Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-01-09 | CVE-2000-1108 | Unspecified vulnerability in Midnight Commander Midnight Commander 4.5.42 cons.saver in Midnight Commander (mc) 4.5.42 and earlier does not properly verify if an output file descriptor is a TTY, which allows local users to corrupt files by creating a symbolic link to the target file, calling mc, and specifying that link as a TTY argument. | 4.6 |
| 2001-01-09 | CVE-2000-1107 | Unspecified vulnerability in Suse Linux in.identd ident server in SuSE Linux 6.x and 7.0 allows remote attackers to cause a denial of service via a long request, which causes the server to access a NULL pointer and crash. | 5.0 |
| 2001-01-09 | CVE-2000-1106 | Unspecified vulnerability in Trend Micro Interscan Viruswall Trend Micro InterScan VirusWall creates an "Intscan" share to the "InterScan" directory with permissions that grant Full Control permissions to the Everyone group, which allows attackers to gain privileges by modifying the VirusWall programs. | 4.6 |
| 2001-01-09 | CVE-2000-1105 | Unspecified vulnerability in Microsoft Indexing Service The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the existence of files on visiting Windows 2000 systems that have Indexing Services enabled. network microsoft | 4.3 |
| 2001-01-09 | CVE-2000-1102 | Denial of Service vulnerability in Ptlink IRC Services and Ptlink Ircd PTlink IRCD 3.5.3 and PTlink Services 1.8.1 allow remote attackers to cause a denial of service (server crash) via "mode +owgscfxeb" and "oper" commands. | 5.0 |
| 2001-01-09 | CVE-2000-1101 | Unspecified vulnerability in Texas Imperial Software Wftpd 2.41Rc14/3.0 Directory traversal vulnerability in Winsock FTPd (WFTPD) 3.00 and 2.41 with the "Restrict to home directory" option enabled allows local users to escape the home directory via a "/../" string, a variation of the .. | 5.0 |
| 2001-01-09 | CVE-2000-1099 | Unspecified vulnerability in SUN JDK Java Runtime Environment in Java Development Kit (JDK) 1.2.2_05 and earlier can allow an untrusted Java class to call into a disallowed class, which could allow an attacker to escape the Java sandbox and conduct unauthorized activities. | 5.1 |
| 2001-01-09 | CVE-2000-1098 | Unspecified vulnerability in Sonicwall Soho Firewall 4.0.0/5.0.0 The web server for the SonicWALL SOHO firewall allows remote attackers to cause a denial of service via an empty GET or POST request. | 5.0 |
| 2001-01-09 | CVE-2000-1097 | Unspecified vulnerability in Sonicwall Soho Firewall 4.0.0/5.0.0 The web server for the SonicWALL SOHO firewall allows remote attackers to cause a denial of service via a long username in the authentication page. | 5.0 |
| 2001-01-09 | CVE-2000-1092 | Directory Traversal vulnerability in Alex Heiphetz Group Ezshopper 2.0/3.0 loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" parameter. | 5.0 |