Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2000-0025

    IIS 4.0 and Site Server 3.0 allow remote attackers to read source code for ASP files if the file is in a virtual directory whose name includes extensions such as .com, .exe, .sh, .cgi, or .dll, aka the "Virtual Directory Naming" vulnerability.... Read more

    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0026

    Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.... Read more

    Affected Products : unixware wmmon
    • Published: Dec. 21, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0997

    wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.... Read more

    Affected Products : linux wu-ftpd anonftp
    • Published: Dec. 20, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0020

    DNS PRO allows remote attackers to conduct a denial of service via a large number of connections.... Read more

    Affected Products : dns_pro
    • Published: Dec. 20, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1005

    Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.... Read more

    Affected Products : groupwise enterprise_server
    • Published: Dec. 19, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1006

    Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter.... Read more

    Affected Products : groupwise
    • Published: Dec. 19, 1999
    • Modified: Apr. 03, 2025

  • 7.8

    HIGH
    CVE-1999-0995

    Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids function which looks up the SID, aka "Malformed Security Identifier Request."... Read more

    Affected Products : windows_nt
    • Published: Dec. 16, 1999
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-1999-1001

    Cisco Cache Engine allows a remote attacker to gain access via a null username and password.... Read more

    Affected Products : cache_engine
    • Published: Dec. 16, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0994

    Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords.... Read more

    Affected Products : windows_nt
    • Published: Dec. 16, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1000

    The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics.... Read more

    Affected Products : cache_engine
    • Published: Dec. 16, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0998

    Cisco Cache Engine allows an attacker to replace content in the cache.... Read more

    Affected Products : cache_engine
    • Published: Dec. 16, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1004

    Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command.... Read more

    Affected Products : norton_antivirus
    • Published: Dec. 16, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0996

    Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request.... Read more

    Affected Products : ultraseek_server
    • Published: Dec. 15, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-0934

    classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters.... Read more

    Affected Products :
    • Published: Dec. 15, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0935

    classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form.... Read more

    Affected Products :
    • Published: Dec. 15, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0068

    daynad program in Intel InBusiness E-mail Station does not require authentication, which allows remote attackers to modify its configuration, delete files, or read mail.... Read more

    Affected Products : inbusiness_email_station
    • Published: Dec. 14, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1010

    An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.... Read more

    Affected Products : openssh
    • Published: Dec. 14, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0361

    The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.... Read more

    Affected Products : suse_linux
    • Published: Dec. 14, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0993

    Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.... Read more

    Affected Products : exchange_server
    • Published: Dec. 13, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1003

    War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections.... Read more

    Affected Products : warftpd
    • Published: Dec. 13, 1999
    • Modified: Apr. 03, 2025
Showing 20 of 293258 Results