JVN/CVE Demo: Jvninfos

JVN List

Name	Title	Summary	Cveinfo	Cvssv2	Jvnurl	Published Date	Last Updated Date	Actions
JVNDB-2000-000037	Microsoft Windows の Protected Store における脆弱な暗号化バージョンを使用してしまう脆弱性	Microsoft Windows の CryptoAPI には、Protected Store において、マシンに実装されている最も強固な暗号バージョンで暗号化するように設計されているにも関わらず、実際は常に 40 ビット暗号バージョンで暗号化してしまう実装上の脆弱性が存在します。	CVE-2000-0487	3.6	http://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000037.html	2000-06-01	2007-04-01	View
JVNDB-2000-000038	HP-UX の man コマンドにおけるシンボリックリンク撃を受ける脆弱性	HP-UX の man コマンドには、/tmp ディレクトリに一時ファイルを作成する際に、容易に推測可能なプロセス ID を発行してしまうため、シンボリックリンク攻撃を受ける脆弱性があります。	CVE-2000-0468	4.6	http://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000038.html	2000-06-02	2007-04-01	View
JVNDB-2000-000039	Microsoft Windows の IPX Ping Packet におけるサービス運用妨害 (DoS) の脆弱性	Microsoft Windows には、IPX/SPX プロトコルの実装に不備があるため、パケット内の送信元ネットワークアドレスがブロードキャストアドレスに改ざんされている場合においても、IPX Ping パケットに応答してしまう脆弱性が存在します。	CVE-2000-0742	5	http://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000039.html	2000-06-02	2007-04-01	View
JVNDB-2000-000040	HP-UX の snmpd における不適切なファイルパーミッションの脆弱性	HP-UX に含まれる snmpd には、snmpd の設定ファイル (snmpd.conf) に対し全てのユーザ、グループに書き込み権限が与えられているため、シンボリックリンクを利用して権限の昇格に悪用されてしまう脆弱性が存在します。	CVE-2000-0515	10	http://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000040.html	2000-06-07	2007-04-01	View
JVNDB-2000-000041	OpenSSH の UseLogin における脆弱性	OpenSSH には、デフォルトで無効になっている UseLogin パラメータを有効に設定した場合、ユーザの権限を適切に変更しない脆弱性が存在します。	CVE-2000-0525	10	http://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000041.html	2000-06-09	2007-04-01	View

Page 22 of 13768, showing 5 records out of 68839 total, starting on record 106, ending on 110

<<first <prev 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 next> last>>

Actions

List NVD

History
+
Request History
4 previous requests available
====
Session
+
Session
- 0(null)
====
Request
+
Request

Cake Params
- plugin(null)
- controllerjvninfos
- actionindex
- named(array)
  page22
  sortname
  directionasc
  Jvninfoscveinfos
- pass(empty)
- paging(array)
  Jvninfo(array)
  page22
  current5
  count68839
  prevPage(true)
  nextPage(true)
  pageCount13768
  order(array)
  Jvninfo.nameasc
  limit5
  options(array)
  page22
  order(array)
  Jvninfo.nameasc
  sortname
  directionasc
  conditions(empty)
  paramTypenamed
Post data

No post data.

Query string

No querystring data.

Cookie

To view Cookies, add CookieComponent to Controller

Current Route
- keys(array)
  0controller
  1action
- options(array)
  defaultRoute(true)
- defaults(array)
  plugin(null)
- template/:controller/:action/*
====
Sql Log
+

Sql Logs

default
No query logs.

====

Timer

+

Memory

Peak Memory Use 3.99 MB

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.28 MB
View render complete	2.78 MB

Timers

Total Request Time: 100 (ms)

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	3.25
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	80.18
Event: Controller.beforeRender	4.71
» Processing toolbar data	4.62
Rendering View	6.67
» Event: View.beforeRender	0.02
» Rendering APP/View/Jvninfos/index.ctp	5.74
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.51
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.08
Event: View.afterLayout	0.00

====

Log
+

Logs

There were no log entries made this request

====
Variables
+
View Variables
- jvninfos(array)
  0(array)
  Jvninfo(array)
  id64257
  nameJVNDB-2000-000037
  titleMicrosoft Windows の Protected Store における脆弱な暗号化バージョンを使用してしまう脆弱性
  summaryMicrosoft Windows の CryptoAPI には、Protected Store において、マシンに実装されている最も強固な暗号バージョンで暗号化するように設計されているにも関わらず、実際は常に 40 ビット暗号バージョンで暗号化してしまう実装上の脆弱性が存在します。
  cveinfo_nameCVE-2000-0487
  cveinfo_id2065
  nvdinfo_nameCVE-2000-0487
  nvdinfo_id76730
  cvssv23.6
  cvssv3(null)
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000037.html
  published_date2000-06-01
  registered_date2007-04-01
  last_updated_date2007-04-01
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id2065
  nameCVE-2000-0487
  statusCandidate
  descriptionThe Protected Store in Windows 2000 does not properly select the strongest encryption when available, which causes it to use a default of 40-bit encryption instead of 56-bit DES encryption, aka the "Protected Store Key Length" vulnerability.
  phaseProposed (20000712)
  votesACCEPT(3) LeBlanc, Levy, Wall | MODIFY(1) Frech | NOOP(1) Ozancin
  commentsFrech> XF:ms-protected-store(4589)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id76730
  nameCVE-2000-0487
  descriptionThe Protected Store in Windows 2000 does not properly select the strongest encryption when available, which causes it to use a default of 40-bit encryption instead of 56-bit DES encryption, aka the "Protected Store Key Length" vulnerability.
  reject(null)
  CVSS_version2
  CVSS_score3.6
  severityLow
  CVSS_base_score3.6
  CVSS_impact_subscore4.9
  CVSS_exploit_subscore3.9
  nvd_xml_version(null)
  CVSS_vector(AV:L/AC:L/Au:N/C:P/I:P/A:N)
  sourcecve
  pub_date2017-01-05
  published2000-06-01
  modified_date2008-09-10
  typeCVE
  seq2000-0487
  deleted(null)
  created(null)
  modified(null)
  1(array)
  Jvninfo(array)
  id64258
  nameJVNDB-2000-000038
  titleHP-UX の man コマンドにおけるシンボリックリンク撃を受ける脆弱性
  summaryHP-UX の man コマンドには、/tmp ディレクトリに一時ファイルを作成する際に、容易に推測可能なプロセス ID を発行してしまうため、シンボリックリンク攻撃を受ける脆弱性があります。
  cveinfo_nameCVE-2000-0468
  cveinfo_id2046
  nvdinfo_nameCVE-2000-0468
  nvdinfo_id76711
  cvssv24.6
  cvssv3(null)
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000038.html
  published_date2000-06-02
  registered_date2007-04-01
  last_updated_date2007-04-01
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id2046
  nameCVE-2000-0468
  statusEntry
  descriptionman in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.
  phase(null)
  votes(null)
  comments(null)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id76711
  nameCVE-2000-0468
  descriptionman in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack.
  reject(null)
  CVSS_version2
  CVSS_score4.6
  severityMedium
  CVSS_base_score4.6
  CVSS_impact_subscore6.4
  CVSS_exploit_subscore3.9
  nvd_xml_version(null)
  CVSS_vector(AV:L/AC:L/Au:N/C:P/I:P/A:P)
  sourcecve
  pub_date2017-01-05
  published2000-06-02
  modified_date2008-09-10
  typeCVE
  seq2000-0468
  deleted(null)
  created(null)
  modified(null)
  2(array)
  Jvninfo(array)
  id64259
  nameJVNDB-2000-000039
  titleMicrosoft Windows の IPX Ping Packet におけるサービス運用妨害 (DoS) の脆弱性
  summaryMicrosoft Windows には、IPX/SPX プロトコルの実装に不備があるため、パケット内の送信元ネットワークアドレスがブロードキャストアドレスに改ざんされている場合においても、IPX Ping パケットに応答してしまう脆弱性が存在します。
  cveinfo_nameCVE-2000-0742
  cveinfo_id2318
  nvdinfo_nameCVE-2000-0742
  nvdinfo_id76983
  cvssv25
  cvssv3(null)
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000039.html
  published_date2000-06-02
  registered_date2007-04-01
  last_updated_date2007-04-01
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id2318
  nameCVE-2000-0742
  statusEntry
  descriptionThe IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability.
  phase(null)
  votes(null)
  comments(null)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id76983
  nameCVE-2000-0742
  descriptionThe IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability.
  reject(null)
  CVSS_version2
  CVSS_score5
  severityMedium
  CVSS_base_score5
  CVSS_impact_subscore2.9
  CVSS_exploit_subscore10
  nvd_xml_version(null)
  CVSS_vector(AV:N/AC:L/Au:N/C:N/I:N/A:P)
  sourcecve
  pub_date2017-01-05
  published2000-10-20
  modified_date2008-09-05
  typeCVE
  seq2000-0742
  deleted(null)
  created(null)
  modified(null)
  3(array)
  Jvninfo(array)
  id64260
  nameJVNDB-2000-000040
  titleHP-UX の snmpd における不適切なファイルパーミッションの脆弱性
  summaryHP-UX に含まれる snmpd には、snmpd の設定ファイル (snmpd.conf) に対し全てのユーザ、グループに書き込み権限が与えられているため、シンボリックリンクを利用して権限の昇格に悪用されてしまう脆弱性が存在します。
  cveinfo_nameCVE-2000-0515
  cveinfo_id2092
  nvdinfo_nameCVE-2000-0515
  nvdinfo_id76757
  cvssv210
  cvssv3(null)
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000040.html
  published_date2000-06-07
  registered_date2007-04-01
  last_updated_date2007-04-01
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id2092
  nameCVE-2000-0515
  statusEntry
  descriptionThe snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.
  phase(null)
  votes(null)
  comments(null)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id76757
  nameCVE-2000-0515
  descriptionThe snmpd.conf configuration file for the SNMP daemon (snmpd) in HP-UX 11.0 is world writable, which allows local users to modify SNMP configuration or gain privileges.
  reject(null)
  CVSS_version2
  CVSS_score10
  severityHigh
  CVSS_base_score10
  CVSS_impact_subscore10
  CVSS_exploit_subscore10
  nvd_xml_version(null)
  CVSS_vector(AV:N/AC:L/Au:N/C:C/I:C/A:C)
  sourcecve
  pub_date2017-01-05
  published2000-06-07
  modified_date2008-09-10
  typeCVE
  seq2000-0515
  deleted(null)
  created(null)
  modified(null)
  4(array)
  Jvninfo(array)
  id64261
  nameJVNDB-2000-000041
  titleOpenSSH の UseLogin における脆弱性
  summaryOpenSSH には、デフォルトで無効になっている UseLogin パラメータを有効に設定した場合、ユーザの権限を適切に変更しない脆弱性が存在します。
  cveinfo_nameCVE-2000-0525
  cveinfo_id2102
  nvdinfo_nameCVE-2000-0525
  nvdinfo_id76767
  cvssv210
  cvssv3(null)
  jvnurlhttp://jvndb.jvn.jp/ja/contents/2000/JVNDB-2000-000041.html
  published_date2000-06-09
  registered_date2007-04-01
  last_updated_date2007-04-01
  deleted(null)
  created0000-00-00 00:00:00
  modified(null)
  Cveinfo(array)
  id2102
  nameCVE-2000-0525
  statusEntry
  descriptionOpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.
  phase(null)
  votes(null)
  comments(null)
  deleted(null)
  created0000-00-00 00:00:00
  modified0000-00-00 00:00:00
  Nvdinfo(array)
  id76767
  nameCVE-2000-0525
  descriptionOpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.
  reject(null)
  CVSS_version2
  CVSS_score10
  severityHigh
  CVSS_base_score10
  CVSS_impact_subscore10
  CVSS_exploit_subscore10
  nvd_xml_version(null)
  CVSS_vector(AV:N/AC:L/Au:N/C:C/I:C/A:C)
  sourcecve
  pub_date2017-01-05
  published2000-06-08
  modified_date2008-09-10
  typeCVE
  seq2000-0525
  deleted(null)
  created(null)
  modified(null)
- $request->data(empty)
- $this->validationErrors(array)
  Jvninfo(empty)
  Cveinfo(empty)
  Nvdinfo(empty)
- Loaded Helpers(array)
  0Number
  1SimpleGraph
  2Paginator
  3DebugTimer
  4Toolbar
  5Html
  6Text
  7Form
  8Session
  9HtmlToolbar
====

+

App Constants

No application environment available.

CakePHP Constants

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

PHP Environment

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/jvninfos/index/page:22/sort:name/direction:asc/Jvninfos:cveinfos
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/jvninfos/index/page:22/sort:name/direction:asc/Jvninfos:cveinfos
Remote Port	40305
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	3.17.159.53
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	3.17.159.53
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	3.17.159.53
Unique Id	aA9vkhPodnmm87L6x9qE0QAAABE
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	3.17.159.53
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	3.17.159.53
Redirect Unique Id	aA9vkhPodnmm87L6x9qE0QAAABE
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	3.17.159.53
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	3.17.159.53
Redirect Redirect Unique Id	aA9vkhPodnmm87L6x9qE0QAAABE
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1745842066.3381
Request Time	1745842066

====

Include
+
Included Files

Include Paths
- 0/virtual/inogo77/public_html/jvn/lib
- 2/opt/remi/php56/root/usr/share/pear
- 3/opt/remi/php56/root/usr/share/php
- 4/usr/share/pear
- 5/usr/share/php
- 6-> /virtual/inogo77/public_html/jvn/lib/Cake/
Included Files
- core(array)
  Cache(array)
  0CORE/Cache/Cache.php
  1CORE/Cache/Engine/FileEngine.php
  2CORE/Cache/CacheEngine.php
  Component(array)
  0CORE/Controller/Component/SessionComponent.php
  1CORE/Controller/Component/PaginatorComponent.php
  Config(array)
  0CORE/Config/routes.php
  1CORE/Config/config.php
  Controller(array)
  0CORE/Controller/Controller.php
  1CORE/Controller/ComponentCollection.php
  2CORE/Controller/Component.php
  Datasource(array)
  0CORE/Model/Datasource/CakeSession.php
  1CORE/Model/Datasource/Database/Mysql.php
  2CORE/Model/Datasource/DboSource.php
  3CORE/Model/Datasource/DataSource.php
  Error(array)
  0CORE/Error/exceptions.php
  1CORE/Error/ErrorHandler.php
  I18n(array)
  0CORE/I18n/I18n.php
  1CORE/I18n/L10n.php
  Log(array)
  0CORE/Log/CakeLog.php
  1CORE/Log/LogEngineCollection.php
  2CORE/Log/Engine/FileLog.php
  3CORE/Log/Engine/BaseLog.php
  4CORE/Log/CakeLogInterface.php
  Model(array)
  0CORE/Model/Model.php
  1CORE/Model/BehaviorCollection.php
  2CORE/Model/ConnectionManager.php
  Network(array)
  0CORE/Network/CakeRequest.php
  1CORE/Network/CakeResponse.php
  Other(array)
  0CORE/bootstrap.php
  1CORE/basics.php
  2CORE/Core/App.php
  3CORE/Core/Configure.php
  4CORE/Core/CakePlugin.php
  5CORE/Event/CakeEventListener.php
  6CORE/Event/CakeEvent.php
  7CORE/Event/CakeEventManager.php
  8CORE/Core/Object.php
  Routing(array)
  0CORE/Routing/Dispatcher.php
  1CORE/Routing/Filter/AssetDispatcher.php
  2CORE/Routing/DispatcherFilter.php
  3CORE/Routing/Filter/CacheDispatcher.php
  4CORE/Routing/Router.php
  5CORE/Routing/Route/CakeRoute.php
  6CORE/Routing/Route/PluginShortRoute.php
  Utility(array)
  0CORE/Utility/Hash.php
  1CORE/Utility/Inflector.php
  2CORE/Utility/ObjectCollection.php
  3CORE/Utility/Debugger.php
  4CORE/Utility/String.php
  5CORE/Utility/ClassRegistry.php
  View(array)
  0CORE/View/HelperCollection.php
- app(array)
  Component(array)
  0APP/Controller/Component/CommonComponent.php
  Config(array)
  0APP/Config/core.php
  1APP/Config/bootstrap.php
  2APP/Config/routes.php
  3APP/Config/database.php
  Controller(array)
  0APP/Controller/JvninfosController.php
  1APP/Controller/AppController.php
  Model(array)
  0APP/Model/Jvninfo.php
  1APP/Model/AppModel.php
  2APP/Model/Cveinfo.php
  3APP/Model/Nvdinfo.php
  Other(array)
  0APP/webroot/index.php
- plugins(array)
  DebugKit(array)
  Component(array)
  0DebugKit/Controller/Component/ToolbarComponent.php
  Other(array)
  0DebugKit/Lib/DebugMemory.php
  1DebugKit/Lib/Panel/HistoryPanel.php
  2DebugKit/Lib/DebugPanel.php
  3DebugKit/Lib/Panel/SessionPanel.php
  4DebugKit/Lib/Panel/RequestPanel.php
  5DebugKit/Lib/Panel/SqlLogPanel.php
  6DebugKit/Lib/Panel/TimerPanel.php
  7DebugKit/Lib/Panel/LogPanel.php
  8DebugKit/Lib/Panel/VariablesPanel.php
  9DebugKit/Lib/Panel/EnvironmentPanel.php
  10DebugKit/Lib/Panel/IncludePanel.php
  11DebugKit/Lib/DebugTimer.php
  Log(array)
  0DebugKit/Lib/Log/Engine/DebugKitLog.php
====