Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-03-12 | CVE-2000-0309 | Unspecified vulnerability in Openbsd 2.4 The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service. | 2.1 |
| 2001-03-12 | CVE-1999-0757 | Unspecified vulnerability in Allaire Coldfusion Server The ColdFusion CFCRYPT program for encrypting CFML templates has weak encryption, allowing attackers to decrypt the templates. | 2.1 |
| 2001-02-16 | CVE-2001-1439 | Unspecified vulnerability in HP Hp-Ux Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series 700 and Series 800 allows local users to cause a denial of service ("system availability") via text editors such as (1) e, (2) ex, (3) vi, (4) edit, (5) view, and (6) vedit. | 2.1 |
| 2001-02-16 | CVE-2001-0092 | Unspecified vulnerability in Microsoft Internet Explorer 5.0/5.01/5.5 A function in Internet Explorer 5.0 through 5.5 does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a new variant of the "Frame Domain Verification" vulnerability. | 2.6 |
| 2001-02-16 | CVE-2001-0091 | Unspecified vulnerability in Microsoft Internet Explorer The ActiveX control for invoking a scriptlet in Internet Explorer 5.0 through 5.5 renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka a variant of the "Scriptlet Rendering" vulnerability. | 2.6 |
| 2001-02-16 | CVE-2001-0089 | Unspecified vulnerability in Microsoft Internet Explorer Internet Explorer 5.0 through 5.5 allows remote attackers to read arbitrary files from the client via the INPUT TYPE element in an HTML form, aka the "File Upload via Form" vulnerability. | 2.6 |
| 2001-02-16 | CVE-2001-0052 | Unspecified vulnerability in IBM DB2 Universal Database 6.1/7.1 IBM DB2 Universal Database version 6.1 allows users to cause a denial of service via a malformed query. | 2.1 |
| 2001-02-16 | CVE-2001-0040 | Unspecified vulnerability in APC Apcupsd 3.7.2 APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to kill an arbitrary process by specifying the target process ID in the apcupsd.pid file. | 2.1 |
| 2001-02-16 | CVE-2001-0036 | Unspecified vulnerability in KTH Kerberos 4 KTH Kerberos IV allows local users to overwrite arbitrary files via a symlink attack on a ticket file. | 1.2 |
| 2001-02-16 | CVE-2000-0890 | Unspecified vulnerability in Freebsd 6.2 periodic in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows local users to overwrite arbitrary files via a symlink attack. | 1.2 |