Vuldb Updates

A vulnerability classified as critical was found in Google Go up to 1.23.9/1.24.3. The impacted element is the function os.OpenFile of the component File Handler. Such manipulation leads to symlink following. This vulnerability is listed as CVE-2025-0913. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.

A vulnerability classified as critical has been found in Microsoft Windows. Affected by this vulnerability is an unknown functionality of the component Font Library. Performing manipulation results in improper input validation. This vulnerability is reported as CVE-2019-1149. The attack is possible to be carried out remotely. Moreover, an exploit is present. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Microsoft Edge and ChakraCore and classified as critical. This affects an unknown function of the component Chakra Scripting Engine. This manipulation causes memory corruption. The identification of this vulnerability is CVE-2019-0567. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Edge and ChakraCore and classified as critical. This impacts an unknown function of the component Chakra Scripting Engine. Such manipulation leads to memory corruption. This vulnerability is referenced as CVE-2019-0568. It is possible to launch the attack remotely. Furthermore, an exploit is available. Applying a patch is advised to resolve this issue.

A vulnerability was found in Microsoft Edge. It has been rated as critical. This impacts an unknown function of the component Security Feature. This manipulation causes 7pk security features. This vulnerability is registered as CVE-2019-0612. Remote exploitation of the attack is possible. Furthermore, an exploit is available. To fix this issue, it is recommended to deploy a patch.

A vulnerability marked as critical has been reported in Microsoft Windows. This impacts an unknown function of the component Font Library. This manipulation causes improper input validation. This vulnerability is registered as CVE-2019-1144. Remote exploitation of the attack is possible. Furthermore, an exploit is available. Applying a patch is the recommended action to fix this issue.

A vulnerability, which was classified as critical, has been found in Microsoft Windows up to Server 2019. This affects an unknown part of the component DirectWrite. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2019-1123. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. To fix this issue, it is recommended to deploy a patch.

A vulnerability labeled as critical has been found in Linux-PAM up to 1.7.0. This vulnerability affects unknown code of the component pam_namespace. Executing manipulation can lead to path traversal. This vulnerability is registered as CVE-2025-6020. The attack needs to be launched locally. No exploit is available. The affected component should be upgraded.

A vulnerability classified as critical has been found in GWScripts News Publisher 1.0 6/1.05. Affected is an unknown function of the file news.cgi of the component Author Handler. Performing manipulation of the argument addAuthor results in improper privilege management. This vulnerability is identified as CVE-2000-0720. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability was found in Zope 1.10.3/2.1.1/2.1.7/2.2 Beta1 and classified as problematic. This issue affects the function getRoles of the component DHTML Editor. Such manipulation leads to improper privilege management. This vulnerability is documented as CVE-2000-0725. The attack needs to be performed locally. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in Stalkerlab Mailers 1.1.2. It has been classified as critical. Impacted is an unknown function of the file CGIMail.exe. Performing manipulation of the argument $Attach$ hidden results in improper privilege management. This vulnerability is reported as CVE-2000-0726. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability has been found in Network Associates WebShield SMTP 4.5 and classified as problematic. The affected element is an unknown function of the component Mail Address Handler. Performing manipulation of the argument MAIL FROM with the input <address>. results in denial of service. This vulnerability is cataloged as CVE-2000-0738. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The affected component should be upgraded.

A vulnerability described as critical has been identified in SGI IRIX up to 6.5.8. Affected by this issue is some unknown functionality of the component Telnet Daemon. Executing manipulation of the argument IAC-SB-TELOPT_ENVIRON as part of Environment Variable can lead to format string. The identification of this vulnerability is CVE-2000-0733. The attack may be launched remotely. Furthermore, there is an exploit available. Upgrading the affected component is recommended.

A vulnerability categorized as critical has been discovered in University of Minnesota Gopherd 2.3/2.3.1. Affected by this vulnerability is an unknown functionality of the component GDESkey Request Handler. Such manipulation leads to memory corruption. This vulnerability is traded as CVE-2000-0743. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability labeled as problematic has been found in Apache Tomcat 3.1. Impacted is an unknown function of the component URL Handler. The manipulation results in information disclosure (Path). This vulnerability is known as CVE-2000-0759. It is possible to launch the attack remotely. Furthermore, an exploit is available. The affected component should be upgraded.

A vulnerability was found in OReilly Website Pro 2.3.7. It has been declared as critical. This issue affects some unknown processing of the file uploader.exe. Executing manipulation can lead to improper privilege management. This vulnerability is registered as CVE-2000-0769. It is possible to launch the attack remotely. No exploit is available.

A vulnerability was found in Microsoft IIS 4.0/5.0. It has been rated as critical. Impacted is an unknown function of the component File Permission Handler. The manipulation leads to improper privilege management. This vulnerability is documented as CVE-2000-0770. The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability labeled as critical has been found in Francisco Burzi PHP-Nuke 1.0/2.5. This affects an unknown part of the file admin.php3. Executing manipulation of the argument aid/pwd can lead to improper authentication. This vulnerability is handled as CVE-2000-0745. The attack can be executed remotely. Additionally, an exploit exists. The affected component should be upgraded.

A vulnerability marked as problematic has been reported in Apache Tomcat 3.0/3.1. The affected element is an unknown function of the component SNP Extension Handler. This manipulation causes information disclosure (Path). This vulnerability is handled as CVE-2000-0760. The attack can be initiated remotely. Additionally, an exploit exists. It is suggested to upgrade the affected component.

A vulnerability labeled as problematic has been found in Bajie Java HTTP Server up to 0.93. This affects an unknown function of the component URL Handler. Such manipulation with the input .... leads to path traversal. This vulnerability is traded as CVE-2000-0773. The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.