CVSS: 7.2EPSS: 0%CPEs: 13EXPL: 2CVE-2000-0993 – BSD chpass - 'pw_error' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2000-0993
Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd. • https://www.exploit-db.com/exploits/243 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:58.chpass.asc ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-015.txt.asc http://marc.info/?l=bugtraq&m=97068555106135&w=2 http://www.openbsd.org/errata27.html#pw_error http://www.securityfocus.com/bid/1744 https://exchange.xforce.ibmcloud.com/vulnerabilities/5339 •
CVSS: 2.1EPSS: 0%CPEs: 31EXPL: 0CVE-2000-0461
https://notcve.org/view.php?id=CVE-2000-0461
The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:19.semconfig.asc ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-004.txt.asc http://www.openbsd.org/errata26.html#semconfig http://www.securityfocus.com/bid/1270 •
CVSS: 5.0EPSS: 3%CPEs: 5EXPL: 1CVE-2000-0440 – FreeBSD 3.4/4.0/5.0 / NetBSD 1.4 - Unaligned IP Option Denial of Service
https://notcve.org/view.php?id=CVE-2000-0440
NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option. • https://www.exploit-db.com/exploits/19896 ftp://ftp.netbsd.org/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-002.txt.asc http://archives.neohapsis.com/archives/bugtraq/2000-05/0088.html http://www.securityfocus.com/bid/1173 •
CVSS: 2.1EPSS: 0%CPEs: 20EXPL: 1CVE-2000-0489 – FreeBSD 5.0 / NetBSD 1.4.2 / OpenBSD 2.7 - 'setsockopt()' Denial of Service
https://notcve.org/view.php?id=CVE-2000-0489
FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers. • https://www.exploit-db.com/exploits/19488 http://www.securityfocus.com/bid/622 http://www.securityfocus.com/templates/archive.pike?list=1&msg=NCBBKFKDOLAGKIAPMILPCEJLCEAA.labs%40ussrback.com http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.9908270039010.16315-100000%40thetis.deor.org https://exchange.xforce.ibmcloud.com/vulnerabilities/3298 •
CVSS: 4.6EPSS: 0%CPEs: 14EXPL: 1CVE-1999-0433 – X11R6 3.3.3 - Symlink
https://notcve.org/view.php?id=CVE-1999-0433
XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. • https://www.exploit-db.com/exploits/19257 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0433 •