Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2001-02-16 | CVE-2001-0038 | Unspecified vulnerability in Metaproducts Offline Explorer Offline Explorer 1.4 before Service Release 2 allows remote attackers to read arbitrary files by specifying the drive letter (e.g. | 5.0 |
2001-02-16 | CVE-2001-0037 | Directory Traversal vulnerability in Keware Technologies Homeseer 1.4 Directory traversal vulnerability in HomeSeer before 1.4.29 allows remote attackers to read arbitrary files via a URL containing .. | 5.0 |
2001-02-16 | CVE-2001-0031 | Unspecified vulnerability in Broadvision One-To-One Enterprise Server 1.0 BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist. | 5.0 |
2001-02-16 | CVE-2000-0893 | Unspecified vulnerability in SGI Irix The presence of the Distributed GL Daemon (dgld) service on port 5232 on SGI IRIX systems allows remote attackers to identify the target host as an SGI system. | 5.0 |
2001-02-12 | CVE-2001-0106 | Unspecified vulnerability in HP Hp-Ux Vulnerability in inetd server in HP-UX 11.04 and earlier allows attackers to cause a denial of service when the "swait" state is used by a server. | 5.0 |
2001-02-12 | CVE-2001-0103 | Cryptographic Issues vulnerability in Coffeecup Software Coffeecup Direct FTP and Coffeecup Free FTP CoffeeCup Direct and Free FTP clients uses weak encryption to store passwords in the FTPServers.ini file, which could allow attackers to easily decrypt the passwords. | 4.6 |
2001-02-12 | CVE-2001-0097 | Denial of Service vulnerability in Infinite Interchange 3.61 The Web interface for Infinite Interchange 3.6.1 allows remote attackers to cause a denial of service (application crash) via a large POST request. | 5.0 |
2001-02-12 | CVE-2001-0096 | Unspecified vulnerability in Microsoft products FrontPage Server Extensions (FPSE) in IIS 4.0 and 5.0 allows remote attackers to cause a denial of service via a malformed form, aka the "Malformed Web Form Submission" vulnerability. | 5.0 |
2001-02-12 | CVE-2001-0086 | Unspecified vulnerability in CGI Script Center Subscribe ME Lite 1.0/2.0 CGI Script Center Subscribe Me LITE 2.0 and earlier allows remote attackers to delete arbitrary mailing list users without authentication by directly calling subscribe.pl with the target address as a parameter. | 5.0 |
2001-02-12 | CVE-2001-0081 | Unspecified vulnerability in Ncipher swinit in nCipher does not properly disable the Operator Card Set recovery feature even when explicitly disabled by the user, which could allow attackers to gain access to application keys. | 5.0 |