Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-07-21 | CVE-2001-0517 | Unspecified vulnerability in Oracle Oracle8I 8.1.6/8.1.7 Oracle listener in Oracle 8i on Solaris allows remote attackers to cause a denial of service via a malformed connection packet with a maximum transport data size that is set to 0. | 5.0 |
| 2001-07-21 | CVE-2001-0516 | Unspecified vulnerability in Oracle Oracle8I and Oracle9I Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data. | 5.0 |
| 2001-07-21 | CVE-2001-0515 | Unspecified vulnerability in Oracle Database Server and Oracle8I Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value. | 5.0 |
| 2001-07-21 | CVE-2001-0513 | Unspecified vulnerability in Oracle Oracle9I Oracle listener process on Windows NT redirects connection requests to another port and creates a separate thread to process the request, which allows remote attackers to cause a denial of service by repeatedly connecting to the Oracle listener but not connecting to the redirected port. | 5.0 |
| 2001-07-21 | CVE-2001-0503 | Unspecified vulnerability in Microsoft Netmeeting 3.01 Microsoft NetMeeting 3.01 with Remote Desktop Sharing enabled allows remote attackers to cause a denial of service via a malformed string to the NetMeeting service port, aka a variant of the "NetMeeting Desktop Sharing" vulnerability. | 5.0 |
| 2001-07-21 | CVE-2001-0502 | Unspecified vulnerability in Microsoft Windows 2000 Running Windows 2000 LDAP Server over SSL, a function does not properly check the permissions of a user request when the directory principal is a domain user and the data attribute is the domain password, which allows local users to modify the login password of other users. | 4.6 |
| 2001-07-21 | CVE-2001-0501 | Unspecified vulnerability in Microsoft Word Microsoft Word 2002 and earlier allows attackers to automatically execute macros without warning the user by embedding the macros in a manner that escapes detection by the security scanner. | 4.6 |
| 2001-07-21 | CVE-2001-0498 | Unspecified vulnerability in Oracle Oracle8I Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier allows remote attackers to cause a denial of service via a malformed SQLNet connection request with a large offset in the header extension. | 5.0 |
| 2001-07-21 | CVE-2001-0352 | SNMP agents in 3Com AirConnect AP-4111 and Symbol 41X1 Access Point allow remote attackers to obtain the WEP encryption key by reading it from a MIB when the value should be write-only, via (1) dot11WEPDefaultKeyValue in the dot11WEPDefaultKeysTable of the IEEE 802.11b MIB, or (2) ap128bWepKeyValue in the ap128bWEPKeyTable in the Symbol MIB. | 5.0 |
| 2001-07-21 | CVE-2001-0350 | Local Security vulnerability in Windows 2000 Server Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the second of two variants of this vulnerability. | 4.6 |