CVSS: 10.0EPSS: 0%CPEs: 74EXPL: 13CVE-2000-0844 – Immunix OS 6.2 - LC glibc format string
https://notcve.org/view.php?id=CVE-2000-0844
14 Nov 2000 — Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/20187 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2000-0867
https://notcve.org/view.php?id=CVE-2000-0867
14 Nov 2000 — Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-032.0.txt •
CVSS: 10.0EPSS: 4%CPEs: 2EXPL: 1CVE-2000-0584 – Canna Canna 3.5 b2 - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0584
02 Jul 2000 — Buffer overflow in Canna input system allows remote attackers to execute arbitrary commands via an SR_INIT command with a long user name or group name. • https://www.exploit-db.com/exploits/20061 •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2000-0606
https://notcve.org/view.php?id=CVE-2000-0606
21 Jun 2000 — Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter. • http://www.securityfocus.com/bid/1371 •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 1CVE-2000-0607 – Mandrake 7.0/7.1 / RedHat Kon2 0.3.9 - '/usr/bin/fld' Input File Overflow
https://notcve.org/view.php?id=CVE-2000-0607
21 Jun 2000 — Buffer overflow in fld program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via an input file containing long CHARSET_REGISTRY or CHARSET_ENCODING settings. • https://www.exploit-db.com/exploits/20024 •
CVSS: 5.0EPSS: 0%CPEs: 13EXPL: 2CVE-2000-0289
https://notcve.org/view.php?id=CVE-2000-0289
27 Mar 2000 — IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection. • http://archives.neohapsis.com/archives/bugtraq/2000-03/0284.html •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 1CVE-2000-0229 – gpm 1.18.1/1.19 / Debian 2.x / RedHat 6.x / S.u.S.E 5.3/6.x - gpm Setgid
https://notcve.org/view.php?id=CVE-2000-0229
22 Mar 2000 — gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root. • https://www.exploit-db.com/exploits/19816 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2000-0112
https://notcve.org/view.php?id=CVE-2000-0112
02 Feb 2000 — The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the installation. • http://marc.info/?l=bugtraq&m=94973075614088&w=2 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2000-0107 – Debian 2.1 - apcd Symlink
https://notcve.org/view.php?id=CVE-2000-0107
01 Feb 2000 — Linux apcd program allows local attackers to modify arbitrary files via a symlink attack. • https://www.exploit-db.com/exploits/19735 •
CVSS: 10.0EPSS: 18%CPEs: 31EXPL: 1CVE-2000-1221 – RedHat 6.1 / IRIX 6.5.18 - 'lpd' Command Execution
https://notcve.org/view.php?id=CVE-2000-1221
08 Jan 2000 — The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP. • https://www.exploit-db.com/exploits/19722 •