C Exploits

CVE-2000-0733 EXPLOITDB c VERIFIED

IRIX <6.1 - RCE

Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request.

by Last Stage of Delirium

View

CVE-2000-0569 EXPLOITDB c VERIFIED

Sybergen Sygate - Denial of Service

Sybergen Sygate allows remote attackers to cause a denial of service by sending a malformed DNS UDP packet to its internal interface.

by Marc of eEye

View

CVE-2000-0586 EXPLOITDB c VERIFIED

Dalnet Ircd - Buffer Overflow

Buffer overflow in Dalnet IRC server 4.6.5 allows remote attackers to cause a denial of service or execute arbitrary commands via the SUMMON command.

by Matt Conover

View

CVE-2000-0592 EXPLOITDB c VERIFIED

Sapporoworks Winproxy - Buffer Overflow

Buffer overflows in POP3 service in WinProxy 2.0 and 2.0.1 allow remote attackers to execute arbitrary commands via long USER, PASS, LIST, RETR, or DELE commands.

by UNYUN

View

CVE-2000-0589 EXPLOITDB c VERIFIED

Sawmill - Cryptographic Issue

SawMill 5.0.21 uses weak encryption to store passwords, which allows attackers to easily decrypt the password and modify the SawMill configuration.

by Larry W. Cashdollar

View

CVE-2000-0865 EXPLOITDB c VERIFIED

Tridia Doublevision - Buffer Overflow

Buffer overflow in dvtermtype in Tridia Double Vision 3.07.00 allows local users to gain root privileges via a long terminal type argument.

by Stephen J. Friedl

View

CVE-2000-0617 EXPLOITDB c VERIFIED

Stanley T. Shebs Xconq - Buffer Overflow

Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long USER environmental variable.

by V9

View

EIP-2026-103036 EXPLOITDB c VERIFIED

X 11.0/3.3.3/3.3.4/3.3.5/3.3.6/4.0 - libX11 '_XAsyncReply()' Stack Corruption

by Chris Evans

View

CVE-2000-0504 EXPLOITDB c VERIFIED

Gnome Gdm - Denial of Service

libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro.

by Chris Evans

View

CVE-2000-0572 EXPLOITDB c VERIFIED

Razor - Privilege Escalation

The Razor configuration management tool uses weak encryption for its password file, which allows local users to gain privileges.

by pbw

View

CVE-2000-0471 EXPLOITDB c VERIFIED

SUN Solaris - Buffer Overflow

Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.

by Job de Haas of ITSX

View

CVE-2000-0472 EXPLOITDB c VERIFIED

ISC Inn - Buffer Overflow

Buffer overflow in innd 2.2.2 allows remote attackers to execute arbitrary commands via a cancel request containing a long message ID.

by Michal Zalewski

View

CVE-2000-0377 EXPLOITDB c VERIFIED

Microsoft Windows NT - Denial of Service

The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.

by Renaud Deraison

View

CVE-2000-0520 EXPLOITDB c VERIFIED

Stelian Pop Dump - Buffer Overflow

Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.

by Stan Bubrouski

View

CVE-2000-0506 EXPLOITDB c VERIFIED

Linux Kernel - Denial of Service

The "capabilities" feature in Linux before 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."

by Florian Heinz

View

CVE-2000-0492 EXPLOITDB c VERIFIED

PassWD 1.2 - Info Disclosure

PassWD 1.2 uses weak encryption (trivial encoding) to store passwords, which allows an attacker who can read the password file to easliy decrypt the passwords.

by Daniel Roethlisberger

View

CVE-2000-0545 EXPLOITDB c VERIFIED

SGI Mailx - Buffer Overflow

Buffer overflow in mailx mail command (aka Mail) on Linux systems allows local users to gain privileges via a long -c (carbon copy) parameter.

by Paulo Ribeiro

View

CVE-2000-0622 EXPLOITDB c VERIFIED

Oreilly Website Professional - Buffer Overflow

Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote attackers to execute arbitrary commands via a URL containing a long "keywords" parameter.

by Robert Horton

View

CVE-2000-0490 EXPLOITDB c VERIFIED

Netwin Dmail - Buffer Overflow

Buffer overflow in the NetWin DSMTP 2.7q in the NetWin dmail package allows remote attackers to execute arbitrary commands via a long ETRN request.

by noir

View

CVE-2000-0467 EXPLOITDB c VERIFIED

SAM Lantinga Splitvt - Buffer Overflow

Buffer overflow in Linux splitvt 1.6.3 and earlier allows local users to gain root privileges via a long password in the screen locking function.

by Syzop

View

EIP-2026-100669 EXPLOITDB c VERIFIED

FreeBSD 3.x/4.0/5.0 / NetBSD 1.4.1/1.4.2 / OpenBSD 2.x - Denial of Service

by Ussr Labs

View

CVE-2000-0495 EXPLOITDB c VERIFIED

Microsoft Windows Media Services - Denial of Service

Microsoft Windows Media Encoder allows remote attackers to cause a denial of service via a malformed request, aka the "Malformed Windows Media Encoder Request" vulnerability.

by Kit Knox

View

CVE-2000-0476 EXPLOITDB c VERIFIED

Michael Jennings Eterm - Denial of Service

xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized.

by Kit Knox

View

CVE-2000-0454 EXPLOITDB c VERIFIED

Mandrakesoft Mandrake Linux - Buffer Overflow

Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter.

by noir

View

EIP-2026-114764 EXPLOITDB c VERIFIED

Elm Development Group ELM 2.4/2.5.1 Mail for UNIX - ELM Buffer Overflow (2)

by Buffer0verfl0w

View