directories by using the file name completion capability.... Read more

    Affected Products : glftpd
    • Published: Jun. 26, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0589

    SawMill 5.0.21 uses weak encryption to store passwords, which allows attackers to easily decrypt the password and modify the SawMill configuration.... Read more

    Affected Products : sawmill
    • Published: Jun. 26, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0601

    LeafChat 1.7 IRC client allows a remote IRC server to cause a denial of service by rapidly sending a large amount of error messages.... Read more

    Affected Products : leafchat
    • Published: Jun. 25, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0585

    ISC DHCP client program dhclient allows remote attackers to execute arbitrary commands via shell metacharacters.... Read more

    Affected Products : dhcp_client
    • Published: Jun. 24, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0611

    The default configuration of NetWin dMailWeb and cwMail trusts all POP servers, which allows attackers to bypass normal authentication and cause a denial of service.... Read more

    Affected Products : cwmail dmailweb
    • Published: Jun. 23, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0610

    NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to bypass authentication and use the server for mail relay via a username that contains a carriage return.... Read more

    Affected Products : cwmail dmailweb
    • Published: Jun. 23, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0562

    BlackIce Defender 2.1 and earlier, and BlackIce Pro 2.0.23 and earlier, do not properly block Back Orifice traffic when the security setting is Nervous or lower.... Read more

    Affected Products : blackice_agent blackice_defender
    • Published: Jun. 22, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0540

    JSP sample files in Allaire JRun 2.3.x allow remote attackers to access arbitrary files (e.g. via viewsource.jsp) or obtain configuration information.... Read more

    Affected Products : jrun
    • Published: Jun. 22, 2000
    • Modified: Apr. 03, 2025

  • 6.4

    MEDIUM
    CVE-2000-0539

    Servlet examples in Allaire JRun 2.3.x allow remote attackers to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet.... Read more

    Affected Products : jrun
    • Published: Jun. 22, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0618

    Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long DISPLAY environmental variable.... Read more

    Affected Products : xconq
    • Published: Jun. 22, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0617

    Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long USER environmental variable.... Read more

    Affected Products : xconq
    • Published: Jun. 22, 2000
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0602

    Secure Locate (slocate) in Red Hat Linux allows local users to gain privileges via a malformed configuration file that is specified in the LOCATE_PATH environmental variable.... Read more

    Affected Products : secure_locate
    • Published: Jun. 21, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0511

    CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a CGI POST request.... Read more

    Affected Products : debian_linux
    • Published: Jun. 21, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0608

    NetWin dMailWeb and cwMail 2.6i and earlier allows remote attackers to cause a denial of service via a long POP parameter (pophost).... Read more

    Affected Products : cwmail dmailweb
    • Published: Jun. 21, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0577

    Netscape Professional Services FTP Server 1.3.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.... Read more

    Affected Products : professional_services_ftpserver
    • Published: Jun. 21, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0609

    NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to cause a denial of service via a long username parameter.... Read more

    Affected Products : cwmail dmailweb
    • Published: Jun. 21, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0510

    CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a malformed IPP request.... Read more

    Affected Products : debian_linux
    • Published: Jun. 21, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0606

    Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter.... Read more

    Affected Products : debian_linux linux mandrake_linux
    • Published: Jun. 21, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0513

    CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service by authenticating with a user name that does not exist or does not have a shadow password.... Read more

    Affected Products : debian_linux
    • Published: Jun. 21, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0500

    The default configuration of BEA WebLogic 5.1.0 allows a remote attacker to view source code of programs by requesting a URL beginning with /file/, which causes the default servlet to display the file without further processing.... Read more

    Affected Products : weblogic_server
    • Published: Jun. 21, 2000
    • Modified: Apr. 03, 2025
Showing 20 of 293414 Results