Monthly Archive: February 2000

A router or firewall allows source routed packets from arbitrary hosts. Date published : 2000-02-04

Perl, sh, csh, or other shell interpreters are installed in the cgi-bin directory on a WWW site, which allows remote attackers to execute arbitrary commands. Date published : 2000-02-04

An account on a router, firewall, or other network device has a default, null, blank, or missing password. Date published : 2000-02-04

An account on a router, firewall, or other network device has a guessable password. Date published : 2000-02-04

A Windows NT domain user or administrator account has a default, null, blank, or missing password. Date published : 2000-02-04

A Windows NT domain user or administrator account has a guessable password. Date published : 2000-02-04

A Windows NT local user or administrator account has a default, null, blank, or missing password. Date published : 2000-02-04

A Windows NT local user or administrator account has a guessable password. Date published : 2000-02-04

A Unix account has a default, null, blank, or missing password. Date published : 2000-02-04

A Unix account has a guessable password. Date published : 2000-02-04

NETBIOS share information may be published through SNMP registry keys in NT. Date published : 2000-02-04

TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files. Date published : 2000-02-04

Anonymous FTP is enabled. Date published : 2000-02-04

A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares. Date published : 2000-02-04