Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-05-02 | CVE-2000-0138 | A system has a distributed denial of service (DDOS) attack master, agent, or zombie installed, such as (1) Trinoo, (2) Tribe Flood Network (TFN), (3) Tribe Flood Network 2000 (TFN2K), (4) stacheldraht, (5) mstream, or (6) shaft. network low complexity | 5.0 |
| 2000-05-01 | CVE-2000-0440 | NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option. | 5.0 |
| 2000-05-01 | CVE-2000-0341 | Unspecified vulnerability in Atrium Software Cassandra Nntp Server 1.10 ATRIUM Cassandra NNTP Server 1.10 allows remote attackers to cause a denial of service via a long login name. | 5.0 |
| 2000-04-25 | CVE-2000-0326 | Weak Password Encryption vulnerability in Meeting Maker Meeting Maker uses weak encryption (a polyalphabetic substitution cipher) for passwords, which allows remote attackers to sniff and decrypt passwords for Meeting Maker accounts. | 5.0 |
| 2000-04-24 | CVE-2000-0321 | Buffer Overflow vulnerability in Icradius 0.14 Buffer overflow in IC Radius package allows a remote attacker to cause a denial of service via a long user name. | 5.0 |
| 2000-04-23 | CVE-2000-0338 | Improper Locking vulnerability in Concurrent Versions Software Project Concurrent Versions Software Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which allows local users to cause a denial of service by creating the lock directory before it is created for use by a legitimate CVS user. | 5.5 |
| 2000-04-22 | CVE-2000-0459 | Unspecified vulnerability in IMP IMP does not remove files properly if the MSWordView application quits, which allows local users to cause a denial of service by filling up the disk space by requesting a large number of documents and prematurely stopping the request. | 5.0 |
| 2000-04-20 | CVE-2000-0331 | Unspecified vulnerability in Microsoft Terminal Server, Windows 2000 and Windows NT Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability. | 5.0 |
| 2000-04-20 | CVE-2000-0268 | Unspecified vulnerability in Cisco products Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot. | 5.0 |
| 2000-04-20 | CVE-2000-0267 | Unspecified vulnerability in Cisco Catos 5.4(1) Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password. | 4.6 |