Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-12-19 | CVE-2000-0987 | Unspecified vulnerability in Oracle Internet Directory and Oracle8I Buffer overflow in oidldapd in Oracle 8.1.6 allow local users to gain privileges via a long "connect" command line parameter. | 4.6 |
| 2000-12-19 | CVE-2000-0986 | Unspecified vulnerability in Oracle Oracle8I 8.1.5 Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME environmental variable. | 4.6 |
| 2000-12-19 | CVE-2000-0984 | Unspecified vulnerability in Cisco IOS The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (crash and reload) via a URL containing a "?/" string. | 5.0 |
| 2000-12-19 | CVE-2000-0980 | Unspecified vulnerability in Microsoft products NMPI (Name Management Protocol on IPX) listener in Microsoft NWLink does not properly filter packets from a broadcast address, which allows remote attackers to cause a broadcast storm and flood the network. | 5.0 |
| 2000-12-19 | CVE-2000-0979 | Unspecified vulnerability in Microsoft products File and Print Sharing service in Windows 95, Windows 98, and Windows Me does not properly check the password for a file share, which allows remote attackers to bypass share access controls by sending a 1-byte password that matches the first character of the real password, aka the "Share Level Password" vulnerability. | 6.4 |
| 2000-12-19 | CVE-2000-0977 | Unspecified vulnerability in Oatmeal Studios Mail File 1.10 mailfile.cgi CGI program in MailFile 1.10 allows remote attackers to read arbitrary files by specifying the target file name in the "filename" parameter in a POST request, which is then sent by email to the address specified in the "email" parameter. | 5.0 |
| 2000-12-19 | CVE-2000-0976 | Unspecified vulnerability in Xfree86 Project Xlib 3.3X Buffer overflow in xlib in XFree 3.3.x possibly allows local users to execute arbitrary commands via a long DISPLAY environment variable or a -display command line parameter. | 4.6 |
| 2000-12-19 | CVE-2000-0975 | Unspecified vulnerability in Anaconda Partners Foundation Directory Directory traversal vulnerability in apexec.pl in Anaconda Foundation Directory allows remote attackers to read arbitrary files via a .. | 5.0 |
| 2000-12-19 | CVE-2000-0972 | Link Following vulnerability in HP Hp-Ux 11.00 HP-UX 11.00 crontab allows local users to read arbitrary files via the -e option by creating a symlink to the target file during the crontab session, quitting the session, and reading the error messages that crontab generates. | 5.5 |
| 2000-12-19 | CVE-2000-0966 | Unspecified vulnerability in HP Hp-Ux 10.00/11.00 Buffer overflows in lpspooler in the fileset PrinterMgmt.LP-SPOOL of HP-UX 11.0 and earlier allows local users to gain privileges. | 4.6 |