Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-12-25 | CVE-2000-0006 | strace allows local users to read arbitrary files via memory mapped file names. | 2.6 |
| 1999-12-25 | CVE-1999-0477 | Unspecified vulnerability in Allaire Coldfusion Server The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not restrict access to the server properly. | 7.5 |
| 1999-12-25 | CVE-1999-0455 | Unspecified vulnerability in Allaire Coldfusion Server 4.0 The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly. | 7.5 |
| 1999-12-24 | CVE-1999-0892 | Unspecified vulnerability in Netscape Communicator 4.5 Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font. | 4.6 |
| 1999-12-23 | CVE-2000-0040 | Unspecified vulnerability in Glftpd 1.17.2 glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command. | 10.0 |
| 1999-12-23 | CVE-2000-0038 | Unspecified vulnerability in Glftpd glFtpD includes a default glftpd user account with a default password and a UID of 0. | 7.5 |
| 1999-12-23 | CVE-2000-0028 | Unspecified vulnerability in Microsoft IE and Internet Explorer Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function. | 2.6 |
| 1999-12-23 | CVE-2000-0001 | Unspecified vulnerability in Realnetworks Realserver 5.0 RealMedia server allows remote attackers to cause a denial of service via a long ramgen request. | 5.0 |
| 1999-12-22 | CVE-2000-0119 | The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection. | 7.2 |
| 1999-12-22 | CVE-2000-0034 | Unspecified vulnerability in Netscape Communicator 4.7 Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords." | 5.0 |