Cobalt Networks -- Security Advisory -- 03.31.2000 - RaQ2 and RaQ3 allow remote users to view the contents of an .htaccess file contained within a public website.
c967460eee20155823f669fd7909e40012a863514db5e64df0c4eec2616cf34d
Cobalt Security Advisory 01.31.2000 - For RaQ 1 and RaQ 2, through improper permissions checking in /.cobalt/siteUserMod/siteUserMod.cgi, any Site Administrator can change the password of the admin (root) account on the system. For RaQ 3, Through improper permissions checking in /.cobalt/siteUserMod/siteUserMod.cgi, any Site Administrator can change the password of any regular user or Site Administrator on the system, but not admin(root). Bug and exploit by Chuck Pitre
b49a8243c0c2fd68ace840f156f0cecd581a55d7c322c6c72f4d02c5e21d6629