CVE-2000-0109

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0580%

EPSS Percentile3.79th

PublishedJan 31, 2000

Last ModifiedApr 16, 2026

Vulnerability Description

The mcsp Client Site Processor system (MultiCSP) in Standard and Poor's ComStock is installed with several accounts that have no passwords or easily guessable default passwords.

Affected Platforms (CPE)

📦

Comstock

Multicsp

= 4.2

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0109

Related Vulnerabilities

CVE-2000-017710.0

DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters.

CVE-2000-003210.0

Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.

CVE-2000-000210.0

Buffer overflow in ZBServer Pro 1.50 allows remote attackers to execute commands via a long GET request.

CVE-2000-005910.0

PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could al...