CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2000-0962
https://notcve.org/view.php?id=CVE-2000-0962
19 Dec 2000 — The IPSEC implementation in OpenBSD 2.7 does not properly handle empty AH/ESP packets, which allows remote attackers to cause a denial of service. • http://archives.neohapsis.com/archives/bugtraq/2000-09/0299.html •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 2CVE-2000-0993 – BSD chpass - 'pw_error' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2000-0993
19 Dec 2000 — Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd. • https://www.exploit-db.com/exploits/243 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0995
https://notcve.org/view.php?id=CVE-2000-0995
19 Dec 2000 — Format string vulnerability in OpenBSD yp_passwd program (and possibly other BSD-based operating systems) allows attackers to gain root privileges a malformed name. • ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch •
CVSS: 7.5EPSS: 0%CPEs: 20EXPL: 3CVE-2000-0992 – OpenSSH 1.2 - '.scp' File Create/Overwrite
https://notcve.org/view.php?id=CVE-2000-0992
19 Dec 2000 — Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot dot) attack. Many scp clients fail to verify if the objects returned by the scp server match those it asked for. This issue dates back to 1983 and rcp, on which scp is based. A separate flaw in the client allows the target directory attributes to be changed arbitrarily. • https://www.exploit-db.com/exploits/20253 •
CVSS: 7.5EPSS: 1%CPEs: 7EXPL: 3CVE-2000-0914 – OpenBSD 2.x - Pending ARP Request Remote Denial of Service
https://notcve.org/view.php?id=CVE-2000-0914
19 Dec 2000 — OpenBSD 2.6 and earlier allows remote attackers to cause a denial of service by flooding the server with ARP requests. • https://www.exploit-db.com/exploits/20271 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0996
https://notcve.org/view.php?id=CVE-2000-0996
19 Dec 2000 — Format string vulnerability in OpenBSD su program (and possibly other BSD-based operating systems) allows local attackers to gain root privileges via a malformed shell. • ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2000-1010
https://notcve.org/view.php?id=CVE-2000-1010
11 Dec 2000 — Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters. • http://www.securityfocus.com/archive/1/137890 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2000-1004
https://notcve.org/view.php?id=CVE-2000-1004
11 Dec 2000 — Format string vulnerability in OpenBSD photurisd allows local users to execute arbitrary commands via a configuration file directory name that contains formatting characters. • http://marc.info/?l=bugtraq&m=97068555106135&w=2 •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2000-0997
https://notcve.org/view.php?id=CVE-2000-0997
29 Nov 2000 — Format string vulnerabilities in eeprom program in OpenBSD, NetBSD, and possibly other operating systems allows local attackers to gain root privileges. • ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0999
https://notcve.org/view.php?id=CVE-2000-0999
29 Nov 2000 — Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges. • ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch •