Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-01-26 | CVE-2000-0098 | Unspecified vulnerability in Microsoft Index Server 2.0 Microsoft Index Server allows remote attackers to determine the real path for a web directory via a request to an Internet Data Query file that does not exist. | 5.0 |
| 2000-01-26 | CVE-2000-0097 | Unspecified vulnerability in Microsoft Index Server 2.0 The WebHits ISAPI filter in Microsoft Index Server allows remote attackers to read arbitrary files, aka the "Malformed Hit-Highlighting Argument" vulnerability. | 5.0 |
| 2000-01-24 | CVE-2000-0095 | Unspecified vulnerability in HP Hp-Ux 10.30/11.00 The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier. | 5.0 |
| 2000-01-21 | CVE-2000-0115 | Unspecified vulnerability in Microsoft Internet Information Server IIS allows local users to cause a denial of service via invalid regular expressions in a Visual Basic script in an ASP page. | 5.0 |
| 2000-01-19 | CVE-2000-0092 | The BSD make program allows local users to modify files via a symlink attack when the -j option is being used. | 6.2 |
| 2000-01-18 | CVE-2000-0086 | Unspecified vulnerability in Netopia Timbuktu PRO 2.0/3.0 Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffing. | 5.0 |
| 2000-01-17 | CVE-2000-0072 | Unspecified vulnerability in Computer Power Solutions Visual Casel 3.0/3.5 Visual Casel (Vcasel) does not properly prevent users from executing files, which allows local users to use a relative pathname to specify an alternate file which has an approved name and possibly gain privileges. | 4.6 |
| 2000-01-17 | CVE-2000-0064 | Unspecified vulnerability in Nortel Contivity 1.0 cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to cause a denial of service via a malformed URL that includes shell metacharacters. | 5.0 |
| 2000-01-17 | CVE-2000-0063 | Unspecified vulnerability in Nortel Contivity 1.0 cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to read arbitrary files by specifying the filename in a parameter to the script. | 5.0 |
| 2000-01-13 | CVE-2000-0075 | Unspecified vulnerability in Nosque Msgcore 1.9 Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating multiple HELO, MAIL FROM, RCPT TO, and DATA commands in the same session. | 5.0 |