Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2001-01-18 | CVE-2001-1469 | Unspecified vulnerability in SSH The RC4 stream cipher as used by SSH1 allows remote attackers to modify messages without detection by XORing the original message's cyclic redundancy check (CRC) with the CRC of a mask consisting of all the bits of the original message that were modified. | 5.0 |
2001-01-18 | CVE-2001-1436 | Unspecified vulnerability in Dallas Semiconductor Ibutton Ds1991 Dallas Semiconductor iButton DS1991 returns predictable values when given an incorrect password, which makes it easier for users with physical access to conduct dictionary attacks against the device password. | 4.6 |
2001-01-18 | CVE-2001-1416 | Unspecified vulnerability in AOL Instant Messenger 4.4A Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messenger (AIM) 4.4 allow remote attackers to execute arbitrary web script or HTML via an image in the (1) DATA, (2) STYLE, or (3) BINARY tags. | 5.1 |
2001-01-12 | CVE-2001-1385 | The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts. | 5.0 |
2001-01-09 | CVE-2000-1188 | Unspecified vulnerability in I-Soft Quikstore 2.0/2.9.10/2.9.5 Directory traversal vulnerability in Quikstore shopping cart program allows remote attackers to read arbitrary files via a .. | 5.0 |
2001-01-09 | CVE-2000-1185 | Denial of Service vulnerability in Itserv Incorporated Ridewaypn 6.22 The telnet proxy in RideWay PN proxy server allows remote attackers to cause a denial of service via a flood of connections that contain malformed requests. | 5.0 |
2001-01-09 | CVE-2000-1184 | Unspecified vulnerability in Freebsd telnetd in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service by specifying an arbitrary large file in the TERMCAP environmental variable, which consumes resources as the server processes the file. | 5.0 |
2001-01-09 | CVE-2000-1182 | Unspecified vulnerability in Watchguard Firebox II 4.1/4.5 WatchGuard Firebox II allows remote attackers to cause a denial of service by flooding the Firebox with a large number of FTP or SMTP requests, which disables proxy handling. | 5.0 |
2001-01-09 | CVE-2000-1181 | Unspecified vulnerability in Realnetworks Realserver 5.0/6.0/7.0 Real Networks RealServer 7 and earlier allows remote attackers to obtain portions of RealServer's memory contents, possibly including sensitive information, by accessing the /admin/includes/ URL. | 5.0 |
2001-01-09 | CVE-2000-1180 | Unspecified vulnerability in Oracle Oracle8I 8.1.5 Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument. | 4.6 |