Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-12-19 | CVE-2000-0965 | Unspecified vulnerability in HP Vvos 10.24/11.04 The NSAPI plugins for TGA and the Java Servlet proxy in HP-UX VVOS 10.24 and 11.04 allows an attacker to cause a denial of service (high CPU utilization). | 5.0 |
| 2000-12-19 | CVE-2000-0962 | Unspecified vulnerability in Openbsd 2.7 The IPSEC implementation in OpenBSD 2.7 does not properly handle empty AH/ESP packets, which allows remote attackers to cause a denial of service. | 5.0 |
| 2000-12-19 | CVE-2000-0960 | Unspecified vulnerability in Netscape Messaging Server 4.15 The POP3 server in Netscape Messaging Server 4.15p1 generates different error messages for incorrect user names versus incorrect passwords, which allows remote attackers to determine valid users on the system and harvest email addresses for spam abuse. | 5.0 |
| 2000-12-19 | CVE-2000-0958 | Unspecified vulnerability in SUN Hotjava Browser 3.0 HotJava Browser 3.0 allows remote attackers to access the DOM of a web page by opening a javascript: URL in a named window. | 5.0 |
| 2000-12-19 | CVE-2000-0956 | Unspecified vulnerability in Carnegie Mellon University Cyrus-Sasl 1.5.24 cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 does not properly verify the authorization for a local user, which could allow the users to bypass specified access restrictions. | 4.6 |
| 2000-12-19 | CVE-2000-0953 | Unspecified vulnerability in Evolvable Corporation Shambala Server 4.5 Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection. | 5.0 |
| 2000-12-19 | CVE-2000-0951 | Unspecified vulnerability in Microsoft Internet Information Services 5.0 A misconfiguration in IIS 5.0 with Index Server enabled and the Index property set allows remote attackers to list directories in the web root via a Web Distributed Authoring and Versioning (WebDAV) search. | 5.0 |
| 2000-12-19 | CVE-2000-0946 | Unspecified vulnerability in Compaq Easy Access Keyboard Software 1.3 Compaq Easy Access Keyboard software 1.3 does not properly disable access to custom buttons when the screen is locked, which could allow an attacker to gain privileges or execute programs without authorization. | 4.6 |
| 2000-12-19 | CVE-2000-0942 | Unspecified vulnerability in Microsoft Indexing Service The CiWebHitsFile component in Microsoft Indexing Services for Windows 2000 allows remote attackers to conduct a cross site scripting (CSS) attack via a CiRestriction parameter in a .htw request, aka the "Indexing Services Cross Site Scripting" vulnerability. | 5.1 |
| 2000-12-19 | CVE-2000-0940 | Unspecified vulnerability in Metertek Pagelog.Cgi 1.0 Directory traversal vulnerability in Metertek pagelog.cgi allows remote attackers to read arbitrary files via a .. | 6.4 |