CVSS: 7.2EPSS: 0%CPEs: 5EXPL: 2CVE-2000-0994 – OpenBSD 2.x - 'fstat' Format String
https://notcve.org/view.php?id=CVE-2000-0994
Format string vulnerability in OpenBSD fstat program (and possibly other BSD-based operating systems) allows local users to gain root privileges via the PWD environmental variable. • https://www.exploit-db.com/exploits/20256 ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch http://marc.info/?l=bugtraq&m=97068555106135&w=2 http://www.securityfocus.com/bid/1746 https://exchange.xforce.ibmcloud.com/vulnerabilities/5338 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1CVE-2000-0962
https://notcve.org/view.php?id=CVE-2000-0962
The IPSEC implementation in OpenBSD 2.7 does not properly handle empty AH/ESP packets, which allows remote attackers to cause a denial of service. • http://archives.neohapsis.com/archives/bugtraq/2000-09/0299.html http://www.osvdb.org/1574 http://www.securityfocus.com/bid/1723 https://exchange.xforce.ibmcloud.com/vulnerabilities/5634 •
CVSS: 5.0EPSS: 1%CPEs: 7EXPL: 3CVE-2000-0914 – OpenBSD 2.x - Pending ARP Request Remote Denial of Service
https://notcve.org/view.php?id=CVE-2000-0914
OpenBSD 2.6 and earlier allows remote attackers to cause a denial of service by flooding the server with ARP requests. • https://www.exploit-db.com/exploits/20271 http://archives.neohapsis.com/archives/bugtraq/2000-10/0078.html http://www.osvdb.org/1592 http://www.securityfocus.com/bid/1759 https://exchange.xforce.ibmcloud.com/vulnerabilities/5340 •
CVSS: 4.6EPSS: 0%CPEs: 5EXPL: 0CVE-2000-1004
https://notcve.org/view.php?id=CVE-2000-1004
Format string vulnerability in OpenBSD photurisd allows local users to execute arbitrary commands via a configuration file directory name that contains formatting characters. • http://marc.info/?l=bugtraq&m=97068555106135&w=2 http://www.osvdb.org/6123 https://exchange.xforce.ibmcloud.com/vulnerabilities/5336 •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2000-1010
https://notcve.org/view.php?id=CVE-2000-1010
Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters. • http://www.securityfocus.com/archive/1/137890 http://www.securityfocus.com/bid/1764 https://exchange.xforce.ibmcloud.com/vulnerabilities/5344 •