Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-07-25 | CVE-2000-0663 | Unspecified vulnerability in Microsoft Windows 2000 and Windows NT The registry entry for the Windows Shell executable (Explorer.exe) in Windows NT and Windows 2000 uses a relative path name, which allows local users to execute arbitrary commands by inserting a Trojan Horse named Explorer.exe into the %Systemdrive% directory, aka the "Relative Shell Path" vulnerability. | 4.6 |
| 2000-07-25 | CVE-2000-0659 | Unspecified vulnerability in Analogx Proxy 4.4 Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long user ID in a SOCKS4 CONNECT request. | 5.0 |
| 2000-07-25 | CVE-2000-0658 | Unspecified vulnerability in Analogx Proxy 4.4 Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long USER command in the POP3 protocol. | 5.0 |
| 2000-07-25 | CVE-2000-0657 | Unspecified vulnerability in Analogx Proxy 4.4 Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long HELO command in the SMTP protocol. | 5.0 |
| 2000-07-25 | CVE-2000-0656 | Unspecified vulnerability in Analogx Proxy 4.4 Buffer overflow in AnalogX proxy server 4.04 and earlier allows remote attackers to cause a denial of service via a long USER command in the FTP protocol. | 5.0 |
| 2000-07-25 | CVE-2000-0655 | Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1. | 5.0 |
| 2000-07-24 | CVE-2000-0652 | Unspecified vulnerability in IBM Websphere Application Server 2.0/3.0/3.0.21 IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string. | 5.0 |
| 2000-07-21 | CVE-2000-0671 | Unspecified vulnerability in Roxen Webserver 2.0.X Roxen web server earlier than 2.0.69 allows allows remote attackers to bypass access restrictions, list directory contents, and read source code by inserting a null character (%00) to the URL. | 5.0 |
| 2000-07-21 | CVE-2000-0647 | Multiple vulnerability in WFTPD 2.4.1RC11 WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server. | 5.0 |
| 2000-07-21 | CVE-2000-0646 | Multiple vulnerability in WFTPD 2.4.1RC11 WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred. | 5.0 |