Vuldb Updates

A vulnerability, which was classified as critical, has been found in Microsoft IIS 5.0. This affects an unknown part of the component ASP File Handler. This manipulation of the argument Translate: f causes improper privilege management. The identification of this vulnerability is CVE-2000-0778. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. Due to its background and reception, this vulnerability has an historic impact. It is advisable to upgrade the affected component.

A vulnerability has been found in Ipswitch IMail up to 6.4 and classified as problematic. This issue affects some unknown processing of the component Attachment Handler. Performing manipulation results in path traversal. This vulnerability is identified as CVE-2000-0780. The attack can be initiated remotely. Additionally, an exploit exists. The affected component should be upgraded.

A vulnerability classified as critical has been found in Mediahouse Software Statistics Server LiveStats 5.02x. Affected by this vulnerability is an unknown functionality of the component GET Request Handler. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2000-0776. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability was found in Oracle Listener 7.3.4/8.0.6/8.1.6 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Logging. The manipulation of the argument SET TRC_FILE/SET LOG_FILE results in improper privilege management. This vulnerability is cataloged as CVE-2000-0818. The attack may be launched remotely. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability labeled as critical has been found in Mobius DocumentDirect for the Internet 1.2. The affected element is an unknown function of the file ddicgi.exe of the component GET Request Handler. Such manipulation leads to memory corruption. This vulnerability is documented as CVE-2000-0826. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability, which was classified as critical, was found in Oscar Nierstrasz Htgrep 3.0. Affected by this issue is some unknown functionality. Such manipulation of the argument hdr leads to improper privilege management. This vulnerability is uniquely identified as CVE-2000-0832. The attack can be launched remotely. No exploit exists.

A vulnerability has been found in Jack De Winter WinSMTP 1.6f/2.x and classified as critical. This affects an unknown part of the component USER/HELO Command Handler. Performing manipulation results in memory corruption. This vulnerability was named CVE-2000-0833. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability was found in Deerfield Serv-U 2.5e. It has been rated as problematic. The affected element is an unknown function. This manipulation as part of NULL Byte causes denial of service. This vulnerability is tracked as CVE-2000-0837. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is advised.

A vulnerability labeled as critical has been found in Davide Libenzi XMail 0.58. This impacts an unknown function of the component USER Command Handler. Executing manipulation can lead to memory corruption. This vulnerability is registered as CVE-2000-0840. It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.

A vulnerability was found in Sambar Server 4.3/4.4. It has been classified as critical. This issue affects some unknown processing in the library search.dll of the component ISAPI Search Utility. The manipulation of the argument Query leads to improper privilege management. This vulnerability is referenced as CVE-2000-0835. Remote exploitation of the attack is possible. Furthermore, an exploit is available. Upgrading the affected component is recommended.

A vulnerability described as problematic has been identified in SCO UnixWare 7.0. Affected by this vulnerability is an unknown functionality of the file /search97cgi/vtopic of the component scohelphttp Web Server. The manipulation results in path traversal. This vulnerability is reported as CVE-2000-0842. The attack can be launched remotely. No exploit exists. Upgrading the affected component is recommended.

A vulnerability, which was classified as critical, was found in Ashley Montanaro Darxite 0.4. This issue affects some unknown processing. Executing manipulation of the argument Username/Password can lead to memory corruption. This vulnerability is handled as CVE-2000-0846. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability categorized as critical has been discovered in Samsung Galaxy Watch. This affects an unknown part. The manipulation results in insecure storage of sensitive information. This vulnerability is identified as CVE-2025-21045. The attack is only possible with local access. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability identified as critical has been detected in Samsung KnoxGuard. This vulnerability affects unknown code of the component Privileged API. This manipulation causes improper access controls. This vulnerability is tracked as CVE-2025-21047. It is feasible to perform the attack on the physical device. No exploit exists. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in Samsung Devices. Impacted is an unknown function of the component WindowManager. Such manipulation leads to improper access controls. This vulnerability is referenced as CVE-2025-21046. The attack can be executed directly on the physical device. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability was found in Samsung Devices. It has been rated as critical. Affected by this issue is some unknown functionality of the component Fingerprint Trustlet. The manipulation leads to out-of-bounds write. This vulnerability is referenced as CVE-2025-21044. The attack can only be performed from a local environment. No exploit is available. Upgrading the affected component is advised.

A vulnerability was found in Linux Kernel up to 6.12.38/6.15.6. It has been declared as critical. The impacted element is the function mt7925_thermal_init of the component wifi. The manipulation results in null pointer dereference. This vulnerability is reported as CVE-2025-38541. The attacker must have access to the local network to execute the attack. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.15.6. This vulnerability affects the function iio_info of the component HID Sensor Interface. Such manipulation leads to denial of service. This vulnerability is listed as CVE-2025-38540. The attack must be carried out from within the local network. There is no available exploit. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.146/6.6.99/6.12.39/6.15.7 and classified as critical. Affected by this vulnerability is the function lockdep_assert_held of the component tracing. Such manipulation leads to format string. This vulnerability is listed as CVE-2025-38539. The attack must be carried out from within the local network. There is no available exploit. It is suggested to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.6.99/6.12.39/6.15.7. The impacted element is the function rtnl_lock of the component Genphy Driver. Executing manipulation can lead to deadlock. The identification of this vulnerability is CVE-2025-38537. The attack needs to be done within the local network. There is no exploit available. Upgrading the affected component is advised.