Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-11-14 | CVE-2000-0832 | Unspecified vulnerability in Oscar Nierstrasz Htgrep Htgrep CGI program allows remote attackers to read arbitrary files by specifying the full pathname in the hdr parameter. | 5.0 |
| 2000-11-14 | CVE-2000-0830 | Unspecified vulnerability in Microsoft Webtv annclist.exe in webTV for Windows allows remote attackers to cause a denial of service by via a large, malformed UDP packet to ports 22701 through 22705. | 5.0 |
| 2000-11-14 | CVE-2000-0825 | Unspecified vulnerability in Ipswitch Imail 6.00 Ipswitch Imail 6.0 allows remote attackers to cause a denial of service via a large number of connections in which a long Host: header is sent, which causes a thread to crash. | 5.0 |
| 2000-11-14 | CVE-2000-0813 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers ("FTP Bounce") via invalid FTP commands that are processed improperly by FireWall-1, aka "FTP Connection Enforcement Bypass." | 5.0 |
| 2000-11-14 | CVE-2000-0809 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 Buffer overflow in Getkey in the protocol checker in the inter-module communication mechanism in Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to cause a denial of service. | 5.0 |
| 2000-11-14 | CVE-2000-0806 | Unspecified vulnerability in Checkpoint Firewall-1 3.0/4.0/4.1 The inter-module authentication mechanism (fwa1) in Check Point VPN-1/FireWall-1 4.1 and earlier may allow remote attackers to conduct a denial of service, aka "Inter-module Communications Bypass." | 5.0 |
| 2000-11-01 | CVE-2000-1080 | Quake 1 (quake1) and ProQuake 1.01 and earlier allow remote attackers to cause a denial of service via a malformed (empty) UDP packet. | 5.0 |
| 2000-10-20 | CVE-2000-0791 | Unspecified vulnerability in Trustix Secure Linux 1.1 Trustix installs the httpsd program for Apache-SSL with world-writeable permissions, which allows local users to replace it with a Trojan horse. | 4.6 |
| 2000-10-20 | CVE-2000-0789 | Unspecified vulnerability in Bardon Data Systems Winu 4.X/5.0 WinU 5.x and earlier uses weak encryption to store its configuration password, which allows local users to decrypt the password and gain privileges. | 4.6 |
| 2000-10-20 | CVE-2000-0786 | Unspecified vulnerability in GNU Userv 1.0.0 GNU userv 1.0.0 and earlier does not properly perform file descriptor swapping, which can corrupt the USERV_GROUPS and USERV_GIDS environmental variables and allow local users to bypass some access restrictions. | 4.6 |