Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-05-03 | CVE-2000-0303 | Unspecified vulnerability in ID Software Quake 3 Arena 1.16N Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (..) attack. | 6.4 |
| 2000-05-02 | CVE-2000-0433 | Unspecified vulnerability in Suse Linux The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accounts by creating standard user startup scripts such as profiles. | 4.6 |
| 2000-05-02 | CVE-2000-0385 | Security Bypass vulnerability in Filemaker 5.0 FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilities. | 5.0 |
| 2000-05-02 | CVE-2000-0347 | Unspecified vulnerability in Microsoft Windows 95 and Windows 98 Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS session request packet with a NULL source name. | 5.0 |
| 2000-05-02 | CVE-2000-0138 | A system has a distributed denial of service (DDOS) attack master, agent, or zombie installed, such as (1) Trinoo, (2) Tribe Flood Network (TFN), (3) Tribe Flood Network 2000 (TFN2K), (4) stacheldraht, (5) mstream, or (6) shaft. network low complexity | 5.0 |
| 2000-05-01 | CVE-2000-0440 | NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option. | 5.0 |
| 2000-05-01 | CVE-2000-0341 | Unspecified vulnerability in Atrium Software Cassandra Nntp Server 1.10 ATRIUM Cassandra NNTP Server 1.10 allows remote attackers to cause a denial of service via a long login name. | 5.0 |
| 2000-04-25 | CVE-2000-0326 | Weak Password Encryption vulnerability in Meeting Maker Meeting Maker uses weak encryption (a polyalphabetic substitution cipher) for passwords, which allows remote attackers to sniff and decrypt passwords for Meeting Maker accounts. | 5.0 |
| 2000-04-24 | CVE-2000-0321 | Buffer Overflow vulnerability in Icradius 0.14 Buffer overflow in IC Radius package allows a remote attacker to cause a denial of service via a long user name. | 5.0 |
| 2000-04-23 | CVE-2000-0338 | Improper Locking vulnerability in Concurrent Versions Software Project Concurrent Versions Software Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which allows local users to cause a denial of service by creating the lock directory before it is created for use by a legitimate CVS user. | 5.5 |