Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-07-17 | CVE-2000-0630 | Unspecified vulnerability in Microsoft products IIS 4.0 and 5.0 allows remote attackers to obtain fragments of source code by appending a +.htr to the URL, a variant of the "File Fragment Reading via .HTR" vulnerability. | 5.0 |
| 2000-07-14 | CVE-2000-0631 | Unspecified vulnerability in Microsoft products An administrative script from IIS 3.0, later included in IIS 4.0 and 5.0, allows remote attackers to cause a denial of service by accessing the script without a particular argument, aka the "Absent Directory Browser Argument" vulnerability. | 5.0 |
| 2000-07-12 | CVE-2000-0674 | Unspecified vulnerability in Virtual Vision FTP Browser 1.0 ftp.pl CGI program for Virtual Visions FTP browser allows remote attackers to read directories outside of the document root via a .. | 5.0 |
| 2000-07-12 | CVE-2000-0660 | Unspecified vulnerability in Alt-N Worldclient 2.1 The WDaemon web server for WorldClient 2.1 allows remote attackers to read arbitrary files via a .. | 5.0 |
| 2000-07-11 | CVE-2000-0654 | Unspecified vulnerability in Microsoft SQL Server 7.0 Microsoft Enterprise Manager allows local users to obtain database passwords via the Data Transformation Service (DTS) package Registered Servers Dialog dialog, aka a variant of the "DTS Password" vulnerability. | 4.6 |
| 2000-07-10 | CVE-2000-0661 | Unspecified vulnerability in Wircsrv IRC Server 5.0.7S WircSrv IRC Server 5.07s allows remote attackers to cause a denial of service via a long string to the server port. | 5.0 |
| 2000-07-07 | CVE-2000-0603 | Unspecified vulnerability in Microsoft SQL Server 7.0 Microsoft SQL Server 7.0 allows a local user to bypass permissions for stored procedures by referencing them via a temporary stored procedure, aka the "Stored Procedure Permissions" vulnerability. | 4.6 |
| 2000-07-07 | CVE-2000-0574 | FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), which allows remote attackers to cause a denial of service or execute arbitrary commands. | 5.0 |
| 2000-07-05 | CVE-2000-0595 | Unspecified vulnerability in Freebsd libedit searches for the .editrc file in the current directory instead of the user's home directory, which may allow local users to execute arbitrary commands by installing a modified .editrc in another directory. | 4.6 |
| 2000-07-05 | CVE-2000-0591 | Unspecified vulnerability in Novell Bordermanager 3.0/3.5 Novell BorderManager 3.0 and 3.5 allows remote attackers to bypass URL filtering by encoding characters in the requested URL. | 5.0 |