Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.6

    MEDIUM
    CVE-2000-0035

    resend command in Majordomo allows local users to gain privileges via shell metacharacters.... Read more

    Affected Products : majordomo
    • Published: Dec. 28, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-1573

    Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP-UX 10.00 through 11.00 allow attackers to gain privileges or access files.... Read more

    Affected Products : hp-ux
    • Published: Dec. 28, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0033

    InterScan VirusWall SMTP scanner does not properly scan messages with malformed attachments.... Read more

    Affected Products : interscan_viruswall
    • Published: Dec. 27, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0060

    Buffer overflow in aVirt Rover POP3 server 1.1 allows remote attackers to cause a denial of service via a long user name.... Read more

    Affected Products : rover
    • Published: Dec. 27, 1999
    • Modified: Apr. 03, 2025

  • 6.2

    MEDIUM
    CVE-2000-0027

    IBM Network Station Manager NetStation allows local users to gain privileges via a symlink attack.... Read more

    Affected Products : network_station_manager
    • Published: Dec. 27, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0012

    Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands.... Read more

    Affected Products : msql
    • Published: Dec. 27, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2000-0029

    UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.... Read more

    Affected Products : unixware
    • Published: Dec. 27, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0010

    WebWho+ whois.cgi program allows remote attackers to execute commands via shell metacharacters in the TLD parameter.... Read more

    Affected Products : webwho\+
    • Published: Dec. 26, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0008

    FTPPro allows local users to read sensitive information, which is stored in plain text.... Read more

    Affected Products : ftppro
    • Published: Dec. 26, 1999
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-2000-0006

    strace allows local users to read arbitrary files via memory mapped file names.... Read more

    Affected Products : linux_kernel strace
    • Published: Dec. 25, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0455

    The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.... Read more

    Affected Products : coldfusion_server
    • Published: Dec. 25, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-0477

    The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not restrict access to the server properly.... Read more

    Affected Products : coldfusion_server
    • Published: Dec. 25, 1999
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-1999-0892

    Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.... Read more

    Affected Products : communicator
    • Published: Dec. 24, 1999
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-2000-0028

    Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function.... Read more

    Affected Products : internet_explorer ie
    • Published: Dec. 23, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0038

    glFtpD includes a default glftpd user account with a default password and a UID of 0.... Read more

    Affected Products : glftpd
    • Published: Dec. 23, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0001

    RealMedia server allows remote attackers to cause a denial of service via a long ramgen request.... Read more

    Affected Products : realserver
    • Published: Dec. 23, 1999
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0040

    glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command.... Read more

    Affected Products : glftpd
    • Published: Dec. 23, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0030

    Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database.... Read more

    Affected Products : solaris sunos
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0018

    wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file.... Read more

    Affected Products : wmmon
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0034

    Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords."... Read more

    Affected Products : communicator
    • Published: Dec. 22, 1999
    • Modified: Apr. 03, 2025
Showing 20 of 293589 Results