Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-01-09 | CVE-2000-1179 | Unspecified vulnerability in Netopia 650-St Isdn Router 3.3.2Firmware Netopia ISDN Router 650-ST before 4.3.5 allows remote attackers to read system logs without authentication by directly connecting to the login screen and typing certain control characters. | 5.0 |
| 2001-01-09 | CVE-2000-1178 | Link Following vulnerability in Joseph Allen JOE 2.8 Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes. | 5.5 |
| 2001-01-09 | CVE-2000-1177 | CGI vulnerability in BB4 Big Brother bb-hist.sh, bb-histlog.sh, bb-hostsvc.sh, bb-rep.sh, bb-replog.sh, and bb-ack.sh in Big Brother (BB) before 1.5d3 allows remote attackers to determine the existence of files and user ID's by specifying the target file in the HISTFILE parameter. | 5.0 |
| 2001-01-09 | CVE-2000-1173 | Unspecified vulnerability in Microsys Cyberpatrol 4.04.003/4.04.005 Microsys CyberPatrol uses weak encryption (trivial encoding) for credit card numbers and uses no encryption for the remainder of the information during registration, which could allow attackers to sniff network traffic and obtain this sensitive information. | 5.0 |
| 2001-01-09 | CVE-2000-1171 | Unspecified vulnerability in Markus Triska Cgiforum 1.0 Directory traversal vulnerability in cgiforum.pl script in CGIForum 1.0 allows remote attackers to ready arbitrary files via a .. | 5.0 |
| 2001-01-09 | CVE-2000-1165 | Unspecified vulnerability in Balabit Syslog-Ng 1.4.7/1.4.8 Balabit syslog-ng allows remote attackers to cause a denial of service (application crash) via a malformed log message that does not have a closing > in the priority specifier. | 5.0 |
| 2001-01-09 | CVE-2000-1163 | Unspecified vulnerability in Aladdin Enterprises Ghostscript ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into a directory from which another user executes ghostscript. | 4.6 |
| 2001-01-09 | CVE-2000-1160 | Denial of Service vulnerability in Network Associates Sniffer Agent 3.0.10 NAI Sniffer Agent allows remote attackers to cause a denial of service (crash) by sending a large number of login requests. | 5.0 |
| 2001-01-09 | CVE-2000-1155 | Unspecified vulnerability in JOE Kloss Robinhood 1.1 RHDaemon in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request. | 5.0 |
| 2001-01-09 | CVE-2000-1154 | Unspecified vulnerability in JOE Kloss Robinhood 1.1 RHConsole in RobinHood 1.1 web server in BeOS r5 pro and earlier allows remote attackers to cause a denial of service via long HTTP request. | 5.0 |