Security Vulnerabilities, CVEs, Published In 2000 (Information Leak) CVSS score >= 1
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname.
Max CVSS
5.0
EPSS Score
0.44%
Published
2000-11-14
Updated
2017-10-10
CVE-2000-0649
Public exploit
IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic authentication and has no realm defined.
Max CVSS
2.6
EPSS Score
0.36%
Published
2000-07-13
Updated
2020-11-23
SawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration commands.
Max CVSS
5.0
EPSS Score
1.49%
Published
2000-06-26
Updated
2013-07-30
Microsoft Java Virtual Machine allows remote attackers to read files via the getSystemResourceAsStream function.
Max CVSS
2.6
EPSS Score
0.43%
Published
2000-01-31
Updated
2008-09-10
4 vulnerabilities found