Search
14,631 CVEs · Low severity
CVEs (14,631, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 251–275 of 14,631 (capped at 500)
| CVE ID ↑ | Severity | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2000-0767 | LOW | Patched | 2.6 | 2000-10-20 | The ActiveX control for invoking a scriptlet in Internet Explorer 4.x and 5.x renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files… |
| CVE-2000-0768 | LOW | Patched | 2.6 | 2000-10-20 | A function in Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka… |
| CVE-2000-0771 | LOW | 2.1 | 2000-10-20 | Microsoft Windows 2000 allows local users to cause a denial of service by corrupting the local security policy via malformed RPC traffic, aka the "Local Security Policy Cor… | |
| CVE-2000-0799 | LOW | 3.7 | 2000-10-20 | inpview in InPerson in SGI IRIX 5.3 through IRIX 6.5.10 allows local users to gain privileges via a symlink attack on the .ilmpAAA temporary file. | |
| CVE-2000-0802 | LOW | 3.6 | 2000-10-20 | The BAIR program does not properly restrict access to the Internet Explorer Internet options menu, which allows local users to obtain access to the menu by modifying the re… | |
| CVE-2000-0816 | LOW | 2.1 | 2000-10-06 | Linux tmpwatch --fuser option allows local users to execute arbitrary commands by creating files whose names contain shell metacharacters. | |
| CVE-2000-0829 | LOW | 2.1 | 2000-11-14 | The tmpwatch utility in Red Hat Linux forks a new process for each directory level, which allows local users to cause a denial of service by creating deeply nested director… | |
| CVE-2000-0849 | LOW | 2.6 | 2000-11-14 | Race condition in Microsoft Windows Media server allows remote attackers to cause a denial of service in the Windows Media Unicast Service via a malformed request, aka the … | |
| CVE-2000-0866 | LOW | 2.1 | 2000-11-14 | Interbase 6 SuperServer for Linux allows an attacker to cause a denial of service via a query containing 0 bytes. | |
| CVE-2000-0873 | LOW | 2.1 | 2000-11-14 | netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface statistics and possibly hide evidence of unusu… | |
| CVE-2000-0879 | LOW | 2.1 | 2000-11-14 | LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to sta… | |
| CVE-2000-0880 | LOW | 3.6 | 2000-11-14 | LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using th… | |
| CVE-2000-0881 | LOW | 2.1 | 2000-11-14 | The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to pri… | |
| CVE-2000-0890 | LOW | 1.2 | 2001-02-16 | periodic in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows local users to overwrite arbitrary files via a symlink attack. | |
| CVE-2000-0892 | LOW | 2.6 | 2001-07-21 | Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the… | |
| CVE-2000-0928 | LOW | Patched | 2.1 | 2000-12-19 | WQuinn QuotaAdvisor 4.1 allows users to list directories and files by running a report on the targeted shares. |
| CVE-2000-0936 | LOW | 2.1 | 2000-12-19 | Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive informatio… | |
| CVE-2000-0959 | LOW | 1.2 | 2000-12-19 | glibc2 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environmental variables when a program is spawned from a setuid program, which could allow local users to ov… | |
| CVE-2000-1003 | LOW | 2.6 | 2000-12-11 | NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which… | |
| CVE-2000-1018 | LOW | 2.1 | 2000-12-11 | shred 1.0 file wiping utility does not properly open a file for overwriting or flush its buffers, which prevents shred from properly replacing the file's data and allows lo… | |
| CVE-2000-1045 | LOW | 1.2 | 2000-12-11 | nss_ldap earlier than 121, when run with nscd (name service caching daemon), allows remote attackers to cause a denial of service via a flood of LDAP requests. | |
| CVE-2000-1083 | LOW | 2.1 | 2001-01-09 | The xp_showcolv function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo fun… | |
| CVE-2000-1096 | LOW | 3.7 | 2001-01-09 | crontab by Paul Vixie uses predictable file names for a temporary file and does not properly ensure that the file is owned by the user executing the crontab -e command, whi… | |
| CVE-2000-1127 | LOW | 3.6 | 2001-01-09 | registrar in the HP resource monitor service allows local users to read and modify arbitrary files by renaming the original registrar.log log file and creating a symbolic l… | |
| CVE-2000-1140 | LOW | 2.1 | 2001-01-09 | Recourse ManTrap 1.6 does not properly hide processes from attackers, which could allow attackers to determine that they are in a honeypot system by comparing the results f… |