2000 — CVEs disclosed (Default sort: published descending; newest first.)

Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.

Showing 6180 of 1243 results
«« First « Prev Page 4 / 63 Next »
CVE Description Max CVSS EPSS % Published Updated
CVE-2000-1180 Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument. 4.6 2.26% 2001-01-09 2026-06-16
CVE-2000-1179 Netopia ISDN Router 650-ST before 4.3.5 allows remote attackers to read system logs without authentication by directly connecting to the login screen and typing certain control characters. 5.0 2.50% 2001-01-09 2026-06-16
CVE-2000-1178 Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes. 5.5 0.56% 2001-01-09 2026-06-16
CVE-2000-1177 bb-hist.sh, bb-histlog.sh, bb-hostsvc.sh, bb-rep.sh, bb-replog.sh, and bb-ack.sh in Big Brother (BB) before 1.5d3 allows remote attackers to determine the existence of files and user ID's by specifying the target file in the HISTFILE parameter. 5.0 7.95% 2001-01-09 2026-06-16
CVE-2000-1176 Directory traversal vulnerability in YaBB search.pl CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catsearch" form field. 7.5 5.72% 2001-01-09 2026-06-16
CVE-2000-1175 Buffer overflow in Koules 1.4 allows local users to execute arbitrary commands via a long command line argument. 7.2 1.20% 2001-01-09 2026-06-16
CVE-2000-1174 Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username. 7.5 5.82% 2001-01-09 2026-06-16
CVE-2000-1173 Microsys CyberPatrol uses weak encryption (trivial encoding) for credit card numbers and uses no encryption for the remainder of the information during registration, which could allow attackers to sniff network traffic and obtain this sensitive information. 5.0 1.61% 2001-01-09 2026-06-16
CVE-2000-1172 Buffer overflow in Gaim 0.10.3 and earlier using the OSCAR protocol allows remote attackers to conduct a denial of service and possibly execute arbitrary commands via a long HTML tag. 10.0 3.13% 2001-01-09 2026-06-16
CVE-2000-1171 Directory traversal vulnerability in cgiforum.pl script in CGIForum 1.0 allows remote attackers to ready arbitrary files via a .. (dot dot) attack in the "thesection" parameter. 5.0 8.33% 2001-01-09 2026-06-16
CVE-2000-1170 Buffer overflow in Netsnap webcam HTTP server before 1.2.9 allows remote attackers to execute arbitrary commands via a long GET request. 7.5 2.40% 2001-01-09 2026-06-16
CVE-2000-1169 OpenSSH SSH client before 2.3.0 does not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access to the X11 display and sniff X11 events, or gain access to the ssh-agent. 7.5 1.84% 2001-01-09 2026-06-16
CVE-2000-1168 IBM HTTP Server 1.3.6 (based on Apache) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request. 7.5 1.92% 2001-01-09 2026-06-16
CVE-2000-1167 ppp utility in FreeBSD 4.1.1 and earlier does not properly restrict access as specified by the "nat deny_incoming" command, which allows remote attackers to connect to the target system. 7.5 1.63% 2001-01-09 2026-06-16
CVE-2000-1166 Twig webmail system does not properly set the "vhosts" variable if it is not configured on the site, which allows remote attackers to insert arbitrary PHP (PHP3) code by specifying an alternate vhosts as an argument to the index.php3 program. 7.5 1.63% 2001-01-09 2026-06-16
CVE-2000-1165 Balabit syslog-ng allows remote attackers to cause a denial of service (application crash) via a malformed log message that does not have a closing > in the priority specifier. 5.0 1.76% 2001-01-09 2026-06-16
CVE-2000-1164 WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system. 9.0 1.50% 2001-01-09 2026-06-16
CVE-2000-1163 ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which another user executes ghostscript. 4.6 0.40% 2001-01-09 2026-06-16
CVE-2000-1162 ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack. 3.7 0.32% 2001-01-09 2026-06-16
CVE-2000-1161 The installation of AdCycle banner management system leaves the build.cgi program in a web-accessible directory, which allows remote attackers to execute the program and view passwords or delete databases. 7.5 1.39% 2001-01-09 2026-06-16
«« First « Prev Page 4 / 63 Next »
cvelogic Threat Intelligence