CVE-2000-0789

WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges.

Publication date: Fri, 20 Oct 2000 09:00:00 +0000

Cyber News related to CVE-2000-0789

CVE-2009-3297 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-0787, CVE-2010-0788, CVE-2010-0789. Reason: this candidate was intended for one issue in Samba, but it was used for multiple distinct issues, including one in FUSE and one in ...
55 years ago Tenable.com

CVE-2000-0789 - WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges. ...
16 years ago

CVE-2000-0744 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2000-0743. Reason: This candidate is a duplicate of CVE-2000-0743. Notes: All CVE users should reference CVE-2000-0743 instead of this candidate. All references and descriptions in ...
55 years ago Tenable.com

CVE-2008-5416 - Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine (MSDE 2000) SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine (WMSDE) on Windows Server 2003 SP1 ...
6 years ago

CVE-2008-0086 - Buffer overflow in the convert function in Microsoft SQL Server 2000 SP4, 2000 Desktop Engine (MSDE 2000) SP4, and 2000 Desktop Engine (WMSDE) allows remote authenticated users to execute arbitrary code via a crafted SQL expression. ...
6 years ago

CVE-2008-0107 - Integer underflow in SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 ...
5 years ago

CVE-2008-0085 - SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 does not initialize ...
5 years ago

CVE-2021-47460 - In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix data corruption after conversion from inline format Commit 6dbf7bb55598 ("fs: Don't invalidate page buffers in block_write_full_page()") uncovered a latent bug in ocfs2 ...
8 months ago Tenable.com

CVE-2024-49883 - In the Linux kernel, the following vulnerability has been resolved: ext4: aovid use-after-free in ext4_ext_insert_extent() As Ojaswin mentioned in Link, in ext4_ext_insert_extent(), if the path is reallocated in ext4_ext_create_new_leaf(), we'll use ...
3 months ago Tenable.com

CVE-2018-0790 - Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of privilege vulnerability due to the way web requests are handled, aka "Microsoft SharePoint Elevation of Privilege ...
5 years ago

CVE-2018-0789 - Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of privilege vulnerability due to the way web requests are handled, aka "Microsoft SharePoint Elevation of Privilege ...
5 years ago

CVE-2010-3879 - FUSE, possibly 2.8.5 and earlier, allows local users to create mtab entries with arbitrary pathnames, and consequently unmount any filesystem, via a symlink attack on the parent directory of the mountpoint of a FUSE filesystem, a different ...
4 years ago

CVE-2002-0789 - Buffer overflow in search.cgi in mnoGoSearch 3.1.19 and earlier allows remote attackers to execute arbitrary code via a long query (q) parameter. ...
16 years ago

CVE-1999-0789 - Buffer overflow in AIX ftpd in the libc library. ...
16 years ago

CVE-2011-0789 - Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 10.1.2.3 allows remote attackers to affect integrity via unknown vectors. ...
13 years ago

CVE-2007-0789 - SQL injection vulnerability in Mambo before 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors in cancel edit functions, possibly related to the id parameter. ...
13 years ago

CVE-2014-0789 - Multiple buffer overflows in the OPC Automation 2.0 Server Object ActiveX control in Schneider Electric OPC Factory Server (OFS) TLXCDSUOFS33 3.5 and earlier, TLXCDSTOFS33 3.5 and earlier, TLXCDLUOFS33 3.5 and earlier, TLXCDLTOFS33 3.5 and earlier, ...
10 years ago

CVE-2004-0789 - Multiple implementations of the DNS protocol, including (1) Poslib 1.0.2-1 and earlier as used by Posadis, (2) Axis Network products before firmware 3.13, and (3) Men & Mice Suite 2.2x before 2.2.3 and 3.5.x before 3.5.2, allow remote attackers ...
7 years ago

CVE-2005-0789 - Directory traversal vulnerability in LimeWire 3.9.6 through 4.6.0 allows remote attackers to read arbitrary files via a .. (dot dot) in a magnet request. ...
7 years ago

CVE-2006-0789 - Certain unspecified Kyocera printers have a default "admin" account with a blank password, which allows remote attackers to access an administrative menu via a telnet session. ...
7 years ago

CVE-2009-0789 - OpenSSL before 0.9.8k on WIN64 and certain other platforms does not properly handle a malformed ASN.1 structure, which allows remote attackers to cause a denial of service (invalid memory access and application crash) by placing this structure in the ...
7 years ago

CVE-2010-0789 - fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint. ...
7 years ago

CVE-2013-0789 - Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 20.0 and SeaMonkey before 2.17 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via ...
7 years ago

CVE-2016-0789 - CRLF injection vulnerability in the CLI command documentation in Jenkins before 1.650 and LTS before 1.642.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors. ...
7 years ago

CVE-2012-0789 - Memory leak in the timezone functionality in PHP before 5.3.9 allows remote attackers to cause a denial of service (memory consumption) by triggering many strtotime function calls, which are not properly handled by the php_date_parse_tzfile cache. ...
7 years ago

Latest Cyber News

CVE-2024-40890 - 15 hours ago
CVE-2024-40891 - 15 hours ago
CVE-2025-0847 - 16 hours ago
CVE-2025-0848 - 16 hours ago
CVE-2025-0849 - 16 hours ago
CVE-2025-0846 - 17 hours ago
CVE-2025-0844 - 18 hours ago
CVE-2025-21415 - 19 hours ago
CVE-2025-21396 - 19 hours ago
CVE-2025-0843 - 19 hours ago
CVE-2024-57665 - 19 hours ago
CVE-2024-57513 - 20 hours ago
CVE-2025-0842 - 20 hours ago
CVE-2025-0851 - 20 hours ago
CVE-2024-48761 - 20 hours ago
CVE-2024-51182 - 20 hours ago
CVE-2024-54851 - 20 hours ago
CVE-2024-54852 - 20 hours ago
CVE-2024-57395 - 20 hours ago
CVE-2024-57509 - 20 hours ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

CVE-2025-24099 - 1 day ago
CVE-2024-12749 - 1 day ago
CVE-2024-13696 - 1 day ago
CVE-2024-7695 - 1 day ago
CVE-2024-57965 - 1 day ago
CVE-2021-3978 - 1 day ago
CVE-2025-0617 - 1 day ago
CVE-2024-13561 - 1 day ago
CVE-2024-41140 - 1 day ago
CVE-2024-54461 - 1 day ago
CVE-2024-54462 - 1 day ago
CVE-2025-0353 - 1 day ago
CVE-2024-57436 - 1 day ago
CVE-2024-57437 - 1 day ago
CVE-2024-57438 - 1 day ago
CVE-2024-57439 - 1 day ago
CVE-2025-24374 - 1 day ago
CVE-2025-24792 - 1 day ago
CVE-2023-35907 - 1 day ago
CVE-2023-37398 - 1 day ago