CVSS: 7.2EPSS: 0%CPEs: 22EXPL: 3CVE-2000-1134 – UUCP - File Creation/Overwriting Symlinks
https://notcve.org/view.php?id=CVE-2000-1134
19 Dec 2000 — Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack. • https://www.exploit-db.com/exploits/217 •
CVSS: 10.0EPSS: 2%CPEs: 10EXPL: 0CVE-2000-1010
https://notcve.org/view.php?id=CVE-2000-1010
11 Dec 2000 — Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters. • http://www.securityfocus.com/archive/1/137890 •
CVSS: 10.0EPSS: 0%CPEs: 74EXPL: 13CVE-2000-0844 – GLIBC locale - Format Strings
https://notcve.org/view.php?id=CVE-2000-0844
14 Nov 2000 — Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/249 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2000-0747
https://notcve.org/view.php?id=CVE-2000-0747
20 Oct 2000 — The logrotate script for OpenLDAP before 1.2.11 in Conectiva Linux sends an improper signal to the kernel log daemon (klogd) and kills it. • http://archives.neohapsis.com/archives/bugtraq/2000-07/0379.html •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2000-0701
https://notcve.org/view.php?id=CVE-2000-0701
21 Sep 2000 — The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges. • http://archives.neohapsis.com/archives/bugtraq/2000-07/0474.html •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2000-0715
https://notcve.org/view.php?id=CVE-2000-0715
21 Sep 2000 — DiskCheck script diskcheck.pl in Red Hat Linux 6.2 allows local users to create or overwrite arbitrary files via a symlink attack on a temporary file. • http://seclists.org/bugtraq/2000/Aug/0082.html • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 2CVE-2000-0667
https://notcve.org/view.php?id=CVE-2000-0667
27 Jul 2000 — Vulnerability in gpm in Caldera Linux allows local users to delete arbitrary files or conduct a denial of service. • http://archives.neohapsis.com/archives/bugtraq/2000-07/0273.html •
CVSS: 5.0EPSS: 4%CPEs: 17EXPL: 2CVE-2000-0668 – Conectiva 4.x/5.x / RedHat 6.x - pam_console Remote User
https://notcve.org/view.php?id=CVE-2000-0668
27 Jul 2000 — pam_console PAM module in Linux systems allows a user to access the system console and reboot the system when a display manager such as gdm or kdm has XDMCP enabled. • https://www.exploit-db.com/exploits/20105 •
CVSS: 5.5EPSS: 0%CPEs: 18EXPL: 0CVE-2000-0633
https://notcve.org/view.php?id=CVE-2000-0633
18 Jul 2000 — Vulnerability in Mandrake Linux usermode package allows local users to to reboot or halt the system. • http://archives.neohapsis.com/archives/bugtraq/2000-07/0251.html •
CVSS: 10.0EPSS: 34%CPEs: 32EXPL: 5CVE-2000-0666 – Conectiva 4.x/5.x / Debian 2.x / RedHat 6.x / S.u.S.E 6.x/7.0 / Trustix 1.x - rpc.statd Remote Format String
https://notcve.org/view.php?id=CVE-2000-0666
16 Jul 2000 — rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root privileges. • https://www.exploit-db.com/exploits/20077 •