CVE-2000-0948

GnoRPM before 0.95 allows local users to modify arbitrary files via a symlink attack.

Publication date: Tue, 19 Dec 2000 11:00:00 +0000

Cyber News related to CVE-2000-0948

CVE-2000-0948 - GnoRPM before 0.95 allows local users to modify arbitrary files via a symlink attack. ...
7 years ago

CVE-2000-0744 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2000-0743. Reason: This candidate is a duplicate of CVE-2000-0743. Notes: All CVE users should reference CVE-2000-0743 instead of this candidate. All references and descriptions in ...
55 years ago Tenable.com

CVE-2008-5416 - Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine (MSDE 2000) SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine (WMSDE) on Windows Server 2003 SP1 ...
6 years ago

CVE-2008-0086 - Buffer overflow in the convert function in Microsoft SQL Server 2000 SP4, 2000 Desktop Engine (MSDE 2000) SP4, and 2000 Desktop Engine (WMSDE) allows remote authenticated users to execute arbitrary code via a crafted SQL expression. ...
6 years ago

CVE-2008-0107 - Integer underflow in SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 ...
5 years ago

CVE-2008-0085 - SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 does not initialize ...
5 years ago

CVE-2021-47460 - In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix data corruption after conversion from inline format Commit 6dbf7bb55598 ("fs: Don't invalidate page buffers in block_write_full_page()") uncovered a latent bug in ocfs2 ...
8 months ago Tenable.com

CVE-2024-49883 - In the Linux kernel, the following vulnerability has been resolved: ext4: aovid use-after-free in ext4_ext_insert_extent() As Ojaswin mentioned in Link, in ext4_ext_insert_extent(), if the path is reallocated in ext4_ext_create_new_leaf(), we'll use ...
3 months ago Tenable.com

CVE-2020-0949 - A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0948, CVE-2020-0950. ...
3 years ago

CVE-2020-0950 - A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0948, CVE-2020-0949. ...
3 years ago

CVE-2020-0948 - A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0949, CVE-2020-0950. ...
3 years ago

CVE-2003-0948 - Buffer overflow in iwconfig allows local users to execute arbitrary code via a long HOME environment variable. ...
16 years ago

CVE-2002-0948 - Scripts For Educators MakeBook 2.2 CGI program allows remote attackers to execute script as other visitors, or execute server-side includes (SSI) as the web server, via the (1) Name or (2) Email parameters, which are not properly filtered. ...
16 years ago

CVE-2013-0948 - WebKit, as used in Apple iOS before 6.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in ...
11 years ago

CVE-2016-0948 - Cross-site request forgery (CSRF) vulnerability in Adobe Connect before 9.5.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. ...
8 years ago

CVE-2005-0948 - SQL injection vulnerability in ad_click.asp for PortalApp allows remote attackers to execute arbitrary SQL commands via the banner_id parameter. ...
7 years ago

CVE-2010-0948 - SQL injection vulnerability in profil.php in Bigforum 4.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter. ...
7 years ago

CVE-2012-0948 - DistUpgrade/DistUpgradeMain.py in Update Manager, as used by Ubuntu 12.04 LTS, 11.10, and 11.04, uses weak permissions for (1) apt-clone_system_state.tar.gz and (2) system_state.tar.gz, which allows local users to obtain repository credentials. ...
7 years ago

CVE-2014-0948 - Unspecified vulnerability in IBM Rational Software Architect Design Manager and Rational Rhapsody Design Manager 3.x and 4.x before 4.0.7 allows remote authenticated users to execute arbitrary code via a crafted ZIP archive. ...
7 years ago

CVE-2001-0948 - Cross-site scripting (CSS) vulnerability in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to execute arbitrary code or display false information by including HTML or script in the certificate's ...
7 years ago

CVE-2007-0948 - Heap-based buffer overflow in Microsoft Virtual PC 2004 and PC for Mac 7.1 and 7, and Virtual Server 2005 and 2005 R2, allows local guest OS administrators to execute arbitrary code on the host OS via unspecified vectors related to "interaction ...
6 years ago

CVE-2006-0948 - AOL 9.0 Security Edition revision 4184.2340, and probably other versions, uses insecure permissions (Everyone/Full Control) for the "America Online 9.0" directory, which allows local users to gain privileges by replacing critical files. AOL ...
6 years ago

CVE-1999-0948 - Buffer overflow in uum program for Canna input system allows local users to gain root privileges. ...
6 years ago

CVE-2008-0948 - Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows ...
5 years ago

CVE-2019-0948 - An information disclosure vulnerability exists in the Windows Event Viewer (eventvwr.msc) when it improperly parses XML input containing a reference to an external entity, aka 'Windows Event Viewer Information Disclosure Vulnerability'. ...
4 years ago

Latest Cyber News

CVE-2025-0961 - 1 day ago
CVE-2025-0950 - 1 day ago
CVE-2025-0949 - 1 day ago
CVE-2025-0948 - 1 day ago
CVE-2025-0947 - 1 day ago
CVE-2025-0946 - 1 day ago
CVE-2025-0945 - 1 day ago
CVE-2025-0944 - 1 day ago
CVE-2024-13775 - 1 day ago
CVE-2024-13612 - 1 day ago
CVE-2025-0943 - 1 day ago
CVE-2024-13429 - 1 day ago
CVE-2024-13372 - 1 day ago
CVE-2024-13425 - 1 day ago
CVE-2024-13428 - 1 day ago
CVE-2024-13371 - 1 day ago
CVE-2024-12825 - 1 day ago
CVE-2025-0939 - 1 day ago
CVE-2025-23091 - 1 day ago
CVE-2024-13341 - 1 day ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

CVE-2024-11780 - 1 day ago
CVE-2024-12171 - 1 day ago
CVE-2024-12184 - 1 day ago
CVE-2024-12620 - 1 day ago
CVE-2024-13343 - 1 day ago
CVE-2024-13547 - 1 day ago
CVE-2024-13651 - 1 day ago
CVE-2024-51534 - 1 day ago
CVE-2024-53296 - 1 day ago
CVE-2024-53295 - 1 day ago
CVE-2024-12041 - 1 day ago
CVE-2024-12768 - 1 day ago
CVE-2024-13096 - 1 day ago
CVE-2024-13097 - 1 day ago
CVE-2024-13098 - 1 day ago
CVE-2024-13099 - 1 day ago
CVE-2025-0365 - 1 day ago
CVE-2025-0366 - 1 day ago
CVE-2024-11829 - 1 day ago
CVE-2024-13341 - 1 day ago