Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft access 2000 vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2002-0049
Microsoft Exchange Server 2000 System Attendant gives "Everyone" group privileges to the WinReg key, which could allow remote malicious users to read or modify registry keys.
Microsoft Exchange Server 2000
5
CVSSv2
CVE-2005-3169
Microsoft Windows 2000 before Update Rollup 1 for SP4, when the "audit directory service access" policy is enabled, does not record a 565 event message for File Delete Child operations on an Active Directory object in the security event log, which could allow malicious ...
Microsoft Windows 2000
7.5
CVSSv2
CVE-2005-3168
The SECEDIT command on Microsoft Windows 2000 before Update Rollup 1 for SP4, when using a security template to set Access Control Lists (ACLs) on folders, does not apply ACLs on folders that are listed after a long folder entry, which could result in less secure permissions than...
Microsoft Windows 2000
2.1
CVSSv2
CVE-2006-2334
The RtlDosPathNameToNtPathName_U API function in NTDLL.DLL in Microsoft Windows 2000 SP4 and XP SP2 does not properly convert DOS style paths with trailing spaces into NT style paths, which allows context-dependent malicious users to create files that cannot be accessed through t...
Microsoft Windows Xp
Microsoft Windows 2000
1 EDB exploit
4.6
CVSSv2
CVE-2000-0737
The Service Control Manager (SCM) in Windows 2000 creates predictable named pipes, which allows a local user with console access to gain administrator privileges, aka the "Service Control Manager Named Pipe Impersonation" vulnerability.
Microsoft Windows 2000
1 EDB exploit
7.5
CVSSv2
CVE-2005-0564
Stack-based buffer overflow in Microsoft Word 2000 and Word 2002, and Microsoft Works Suites 2000 through 2004, might allow remote malicious users to execute arbitrary code via a .doc file with long font information.
Microsoft Word 2000
Microsoft Word 2002
7.5
CVSSv2
CVE-2001-0347
Information disclosure vulnerability in Microsoft Windows 2000 telnet service allows remote malicious users to determine the existence of user accounts such as Guest, or log in to the server without specifying the domain name, via a malformed userid.
Microsoft Windows 2000
2.1
CVSSv2
CVE-2001-0351
Microsoft Windows 2000 telnet service allows a local user to make a certain system call that allows the user to terminate a Telnet session and cause a denial of service.
Microsoft Windows 2000
7.6
CVSSv2
CVE-2000-0330
The networking software in Windows 95 and Windows 98 allows remote malicious users to execute commands via a long file name string, aka the "File Access URL" vulnerability.
Microsoft Windows 95
Microsoft Windows 98
2 EDB exploits
6.4
CVSSv2
CVE-2000-0024
IIS does not properly canonicalize URLs, potentially allowing remote malicious users to bypass access restrictions in third-party software via escape characters, aka the "Escape Character Parsing" vulnerability.
Microsoft Site Server 3.0
Microsoft Internet Information Server 4.0
Microsoft Site Server Commerce 3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »