Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-02-18 | CVE-2000-0162 | Unspecified vulnerability in Microsoft IE, Internet Explorer and Visual Studio The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability. | 5.1 |
| 2000-02-16 | CVE-2000-0156 | Unspecified vulnerability in Microsoft Internet Explorer Internet Explorer 4.x and 5.x allows remote web servers to access files on the client that are outside of its security domain, aka the "Image Source Redirect" vulnerability. | 5.1 |
| 2000-02-14 | CVE-2000-0197 | Unspecified vulnerability in Microsoft Windows NT 4.0 The Windows NT scheduler uses the drive mapping of the interactive user who is currently logged onto the system, which allows the local user to gain privileges by providing a Trojan horse batch file in place of the original batch file. | 4.6 |
| 2000-02-11 | CVE-2000-0143 | The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or FTP. | 4.6 |
| 2000-02-11 | CVE-2000-0142 | Unspecified vulnerability in Netopia Timbuktu PRO 2.0/5.2.1 The authentication protocol in Timbuktu Pro 2.0b650 allows remote attackers to cause a denial of service via connections to port 407 and 1417. | 5.0 |
| 2000-02-10 | CVE-2000-0140 | Unspecified vulnerability in True North Internet Anywhere Mail Server 3.1.3 Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service via a large number of connections. | 5.0 |
| 2000-02-08 | CVE-2000-0149 | Unspecified vulnerability in Zeus Technologies Zeus web Server Zeus web server allows remote attackers to view the source code for CGI programs via a null character (%00) at the end of a URL. | 5.0 |
| 2000-02-07 | CVE-2000-0146 | Unspecified vulnerability in Novell Groupwise 5.5 The Java Server in the Novell GroupWise Web Access Enhancement Pack allows remote attackers to cause a denial of service via a long URL to the servlet. | 5.0 |
| 2000-02-03 | CVE-2000-0122 | Unspecified vulnerability in Microsoft Frontpage 2000/98 Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program. | 5.0 |
| 2000-02-02 | CVE-2000-0114 | Unspecified vulnerability in Microsoft Internet Information Server 3.0/4.0 Frontpage Server Extensions allows remote attackers to determine the name of the anonymous account via an RPC POST request to shtml.dll in the /_vti_bin/ virtual directory. | 5.0 |