National Vulnerability Database
(308747)
- CVE-2000-0038
- glFtpD includes a default glftpd user account with a default password and a UID of 0.
- CVE-2000-0037
- Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file.
- CVE-2000-0036
- Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability.
- CVE-2000-0035
- resend command in Majordomo allows local users to gain privileges via shell metacharacters.
- CVE-2000-0034
- Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords."
- CVE-2000-0033
- InterScan VirusWall SMTP scanner does not properly scan messages with malformed attachments.
- CVE-2000-0032
- Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.
- CVE-2000-0031
- The initscripts package in Red Hat Linux allows local users to gain privileges via a symlink attack.
- CVE-2000-0030
- Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database.
- CVE-2000-0029
- UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.