2000 CVE Vulnerabilities
1,241 CVEs published in 2000.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2000-0116 | — | — | 2.5% | Jan 29, 2000 | Firewall-1 does not properly filter script tags, which allows remote attackers to bypass the "Strip Script Tags" restric... |
| CVE-2000-0111 | — | — | 1.4% | Jan 29, 2000 | The RightFax web client uses predictable session numbers, which allows remote attackers to hijack user sessions. |
| CVE-2000-1216 | — | — | 0.5% | Jan 27, 2000 | Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_... |
| CVE-2000-0130 | — | — | 1.0% | Jan 27, 2000 | Buffer overflow in SCO scohelp program allows remote attackers to execute commands. |
| CVE-2000-0113 | — | — | 2.5% | Jan 27, 2000 | The SyGate Remote Management program does not properly restrict access to its administration service, which allows remot... |
| CVE-2000-0097 | — | — | 35.9% | Jan 26, 2000 | The WebHits ISAPI filter in Microsoft Index Server allows remote attackers to read arbitrary files, aka the "Malformed H... |
| CVE-2000-0096 | — | — | 0.5% | Jan 26, 2000 | Buffer overflow in qpopper 3.0 beta versions allows local users to gain privileges via a long LIST command. |
| CVE-2000-0126 | — | — | 45.7% | Jan 26, 2000 | Sample Internet Data Query (IDQ) scripts in IIS 3 and 4 allow remote attackers to read files via a .. (dot dot) attack. |
| CVE-2000-0098 | — | — | 48.5% | Jan 26, 2000 | Microsoft Index Server allows remote attackers to determine the real path for a web directory via a request to an Intern... |
| CVE-2000-0095 | — | — | 2.3% | Jan 24, 2000 | The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of tr... |
| CVE-2000-0093 | — | — | 1.3% | Jan 21, 2000 | An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5. |
| CVE-2000-0091 | — | — | 12.9% | Jan 21, 2000 | Buffer overflow in vchkpw/vpopmail POP authentication package allows remote attackers to gain root privileges via a long... |
| CVE-2000-0115 | — | — | 9.8% | Jan 21, 2000 | IIS allows local users to cause a denial of service via invalid regular expressions in a Visual Basic script in an ASP p... |
| CVE-2000-0088 | — | — | 1.9% | Jan 20, 2000 | Buffer overflow in the conversion utilities for Japanese, Korean and Chinese Word 5 documents allows an attacker to exec... |
| CVE-2000-0092 | — | — | 0.3% | Jan 19, 2000 | The BSD make program allows local users to modify files via a symlink attack when the -j option is being used. |
| CVE-2000-0079 | — | — | 2.0% | Jan 18, 2000 | The W3C CERN httpd HTTP server allows remote attackers to determine the real pathnames of some commands via a request fo... |
| CVE-2000-0099 | — | — | 0.4% | Jan 18, 2000 | Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument. |
| CVE-2000-0086 | — | — | 1.4% | Jan 18, 2000 | Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffin... |
| CVE-2000-0072 | — | — | 0.3% | Jan 17, 2000 | Visual Casel (Vcasel) does not properly prevent users from executing files, which allows local users to use a relative p... |
| CVE-2000-0063 | — | — | 1.4% | Jan 17, 2000 | cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to read arbitrary files by specifying the fil... |
| CVE-2000-0064 | — | — | 1.3% | Jan 17, 2000 | cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to cause a denial of service via a malformed ... |
| CVE-2000-0065 | — | — | 12.9% | Jan 17, 2000 | Buffer overflow in InetServ 3.0 allows remote attackers to execute commands via a long GET request. |
| CVE-2000-0090 | — | — | 0.3% | Jan 17, 2000 | VMWare 1.1.2 allows local users to cause a denial of service via a symlink attack. |
| CVE-2000-0066 | — | — | 2.0% | Jan 13, 2000 | WebSite Pro allows remote attackers to determine the real pathname of webdirectories via a malformed URL request. |
| CVE-2000-0075 | — | — | 2.5% | Jan 13, 2000 | Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a den... |
Check if your code is affected by 2000 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now