CVE-2001-0xxx

There are 966 CVE in this subgroup.
Last updated: 
← Back to 2001
ID Summary Flags Max Score
CVE-2001-0001 cookiedecode function in PHP-Nuke 4.4 allows users to bypass authentication and gain access to other...
E S
CVE-2001-0002 Internet Explorer 5.5 and earlier allows remote attackers to obtain the physical location of cached ...
CVE-2001-0003 Web Extender Client (WEC) in Microsoft Office 2000, Windows 2000, and Windows Me does not properly p...
S
CVE-2001-0004 IIS 5.0 and 4.0 allows remote attackers to read the source code for executable web server programs b...
CVE-2001-0005 Buffer overflow in the parsing mechanism of the file loader in Microsoft PowerPoint 2000 allows atta...
CVE-2001-0006 The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control per...
S
CVE-2001-0007 Buffer overflow in NetScreen Firewall WebUI allows remote attackers to cause a denial of service via...
E S
CVE-2001-0008 Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files u...
E S
CVE-2001-0009 Directory traversal vulnerability in Lotus Domino 5.0.5 web server allows remote attackers to read a...
E S
CVE-2001-0010 Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to g...
S
CVE-2001-0011 Buffer overflow in nslookupComplain function in BIND 4 allows remote attackers to gain root privileg...
S
CVE-2001-0012 BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variabl...
S
CVE-2001-0013 Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain r...
S
CVE-2001-0014 Remote Data Protocol (RDP) in Windows 2000 Terminal Service does not properly handle certain malform...
S
CVE-2001-0015 Network Dynamic Data Exchange (DDE) in Windows 2000 allows local users to gain SYSTEM privileges via...
E S
CVE-2001-0016 NTLM Security Support Provider (NTLMSSP) service does not properly check the function number in an L...
CVE-2001-0017 Memory leak in PPTP server in Windows NT 4.0 allows remote attackers to cause a denial of service vi...
CVE-2001-0018 Windows 2000 domain controller in Windows 2000 Server, Advanced Server, or Datacenter Server allows ...
CVE-2001-0019 Arrowpoint (aka Cisco Content Services, or CSS) allows local users to cause a denial of service via ...
CVE-2001-0020 Directory traversal vulnerability in Arrowpoint (aka Cisco Content Services, or CSS) allows local un...
CVE-2001-0021 MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell m...
E S
CVE-2001-0022 simplestguest.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands v...
E
CVE-2001-0023 everythingform.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands ...
E
CVE-2001-0024 simplestmail.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands vi...
E
CVE-2001-0025 ad.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell me...
E
CVE-2001-0026 rp-pppoe PPPoE client allows remote attackers to cause a denial of service via the Clamp MSS option ...
E S
CVE-2001-0027 mod_sqlpw module in ProFTPD does not reset a cached password when a user uses the "user" command to ...
E
CVE-2001-0028 Buffer overflow in the HTML parsing code in oops WWW proxy server 1.5.2 and earlier allows remote at...
E S
CVE-2001-0029 Buffer overflow in oops WWW proxy server 1.4.6 (and possibly other versions) allows remote attackers...
E S
CVE-2001-0030 FoolProof 3.9 allows local users to bypass program execution restrictions by downloading the restric...
CVE-2001-0031 BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server f...
E
CVE-2001-0032 Format string vulnerability in ssldump possibly allows remote attackers to cause a denial of service...
E
CVE-2001-0033 KTH Kerberos IV allows local users to change the configuration of a Kerberos server running at an el...
E S
CVE-2001-0034 KTH Kerberos IV allows local users to specify an alternate proxy using the krb4_proxy variable, whic...
E S
CVE-2001-0035 Buffer overflow in the kdc_reply_cipher function in KTH Kerberos IV allows remote attackers to cause...
E S
CVE-2001-0036 KTH Kerberos IV allows local users to overwrite arbitrary files via a symlink attack on a ticket fil...
E S
CVE-2001-0037 Directory traversal vulnerability in HomeSeer before 1.4.29 allows remote attackers to read arbitrar...
E S
CVE-2001-0038 Offline Explorer 1.4 before Service Release 2 allows remote attackers to read arbitrary files by spe...
E S
CVE-2001-0039 IPSwitch IMail 6.0.5 allows remote attackers to cause a denial of service using the SMTP AUTH comman...
S
CVE-2001-0040 APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to ...
E S
CVE-2001-0041 Memory leak in Cisco Catalyst 4000, 5000, and 6000 series switches allows remote attackers to cause ...
S
CVE-2001-0042 PHP 3.x (PHP3) on Apache 1.3.6 allows remote attackers to read arbitrary files via a modified .. (do...
E
CVE-2001-0043 phpGroupWare before 0.9.7 allows remote attackers to execute arbitrary PHP commands by specifying a ...
E S
CVE-2001-0044 Multiple buffer overflows in Lexmark MarkVision printer driver programs allows local users to gain p...
S
CVE-2001-0045 The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execu...
E S
CVE-2001-0046 The default permissions for the SNMP Parameters registry key in Windows NT 4.0 allows remote attacke...
S
CVE-2001-0047 The default permissions for the MTS Package Administration registry key in Windows NT 4.0 allows loc...
CVE-2001-0048 The "Configure Your Server" tool in Microsoft 2000 domain controllers installs a blank password for ...
E S
CVE-2001-0049 WatchGuard SOHO FireWall 2.2.1 and earlier allows remote attackers to cause a denial of service via ...
E
CVE-2001-0050 Buffer overflow in BitchX IRC client allows remote attackers to cause a denial of service and possib...
E S
CVE-2001-0051 IBM DB2 Universal Database version 6.1 creates an account with a default user name and password, whi...
E
CVE-2001-0052 IBM DB2 Universal Database version 6.1 allows users to cause a denial of service via a malformed que...
E
CVE-2001-0053 One-byte buffer overflow in replydirname function in BSD-based ftpd allows remote attackers to gain ...
E S
CVE-2001-0054 Directory traversal vulnerability in FTP Serv-U before 2.5i allows remote attackers to escape the FT...
E S
CVE-2001-0055 CBOS 2.4.1 and earlier in Cisco 600 routers allows remote attackers to cause a denial of service via...
CVE-2001-0056 The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid lo...
CVE-2001-0057 Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attackers to cause a denial of service...
CVE-2001-0058 The Web interface to Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attackers to caus...
CVE-2001-0059 patchadd in Solaris allows local users to overwrite arbitrary files via a symlink attack....
CVE-2001-0060 Format string vulnerability in stunnel 3.8 and earlier allows attackers to execute arbitrary command...
S
CVE-2001-0061 procfs in FreeBSD and possibly other operating systems does not properly restrict access to per-proc...
S
CVE-2001-0062 procfs in FreeBSD and possibly other operating systems allows local users to cause a denial of servi...
S
CVE-2001-0063 procfs in FreeBSD and possibly other operating systems allows local users to bypass access control r...
S
CVE-2001-0064 Webconfig, IMAP, and other services in MDaemon 3.5.0 and earlier allows remote attackers to cause a ...
E S
CVE-2001-0065 Buffer overflow in bftpd 1.0.13 allows remote attackers to cause a denial of service and possibly ex...
E
CVE-2001-0066 Secure Locate (slocate) allows local users to corrupt memory via a malformed database file that spec...
E S
CVE-2001-0067 The installation of J-Pilot creates the .jpilot directory with the user's umask, which could allow l...
S
CVE-2001-0068 Mac OS Runtime for Java (MRJ) 2.2.3 allows remote attackers to use malicious applets to read files o...
CVE-2001-0069 dialog before 0.9a-20000118-3bis in Debian GNU/Linux allows local users to overwrite arbitrary files...
S
CVE-2001-0070 Buffer overflow in 1st Up Mail Server 4.1 allows remote attackers to cause a denial of service, and ...
E S
CVE-2001-0071 gpg (aka GnuPG) 1.0.4 and other versions does not properly verify detached signatures, which allows ...
S
CVE-2001-0072 gpg (aka GnuPG) 1.0.4 and other versions imports both public and private keys from public key server...
S
CVE-2001-0073 Buffer overflow in the find_default_type function in libsecure in NSA Security-enhanced Linux, which...
CVE-2001-0074 Directory traversal vulnerability in print.cgi in Technote allows remote attackers to read arbitrary...
E
CVE-2001-0075 Directory traversal vulnerability in main.cgi in Technote allows remote attackers to read arbitrary ...
E
CVE-2001-0076 register.cgi in Ikonboard 2.1.7b and earlier allows remote attackers to execute arbitrary commands v...
S
CVE-2001-0077 The clustmon service in Sun Cluster 2.x does not require authentication, which allows remote attacke...
CVE-2001-0078 in.mond in Sun Cluster 2.x allows local users to read arbitrary files via a symlink attack on the st...
CVE-2001-0079 Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a ...
E
CVE-2001-0080 Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by c...
S
CVE-2001-0081 swinit in nCipher does not properly disable the Operator Card Set recovery feature even when explici...
S
CVE-2001-0082 Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access ...
E
CVE-2001-0083 Windows Media Unicast Service in Windows Media Services 4.0 and 4.1 does not properly shut down some...
CVE-2001-0084 GTK+ library allows local users to specify arbitrary modules via the GTK_MODULES environmental varia...
E S
CVE-2001-0085 Buffer overflow in Kermit communications software in HP-UX 11.0 and earlier allows local users to ca...
S
CVE-2001-0086 CGI Script Center Subscribe Me LITE 2.0 and earlier allows remote attackers to delete arbitrary mail...
E
CVE-2001-0087 itetris/xitetris 1.6.2 and earlier trusts the PATH environmental variable to find and execute the gu...
E S
CVE-2001-0088 common.inc.php in phpWebLog 0.4.2 does not properly initialize the $CONF array, which inadvertently ...
E
CVE-2001-0089 Internet Explorer 5.0 through 5.5 allows remote attackers to read arbitrary files from the client vi...
CVE-2001-0090 The Print Templates feature in Internet Explorer 5.5 executes arbitrary custom print templates witho...
S
CVE-2001-0091 The ActiveX control for invoking a scriptlet in Internet Explorer 5.0 through 5.5 renders arbitrary ...
CVE-2001-0092 A function in Internet Explorer 5.0 through 5.5 does not properly verify the domain of a frame withi...
CVE-2001-0093 Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying crit...
CVE-2001-0094 Buffer overflow in kdc_reply_cipher of libkrb (Kerberos 4 authentication library) in NetBSD 1.5 and ...
S
CVE-2001-0095 catman in Solaris 2.7 and 2.8 allows local users to overwrite arbitrary files via a symlink attack o...
CVE-2001-0096 FrontPage Server Extensions (FPSE) in IIS 4.0 and 5.0 allows remote attackers to cause a denial of s...
CVE-2001-0097 The Web interface for Infinite Interchange 3.6.1 allows remote attackers to cause a denial of servic...
E
CVE-2001-0098 Buffer overflow in Bea WebLogic Server before 5.1.0 allows remote attackers to execute arbitrary com...
E S
CVE-2001-0099 bsguest.cgi guestbook script allows remote attackers to execute arbitrary commands via shell metacha...
E S
CVE-2001-0100 bslist.cgi mailing list script allows remote attackers to execute arbitrary commands via shell metac...
E S
CVE-2001-0101 Vulnerability in fetchmail 5.5.0-2 and earlier in the AUTHENTICATE GSSAPI command....
S
CVE-2001-0102 "Multiple Users" Control Panel in Mac OS 9 allows Normal users to gain Owner privileges by removing ...
E
CVE-2001-0103 CoffeeCup Direct and Free FTP clients uses weak encryption to store passwords in the FTPServers.ini ...
CVE-2001-0104 MDaemon Pro 3.5.1 and earlier allows local users to bypass the "lock server" security setting by pre...
CVE-2001-0105 Vulnerability in top in HP-UX 11.04 and earlier allows local users to overwrite files owned by the "...
S
CVE-2001-0106 Vulnerability in inetd server in HP-UX 11.04 and earlier allows attackers to cause a denial of servi...
S
CVE-2001-0107 Veritas Backup agent on Linux allows remote attackers to cause a denial of service by establishing a...
CVE-2001-0108 PHP Apache module 4.0.4 and earlier allows remote attackers to bypass .htaccess access restrictions ...
S
CVE-2001-0109 rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlin...
E S
CVE-2001-0110 Buffer overflow in jaZip Zip/Jaz drive manager allows local users to gain root privileges via a long...
E S
CVE-2001-0111 Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands...
E S
CVE-2001-0112 Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary commands....
E S
CVE-2001-0113 statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostb...
E S
CVE-2001-0114 statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir...
E S
CVE-2001-0115 Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary comm...
E S
CVE-2001-0116 gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack....
S
CVE-2001-0117 sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack....
S
CVE-2001-0118 rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack....
S
CVE-2001-0119 getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack....
S
CVE-2001-0120 useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a sym...
S
CVE-2001-0121 ImageCast Control Center 4.1.0 allows remote attackers to cause a denial of service (resource exhaus...
CVE-2001-0122 Kernel leak in AfpaCache module of the Fast Response Cache Accelerator (FRCA) component of IBM HTTP ...
E S
CVE-2001-0123 Directory traversal vulnerability in eXtropia bbs_forum.cgi 1.0 allows remote attackers to read arbi...
S
CVE-2001-0124 Buffer overflow in exrecover in Solaris 2.6 and earlier possibly allows local users to gain privileg...
S
CVE-2001-0125 exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exm...
S
CVE-2001-0126 Oracle XSQL servlet 1.0.3.0 and earlier allows remote attackers to execute arbitrary Java code by re...
CVE-2001-0127 Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to...
E
CVE-2001-0128 Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified...
S
CVE-2001-0129 Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial ...
E S
CVE-2001-0130 Buffer overflow in HTML parser of the Lotus R5 Domino Server before 5.06, and Domino Client before 5...
CVE-2001-0131 htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary ...
S
CVE-2001-0132 Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which al...
CVE-2001-0133 The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, ...
CVE-2001-0134 Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software product...
S
CVE-2001-0135 The default installation of Ultraboard 2000 2.11 creates the Skins, Database, and Backups directorie...
CVE-2001-0136 Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of...
E
CVE-2001-0137 Windows Media Player 7 allows remote attackers to execute malicious Java applets in Internet Explore...
E S
CVE-2001-0138 privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a sy...
S
CVE-2001-0139 inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configuration...
S
CVE-2001-0140 arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configur...
S
CVE-2001-0141 mgetty 1.1.22 allows local users to overwrite arbitrary files via a symlink attack in some configura...
S
CVE-2001-0142 squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some c...
S
CVE-2001-0143 vpop3d program in linuxconf 1.23r and earlier allows local users to overwrite arbitrary files via a ...
S
CVE-2001-0144 CORE SDI SSH1 CRC-32 compensation attack detector allows remote attackers to execute arbitrary comma...
E S
CVE-2001-0145 Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an attacker...
S
CVE-2001-0146 IIS 5.0 and Microsoft Exchange 2000 allow remote attackers to cause a denial of service (memory allo...
S
CVE-2001-0147 Buffer overflow in Windows 2000 event viewer snap-in allows attackers to execute arbitrary commands ...
CVE-2001-0148 The WMP ActiveX Control in Windows Media Player 7 allows remote attackers to execute commands in Int...
E S
CVE-2001-0149 Windows Scripting Host in Internet Explorer 5.5 and earlier allows remote attackers to read arbitrar...
E S
CVE-2001-0150 Internet Explorer 5.5 and earlier executes Telnet sessions using command line arguments that are spe...
S
CVE-2001-0151 IIS 5.0 allows remote attackers to cause a denial of service via a series of malformed WebDAV reques...
CVE-2001-0152 The password protection option for the Compressed Folders feature in Plus! for Windows 98 and Window...
CVE-2001-0153 Buffer overflow in VB-TSQL debugger object (vbsdicli.exe) in Visual Studio 6.0 Enterprise Edition al...
S
CVE-2001-0154 HTML e-mail feature in Internet Explorer 5.5 and earlier allows attackers to execute attachments by ...
CVE-2001-0155 Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execu...
CVE-2001-0156 VShell SSH gateway 1.0.1 and earlier has a default port forwarding rule of 0.0.0.0/0.0.0.0, which co...
E S
CVE-2001-0157 Debugging utility in the backdoor mode of Palm OS 3.5.2 and earlier allows attackers with physical a...
E S
CVE-2001-0160 Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless...
E
CVE-2001-0161 Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bit...
E
CVE-2001-0162 WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attack...
E
CVE-2001-0163 Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remo...
E
CVE-2001-0164 Buffer overflow in Netscape Directory Server 4.12 and earlier allows remote attackers to cause a den...
E S
CVE-2001-0165 Buffer overflow in ximp40 shared library in Solaris 7 and Solaris 8 allows local users to gain privi...
E
CVE-2001-0166 Macromedia Shockwave Flash plugin version 8 and earlier allows remote attackers to cause a denial of...
CVE-2001-0167 Buffer overflow in AT&T WinVNC (Virtual Network Computing) client 3.3.3r7 and earlier allows remote ...
S
CVE-2001-0168 Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote ...
S
CVE-2001-0169 When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify...
S
CVE-2001-0170 glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS e...
S
CVE-2001-0171 Buffer overflow in SlimServe HTTPd 1.0 allows remote attackers to cause a denial of service, and pos...
CVE-2001-0172 Buffer overflow in ReiserFS 3.5.28 in SuSE Linux allows local users to cause a denial of service and...
E
CVE-2001-0173 Buffer overflow in qDecoder library 5.08 and earlier, as used in CrazyWWWBoard, CrazySearch, and oth...
E S
CVE-2001-0174 Buffer overflow in Trend Micro Virus Buster 2001 8.00 allows remote attackers to cause a denial of s...
CVE-2001-0175 The caching module in Netscape Fasttrack Server 4.1 allows remote attackers to cause a denial of ser...
CVE-2001-0176 The setuid doroot program in Voyant Sonata 3.x executes arbitrary command line arguments, which allo...
E
CVE-2001-0177 WebMaster ConferenceRoom 1.8.1 allows remote attackers to cause a denial of service via a buddy rela...
E S
CVE-2001-0178 kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that ...
S
CVE-2001-0179 Allaire JRun 3.0 allows remote attackers to list contents of the WEB-INF directory, and the web.xml ...
S
CVE-2001-0180 Lars Ellingsen guestserver.cgi allows remote attackers to execute arbitrary commands via shell metac...
E S
CVE-2001-0181 Format string vulnerability in the error logging code of DHCP server and client in Caldera Linux all...
S
CVE-2001-0182 FireWall-1 4.1 with a limited-IP license allows remote attackers to cause a denial of service by sen...
S
CVE-2001-0183 ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by s...
E S
CVE-2001-0184 eEye Iris 1.01 beta allows remote attackers to cause a denial of service via a malformed packet, whi...
E
CVE-2001-0185 Netopia R9100 router version 4.6 allows authenticated users to cause a denial of service by using th...
S
CVE-2001-0186 Directory traversal vulnerability in Free Java Web Server 1.0 allows remote attackers to read arbitr...
E
CVE-2001-0187 Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allow...
E S
CVE-2001-0188 GoodTech FTP server 3.0.1.2.1.0 and earlier allows remote attackers to cause a denial of service via...
S
CVE-2001-0189 Directory traversal vulnerability in LocalWEB2000 HTTP server allows remote attackers to read arbitr...
E
CVE-2001-0190 Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, all...
CVE-2001-0191 gnuserv before 3.12, as shipped with XEmacs, does not properly check the specified length of an X Wi...
S
CVE-2001-0192 Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfi...
CVE-2001-0193 Format string vulnerability in man in some Linux distributions allows local users to gain privileges...
E S
CVE-2001-0194 Buffer overflow in httpGets function in CUPS 1.1.5 allows remote attackers to execute arbitrary comm...
S
CVE-2001-0195 sash before 3.4-4 in Debian GNU/Linux does not properly clone /etc/shadow, which makes it world-read...
S
CVE-2001-0196 inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows ...
S
CVE-2001-0197 Format string vulnerability in print_client in icecast 1.3.8beta2 and earlier allows remote attacker...
E S
CVE-2001-0198 Buffer overflow in QuickTime Player plugin 4.1.2 (Japanese) allows remote attackers to execute arbit...
E
CVE-2001-0199 Directory traversal vulnerability in SEDUM HTTP Server 2.0 allows remote attackers to read arbitrary...
E
CVE-2001-0200 HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a reques...
E
CVE-2001-0201 The Postaci frontend for PostgreSQL does not properly filter characters such as semicolons, which co...
E
CVE-2001-0202 Picserver web server allows remote attackers to read arbitrary files via a .. (dot dot) attack in an...
E
CVE-2001-0203 Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and adm...
E S
CVE-2001-0204 Watchguard Firebox II allows remote attackers to cause a denial of service by establishing multiple ...
E S
CVE-2001-0205 Directory traversal vulnerability in AOLserver 3.2 and earlier allows remote attackers to read arbit...
E
CVE-2001-0206 Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbit...
E S
CVE-2001-0207 Buffer overflow in bing allows remote attackers to execute arbitrary commands via a long hostname, w...
E S
CVE-2001-0208 MicroFocus Cobol 4.1, with the AppTrack feature enabled, installs the mfaslmf directory and the noli...
E S
CVE-2001-0209 Buffer overflow in Shoutcast Distributed Network Audio Server (DNAS) 1.7.1 allows remote attackers t...
CVE-2001-0210 Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitr...
E S
CVE-2001-0211 Directory traversal vulnerability in WebSPIRS 3.1 allows remote attackers to read arbitrary files vi...
E S
CVE-2001-0212 Directory traversal vulnerability in HIS Auktion 1.62 allows remote attackers to read arbitrary file...
E
CVE-2001-0213 Buffer overflow in pi program in PlanetIntra 2.5 allows remote attackers to execute arbitrary comman...
CVE-2001-0214 Way-board CGI program allows remote attackers to read arbitrary files by specifying the filename in ...
E
CVE-2001-0215 ROADS search.pl program allows remote attackers to read arbitrary files by specifying the file name ...
E S
CVE-2001-0216 PALS Library System pals-cgi program allows remote attackers to execute arbitrary commands via shell...
E S
CVE-2001-0217 Directory traversal vulnerability in PALS Library System pals-cgi program allows remote attackers to...
E S
CVE-2001-0218 Format string vulnerability in mars_nwe 0.99.pl19 allows remote attackers to execute arbitrary comma...
S
CVE-2001-0219 Vulnerability in Support Tools Manager (xstm,cstm,stm) in HP-UX 11.11 and earlier allows local users...
S
CVE-2001-0220 Buffer overflow in ja-elvis and ko-helvis ports of elvis allow local users to gain root privileges....
E S
CVE-2001-0221 Buffer overflow in ja-xklock 2.7.1 and earlier allows local users to gain root privileges....
E S
CVE-2001-0222 webmin 0.84 and earlier allows local users to overwrite and create arbitrary files via a symlink att...
S
CVE-2001-0223 Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERY_ST...
CVE-2001-0224 Muscat Empower CGI program allows remote attackers to obtain the absolute pathname of the server via...
E
CVE-2001-0225 fortran math component in Infobot 0.44.5.3 and earlier allows remote attackers to execute arbitrary ...
E S
CVE-2001-0226 Directory traversal vulnerability in BiblioWeb web server 2.0 allows remote attackers to read arbitr...
CVE-2001-0227 Buffer overflow in BiblioWeb web server 2.0 allows remote attackers to cause a denial of service and...
CVE-2001-0228 Directory traversal vulnerability in GoAhead web server 2.1 and earlier allows remote attackers to r...
S
CVE-2001-0229 Chili!Soft ASP for Linux before 3.6 does not properly set group privileges when running in inherited...
CVE-2001-0230 Buffer overflow in dc20ctrl before 0.4_1 in FreeBSD, and possibly other operating systems, allows lo...
E S
CVE-2001-0231 Directory traversal vulnerability in newsdesk.cgi in News Desk 1.2 allows remote attackers to read a...
E
CVE-2001-0232 newsdesk.cgi in News Desk 1.2 allows remote attackers to read arbitrary files via shell metacharacte...
E
CVE-2001-0233 Buffer overflow in micq client 0.4.6 and earlier allows remote attackers to cause a denial of servic...
S
CVE-2001-0234 NewsDaemon before 0.21b allows remote attackers to execute arbitrary SQL queries and gain privileges...
E S
CVE-2001-0235 Vulnerability in crontab allows local users to read crontab files of other users by replacing the te...
S
CVE-2001-0236 Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute ar...
S
CVE-2001-0237 Memory leak in Microsoft 2000 domain controller allows remote attackers to cause a denial of service...
CVE-2001-0238 Microsoft Data Access Component Internet Publishing Provider 8.103.2519.0 and earlier allows remote ...
CVE-2001-0239 Microsoft Internet Security and Acceleration (ISA) Server 2000 Web Proxy allows remote attackers to ...
E S
CVE-2001-0240 Microsoft Word before Word 2002 allows attackers to automatically execute macros without warning the...
CVE-2001-0241 Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain...
E S
CVE-2001-0242 Buffer overflows in Microsoft Windows Media Player 7 and earlier allow remote attackers to execute a...
E
CVE-2001-0243 Windows Media Player 7 and earlier stores Internet shortcuts in a user's Temporary Files folder with...
CVE-2001-0244 Buffer overflow in Microsoft Index Server 2.0 allows remote attackers to execute arbitrary commands ...
CVE-2001-0245 Microsoft Index Server 2.0 in Windows NT 4.0, and Indexing Service in Windows 2000, allows remote at...
CVE-2001-0246 Internet Explorer 5.5 and earlier does not properly verify the domain of a frame within a browser wi...
CVE-2001-0247 Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via ...
E S
CVE-2001-0248 Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by cr...
E S
CVE-2001-0249 Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by cr...
S
CVE-2001-0250 The Web Publishing feature in Netscape Enterprise Server 4.x and earlier allows remote attackers to ...
E S
CVE-2001-0251 The Web Publishing feature in Netscape Enterprise Server 3.x allows remote attackers to cause a deni...
E S
CVE-2001-0252 iPlanet (formerly Netscape) Enterprise Server 4.1 allows remote attackers to cause a denial of servi...
CVE-2001-0253 Directory traversal vulnerability in hsx.cgi program in iWeb Hyperseek 2000 allows remote attackers ...
E S
CVE-2001-0254 FaSTream FTP++ Server 2.0 allows remote attackers to obtain the real pathname of the server via the ...
CVE-2001-0255 FaSTream FTP++ Server 2.0 allows remote attackers to list arbitrary directories by using the "ls" co...
E
CVE-2001-0256 FaSTream FTP++ Server 2.0 allows remote attackers to cause a denial of service, and possibly execute...
CVE-2001-0257 Buffer overflow in Easycom/Safecom Print Server Web service, version 404.590 and earlier, allows rem...
CVE-2001-0258 The Easycom/Safecom Print Server (firmware 404.590) PrintGuide server allows remote attackers to cau...
CVE-2001-0259 ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES-1 m...
E S
CVE-2001-0260 Buffer overflow in Lotus Domino Mail Server 5.0.5 and earlier allows a remote attacker to crash the ...
E S
CVE-2001-0261 Microsoft Windows 2000 Encrypted File System does not properly destroy backups of files that are enc...
CVE-2001-0262 Buffer overflow in Netscape SmartDownload 1.3 allows remote attackers (malicious web pages) to execu...
E S
CVE-2001-0263 Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows attackers to read file attributes outside of ...
CVE-2001-0264 Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows remote attackers to obtain NETBIOS credential...
E S
CVE-2001-0265 ASCII Armor parser in Windows PGP 7.0.3 and earlier allows attackers to create files in arbitrary lo...
S
CVE-2001-0266 Vulnerability in Software Distributor SD-UX in HP-UX 11.0 and earlier allows local users to gain pri...
CVE-2001-0267 NM debug in HP MPE/iX 6.5 and earlier does not properly handle breakpoints, which allows local users...
S
CVE-2001-0268 The i386_set_ldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USER_L...
S
CVE-2001-0269 pam_ldap authentication module in Solaris 8 allows remote attackers to bypass authentication via a N...
E S
CVE-2001-0270 Marconi ASX-1000 ASX switches allow remote attackers to cause a denial of service in the telnet and ...
S
CVE-2001-0271 mailnews.cgi 1.3 and earlier allows remote attackers to execute arbitrary commands via a user name t...
E
CVE-2001-0272 Directory traversal vulnerability in sendtemp.pl in W3.org Anaya Web development server allows remot...
E S
CVE-2001-0273 pgp4pine Pine/PGP interface version 1.75-6 does not properly check to see if a public key has expire...
E S
CVE-2001-0274 kicq IRC client 1.0.0, and possibly later versions, allows remote attackers to execute arbitrary com...
E S
CVE-2001-0275 Moby Netsuite Web Server 1.02 allows remote attackers to cause a denial of service, and possibly exe...
E
CVE-2001-0276 ext.dll in BadBlue 1.02.07 Personal Edition web server allows remote attackers to determine the phys...
E S
CVE-2001-0277 Buffer overflow in ext.dll in BadBlue 1.02.07 Personal Edition allows remote attackers to cause a de...
E S
CVE-2001-0278 Vulnerability in linkeditor in HP MPE/iX 6.5 and earlier allows local users to gain privileges....
S
CVE-2001-0279 Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges....
S
CVE-2001-0280 Buffer overflow in MERCUR SMTP server 3.30 allows remote attackers to execute arbitrary commands via...
E
CVE-2001-0281 Format string vulnerability in DbgPrint function, used in debug messages for some Windows NT drivers...
E
CVE-2001-0282 SEDUM 2.1 HTTP server allows remote attackers to cause a denial of service and possibly execute arbi...
E
CVE-2001-0283 Directory traversal vulnerability in SunFTP build 9 allows remote attackers to read arbitrary files ...
E
CVE-2001-0284 Buffer overflow in IPSEC authentication mechanism for OpenBSD 2.8 and earlier allows remote attacker...
CVE-2001-0285 Buffer overflow in A1 HTTP server 1.0a allows remote attackers to cause a denial of service and poss...
E
CVE-2001-0286 Directory traversal vulnerability in A1 HTTP server 1.0a allows remote attackers to read arbitrary f...
E
CVE-2001-0287 VERITAS Cluster Server (VCS) 1.3.0 on Solaris allows local users to cause a denial of service (syste...
CVE-2001-0288 Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Num...
S
CVE-2001-0289 Joe text editor 2.8 searches the current working directory (CWD) for the .joerc configuration file, ...
S
CVE-2001-0290 Vulnerability in Mailman 2.0.1 and earlier allows list administrators to obtain user passwords....
CVE-2001-0291 Buffer overflow in post-query sample CGI program allows remote attackers to execute arbitrary comman...
E
CVE-2001-0292 PHP-Nuke 4.4.1a allows remote attackers to modify a user's email address and obtain the password by ...
E
CVE-2001-0293 Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitra...
E
CVE-2001-0294 Directory traversal vulnerability in TYPSoft FTP Server 0.85 allows remote attackers to read arbitra...
E
CVE-2001-0295 Directory traversal vulnerability in War FTP 1.67.04 allows remote attackers to list directory conte...
E S
CVE-2001-0296 Buffer overflow in WFTPD Pro 3.00 allows remote attackers to execute arbitrary commands via a long C...
E
CVE-2001-0297 Directory traversal vulnerability in Simple Server HTTPd 1.0 (originally Free Java Server) allows re...
E
CVE-2001-0298 Buffer overflow in WebReflex 1.55 HTTPd allows remote attackers to cause a denial of service, and po...
E
CVE-2001-0299 Buffer overflow in Voyager web administration server for Nokia IP440 allows local users to cause a d...
S
CVE-2001-0300 oidldapd 2.1.1.1 in Oracle 8.1.7 records log files in a directory (ldaplog) that has world-writable ...
S
CVE-2001-0301 Buffer overflow in Analog before 4.16 allows remote attackers to execute arbitrary commands by using...
S
CVE-2001-0302 Buffer overflow in tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to cause a denial...
E S
CVE-2001-0303 tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to determine the physical path of th...
E S
CVE-2001-0304 Directory traversal vulnerability in Caucho Resin 1.2.2 allows remote attackers to read arbitrary fi...
E S
CVE-2001-0305 Directory traversal vulnerability in store.cgi in Thinking Arts ES.One package allows remote attacke...
E
CVE-2001-0306 Directory traversal vulnerability in ITAfrica WEBactive HTTP Server 1.00 allows remote attackers to ...
E
CVE-2001-0307 Bajie HTTP JServer 0.78, and other versions before 0.80, allows remote attackers to execute arbitrar...
E S
CVE-2001-0308 UploadServlet in Bajie HTTP JServer 0.78, and possibly other versions before 0.80, allows remote att...
E
CVE-2001-0309 inetd in Red Hat 6.2 does not properly close sockets for internal services such as chargen, daytime,...
E S
CVE-2001-0310 sort in FreeBSD 4.1.1 and earlier, and possibly other operating systems, uses predictable temporary ...
CVE-2001-0311 Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized acc...
CVE-2001-0312 IBM WebSphere plugin for Netscape Enterprise server allows remote attackers to read source code for ...
E S
CVE-2001-0313 Borderware Firewall Server 6.1.2 allows remote attackers to cause a denial of service via a ping to ...
CVE-2001-0314 Buffer overflow in www.tol module in America Online (AOL) 5.0 may allow remote attackers to cause a ...
CVE-2001-0315 The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the...
CVE-2001-0316 Linux kernel 2.4 and 2.2 allows local users to read kernel memory and possibly gain privileges via a...
S
CVE-2001-0317 Race condition in ptrace in Linux kernel 2.4 and 2.2 allows local users to gain privileges by using ...
S
CVE-2001-0318 Format string vulnerability in ProFTPD 1.2.0rc2 may allow attackers to execute arbitrary commands by...
S
CVE-2001-0319 orderdspc.d2w macro in IBM Net.Commerce 3.x allows remote attackers to execute arbitrary SQL queries...
E
CVE-2001-0320 bb_smilies.php and bbcode_ref.php in PHP-Nuke 4.4 allows remote attackers to read arbitrary files an...
E
CVE-2001-0321 opendir.php script in PHP-Nuke allows remote attackers to read arbitrary files by specifying the fil...
E
CVE-2001-0322 MSHTML.DLL HTML parser in Internet Explorer 4.0, and other versions, allows remote attackers to caus...
E
CVE-2001-0323 The ICMP path MTU (PMTU) discovery feature in various UNIX systems allows remote attackers to cause ...
CVE-2001-0324 Windows 98 and Windows 2000 Java clients allow remote attackers to cause a denial of service via a J...
E
CVE-2001-0325 Buffer overflow in QNX RTP 5.60 allows remote attackers to cause a denial of service and possibly ex...
E
CVE-2001-0326 Oracle Java Virtual Machine (JVM ) for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2...
E S
CVE-2001-0327 iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to retrieve sensitive ...
S
CVE-2001-0328 TCP implementations that use random increments for initial sequence numbers (ISN) can allow remote a...
S
CVE-2001-0329 Bugzilla 2.10 allows remote attackers to execute arbitrary commands via shell metacharacters in a us...
S
CVE-2001-0330 Bugzilla 2.10 allows remote attackers to access sensitive information, including the database userna...
S
CVE-2001-0331 Buffer overflow in Embedded Support Partner (ESP) daemon (rpc.espd) in IRIX 6.5.8 and earlier allows...
CVE-2001-0332 Internet Explorer 5.5 and earlier does not properly verify the domain of a frame within a browser wi...
CVE-2001-0333 Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrar...
CVE-2001-0334 FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a wildca...
S
CVE-2001-0335 FTP service in IIS 5.0 and earlier allows remote attackers to enumerate Guest accounts in trusted do...
CVE-2001-0336 The Microsoft MS00-060 patch for IIS 5.0 and earlier introduces an error which allows attackers to c...
CVE-2001-0337 The Microsoft MS01-014 and MS01-016 patches for IIS 5.0 and earlier introduce a memory leak which al...
CVE-2001-0338 Internet Explorer 5.5 and earlier does not properly validate digital certificates when Certificate R...
CVE-2001-0339 Internet Explorer 5.5 and earlier allows remote attackers to display a URL in the address bar that i...
CVE-2001-0340 An interaction between the Outlook Web Access (OWA) service in Microsoft Exchange 2000 Server and In...
S
CVE-2001-0341 Buffer overflow in Microsoft Visual Studio RAD Support sub-component of FrontPage Server Extensions ...
E S
CVE-2001-0344 An SQL query method in Microsoft SQL Server 2000 Gold and 7.0 using Mixed Mode allows local database...
CVE-2001-0345 Microsoft Windows 2000 telnet service allows attackers to prevent idle Telnet sessions from timing o...
CVE-2001-0346 Handle leak in Microsoft Windows 2000 telnet service allows attackers to cause a denial of service b...
CVE-2001-0347 Information disclosure vulnerability in Microsoft Windows 2000 telnet service allows remote attacker...
CVE-2001-0348 Microsoft Windows 2000 telnet service allows attackers to cause a denial of service (crash) via a lo...
CVE-2001-0349 Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not proper...
CVE-2001-0350 Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not proper...
CVE-2001-0351 Microsoft Windows 2000 telnet service allows a local user to make a certain system call that allows ...
CVE-2001-0352 SNMP agents in 3Com AirConnect AP-4111 and Symbol 41X1 Access Point allow remote attackers to obtain...
CVE-2001-0353 Buffer overflow in the line printer daemon (in.lpd) for Solaris 8 and earlier allows local and remot...
S
CVE-2001-0354 TheNet CheckBO 1.56 allows remote attackers to cause a denial of service via a flood of characters t...
E
CVE-2001-0355 Novell Groupwise 5.5 (sp1 and sp2) allows a remote user to access arbitrary files via an implementat...
CVE-2001-0357 FormMail.pl in FormMail 1.6 and earlier allows a remote attacker to send anonymous email (spam) by m...
CVE-2001-0358 Buffer overflows in Sierra Half-Life build 1573 and earlier allow remote attackers to execute arbitr...
CVE-2001-0359 Format string vulnerability in Sierra Half-Life build 1573 and earlier allows a remote attacker to e...
CVE-2001-0360 Directory traversal vulnerability in help.cgi in Ikonboard 2.1.7b and earlier allows a remote attack...
E S
CVE-2001-0361 Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ...
S
CVE-2001-0364 SSH Communications Security sshd 2.4 for Windows allows remote attackers to create a denial of servi...
CVE-2001-0365 Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft Viewer...
E S
CVE-2001-0366 saposcol in SAP R/3 Web Application Server Demo before 1.5 trusts the PATH environmental variable to...
E S
CVE-2001-0367 Mirabilis ICQ WebFront Plug-in ICQ2000b Build 3278 allows a remote attacker to create a denial of se...
CVE-2001-0368 Directory traversal vulnerability in BearShare 2.2.2 and earlier allows a remote attacker to read ce...
S
CVE-2001-0369 Buffer overflow in lpsched on DGUX version R4.20MU06 and MU02 allows a local attacker to obtain root...
CVE-2001-0370 fcheck prior to 2.57.59 calls the file signature checking program insecurely, which can allow a loca...
CVE-2001-0371 Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other ope...
S
CVE-2001-0372 Akopia Interchange 4.5.3 through 4.6.3 installs demo stores with a default group account :backup wit...
E S
CVE-2001-0373 The default configuration of the Dr. Watson program in Windows NT and Windows 2000 generates user.dm...
S
CVE-2001-0374 The HTTP server in Compaq web-enabled management software for (1) Foundation Agents, (2) Survey, (3)...
S
CVE-2001-0375 Cisco PIX Firewall 515 and 520 with 5.1.4 OS running aaa authentication to a TACACS+ server allows r...
E S
CVE-2001-0376 SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 firmware using IPSEC with IKE pre-shared keys do not...
S
CVE-2001-0377 Infradig Inframail prior to 3.98a allows a remote attacker to create a denial of service via a malfo...
S
CVE-2001-0378 readline prior to 4.1, in OpenBSD 2.8 and earlier, creates history files with insecure permissions, ...
S
CVE-2001-0379 Vulnerability in the newgrp program included with HP9000 servers running HP-UX 11.11 allows a local ...
S
CVE-2001-0380 Crosscom/Olicom XLT-F running XL 80 IM Version 5.5 Build Level 2 allows a remote attacker SNMP read ...
CVE-2001-0381 The OpenPGP PGP standard allows an attacker to determine the private signature key via a cryptanalyt...
CVE-2001-0382 Computer Associates CCC\Harvest 5.0 for Windows NT/2000 uses weak encryption for passwords, which al...
E S
CVE-2001-0383 banners.php in PHP-Nuke 4.4 and earlier allows remote attackers to modify banner ad URLs by directly...
CVE-2001-0384 ppd in Reliant Sinix allows local users to corrupt arbitrary files via a symlink attack in the /tmp/...
E
CVE-2001-0385 GoAhead webserver 2.1 allows remote attackers to cause a denial of service via an HTTP request to th...
E
CVE-2001-0386 AnalogX SimpleServer:WWW 1.08 allows remote attackers to cause a denial of service via an HTTP reque...
E S
CVE-2001-0387 Format string vulnerability in hfaxd in HylaFAX before 4.1.b2_2 allows local users to gain privilege...
S
CVE-2001-0388 time server daemon timed allows remote attackers to cause a denial of service via malformed packets....
S
CVE-2001-0389 IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by...
E
CVE-2001-0390 IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to cause a denial of service by directly ca...
E
CVE-2001-0391 Xitami 2.5d4 and earlier allows remote attackers to crash the server via an HTTP request to the /aux...
CVE-2001-0392 Navision Financials Server 2.60 and earlier allows remote attackers to cause a denial of service by ...
S
CVE-2001-0393 Navision Financials Server 2.0 allows remote attackers to cause a denial of service via a series of ...
CVE-2001-0394 Remote manager service in Website Pro 3.0.37 allows remote attackers to cause a denial of service vi...
S
CVE-2001-0395 Lightwave ConsoleServer 3200 does not disconnect users after unsuccessful login attempts, which coul...
E S
CVE-2001-0396 The pre-login mode in the System Administrator interface of Lightwave ConsoleServer 3200 allows remo...
E S
CVE-2001-0397 Buffer overflow in Silent Runner Collector (SRC) 1.6.1 allows remote attackers to cause a denial of ...
CVE-2001-0398 The BAT! mail client allows remote attackers to bypass user warnings of an executable attachment and...
E S
CVE-2001-0399 Caucho Resin 1.3b1 and earlier allows remote attackers to read source code for Javabean files by ins...
E S
CVE-2001-0400 nph-maillist.pl allows remote attackers to execute arbitrary commands via shell metacharacters ("`")...
E S
CVE-2001-0401 Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands via...
S
CVE-2001-0402 IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which allo...
S
CVE-2001-0403 /opt/JSparm/bin/perfmon program in Solaris allows local users to create arbitrary files as root via ...
S
CVE-2001-0404 Directory traversal vulnerability in JavaServer Web Dev Kit (JSWDK) 1.0.1 allows remote attackers to...
CVE-2001-0405 ip_conntrack_ftp in the IPTables firewall for Linux 2.4 allows remote attackers to bypass access res...
E S
CVE-2001-0406 Samba before 2.2.0 allows local attackers to overwrite arbitrary files via a symlink attack using (1...
S
CVE-2001-0407 Directory traversal vulnerability in MySQL before 3.23.36 allows local users to modify arbitrary fil...
E S
CVE-2001-0408 vim (aka gvim) processes VIM control codes that are embedded in a file, which could allow attackers ...
S
CVE-2001-0409 vim (aka gvim) allows local users to modify files being edited by other users via a symlink attack o...
S
CVE-2001-0410 Buffer overflow in Trend Micro Virus Buster 2001 8.02 allows remote attackers to cause a denial of s...
CVE-2001-0411 Reliant Unix 5.44 and earlier allows remote attackers to cause a denial of service via an ICMP port ...
CVE-2001-0412 Cisco Content Services (CSS) switch products 11800 and earlier, aka Arrowpoint, allows local users t...
S
CVE-2001-0413 BinTec X4000 Access router, and possibly other versions, allows remote attackers to cause a denial o...
S
CVE-2001-0414 Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remote attackers...
E S
CVE-2001-0415 REDIPlus program, REDI.exe, stores passwords and user names in cleartext in the StartLog.txt log fil...
S
CVE-2001-0416 sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which ...
S
CVE-2001-0417 Kerberos 4 (aka krb4) allows local users to overwrite arbitrary files via a symlink attack on new ti...
E S
CVE-2001-0418 content.pl script in NCM Content Management System allows remote attackers to read arbitrary content...
E S
CVE-2001-0419 Buffer overflow in shared library ndwfn4.so for iPlanet Web Server (iWS) 4.1, when used as a web lis...
E
CVE-2001-0420 Directory traversal vulnerability in talkback.cgi program allows remote attackers to read arbitrary ...
S
CVE-2001-0421 FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the ro...
E
CVE-2001-0422 Buffer overflow in Xsun in Solaris 8 and earlier allows local users to execute arbitrary commands vi...
E S
CVE-2001-0423 Buffer overflow in ipcs in Solaris 7 x86 allows local users to execute arbitrary code via a long TZ ...
E S
CVE-2001-0424 BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local...
S
CVE-2001-0425 AdLibrary.pm in AdCycle 0.78b allows remote attackers to gain privileges to AdCycle via a malformed ...
E S
CVE-2001-0426 Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to...
E
CVE-2001-0427 Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of serv...
S
CVE-2001-0428 Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of serv...
S
CVE-2001-0429 Cisco Catalyst 5000 series switches 6.1(2) and earlier will forward an 802.1x frame on a Spanning Tr...
S
CVE-2001-0430 Vulnerability in exuberant-ctags before 3.2.4-0.1 insecurely creates temporary files....
CVE-2001-0431 Vulnerability in iPlanet Web Server Enterprise Edition 4.x....
CVE-2001-0432 Buffer overflows in various CGI programs in the remote administration service for Trend Micro Inters...
E S
CVE-2001-0433 Buffer overflow in Savant 3.0 web server allows remote attackers to cause a denial of service, and p...
CVE-2001-0434 The LogDataListToFile ActiveX function used in (1) Knowledge Center and (2) Back web components of C...
E S
CVE-2001-0435 The split key mechanism used by PGP 7.0 allows a key share holder to obtain access to the entire key...
CVE-2001-0436 dcboard.cgi in DCForum 2000 1.0 allows remote attackers to execute arbitrary commands by uploading a...
E S
CVE-2001-0437 upload_file.pl in DCForum 2000 1.0 allows remote attackers to upload arbitrary files without authent...
S
CVE-2001-0438 Preview version of Timbuktu for Mac OS X allows local users to modify System Preferences without log...
CVE-2001-0439 licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in ...
S
CVE-2001-0440 Buffer overflow in logging functions of licq before 1.0.3 allows remote attackers to cause a denial ...
S
CVE-2001-0441 Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allo...
S
CVE-2001-0442 Buffer overflow in Mercury MTA POP3 server for NetWare 1.48 and earlier allows remote attackers to c...
S
CVE-2001-0443 Buffer overflow in QPC QVT/Net Popd 4.20 in QVT/Net 5.0 allows remote attackers to cause a denial of...
CVE-2001-0444 Cisco CBOS 2.3.0.053 sends output of the "sh nat" (aka "show nat") command to the terminal of the ne...
E
CVE-2001-0446 IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2 allows remote attackers to re...
CVE-2001-0447 Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service, a...
CVE-2001-0448 Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service vi...
CVE-2001-0449 Buffer overflow in WinZip 8.0 allows attackers to execute arbitrary commands via a long file name th...
CVE-2001-0450 Directory traversal vulnerability in Transsoft FTP Broker before 5.5 allows attackers to (1) delete ...
CVE-2001-0451 INDEXU 2.0 beta and earlier allows remote attackers to bypass authentication and gain privileges by ...
S
CVE-2001-0452 BRS WebWeaver FTP server before 0.64 Beta allows remote attackers to obtain the real pathname of the...
E S
CVE-2001-0453 Directory traversal vulnerability in BRS WebWeaver HTTP server allows remote attackers to read arbit...
S
CVE-2001-0454 Directory traversal vulnerability in SlimServe HTTPd 1.1a allows remote attackers to read arbitrary ...
E S
CVE-2001-0455 Cisco Aironet 340 Series wireless bridge before 8.55 does not properly disable access to the web int...
S
CVE-2001-0456 postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid ...
S
CVE-2001-0457 man2html before 1.5-22 allows remote attackers to cause a denial of service (memory exhaustion)....
S
CVE-2001-0458 Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arb...
S
CVE-2001-0459 Buffer overflows in ascdc Afterstep while running setuid allows local users to gain root privileges ...
CVE-2001-0460 Websweeper 4.0 does not limit the length of certain HTTP headers, which allows remote attackers to c...
E S
CVE-2001-0461 template.cgi in Free On-Line Dictionary of Computing (FOLDOC) allows remote attackers to read files ...
S
CVE-2001-0462 Directory traversal vulnerability in Perl web server 0.3 and earlier allows remote attackers to read...
E
CVE-2001-0463 Directory traversal vulnerability in cal_make.pl in PerlCal allows remote attackers to read arbitrar...
E S
CVE-2001-0464 Buffer overflow in websync.exe in Cyberscheduler allows remote attackers to execute arbitrary comman...
E S
CVE-2001-0465 TurboTax saves passwords in a temporary file when a user imports investment tax information from a f...
CVE-2001-0466 Directory traversal vulnerability in ustorekeeper 1.61 allows remote attackers to read arbitrary fil...
CVE-2001-0467 Directory traversal vulnerability in RobTex Viking Web server before 1.07-381 allows remote attacker...
E S
CVE-2001-0468 Buffer overflow in FTPFS allows local users to gain root privileges via a long user name....
E
CVE-2001-0469 rwho daemon rwhod in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote at...
S
CVE-2001-0470 Buffer overflow in SNMP proxy agent snmpd in Solaris 8 may allow local users to gain root privileges...
CVE-2001-0471 SSH daemon version 1 (aka SSHD-1 or SSH-1) 1.2.30 and earlier does not log repeated login attempts, ...
E S
CVE-2001-0472 Hursley Software Laboratories Consumer Transaction Framework (HSLCTF) HTTP object allows remote atta...
E S
CVE-2001-0473 Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute ar...
S
CVE-2001-0474 Utah-glx in Mesa before 3.3-14 on Mandrake Linux 7.2 allows local users to overwrite arbitrary files...
S
CVE-2001-0475 index.php in Jelsoft vBulletin does not properly initialize a PHP variable that is used to store tem...
E S
CVE-2001-0476 Multiple buffer overflows in s.cgi program in Aspseek search engine 1.03 and earlier allow remote at...
E S
CVE-2001-0477 Vulnerability in WebCalendar 0.9.26 allows remote command execution....
S
CVE-2001-0478 Directory traversal vulnerability in phpMyAdmin 2.2.0 and earlier versions allows remote attackers t...
S
CVE-2001-0479 Directory traversal vulnerability in phpPgAdmin 2.2.1 and earlier versions allows remote attackers t...
S
CVE-2001-0480 Directory traversal vulnerability in Alex's FTP Server 0.7 allows remote attackers to read arbitrary...
S
CVE-2001-0481 Vulnerability in rpmdrake in Mandrake Linux 8.0 related to insecure temporary file handling....
S
CVE-2001-0482 Configuration error in Argus PitBull LX allows root users to bypass specified access control restric...
E S
CVE-2001-0483 Configuration error in Axent Raptor Firewall 6.5 allows remote attackers to use the firewall as a pr...
E S
CVE-2001-0484 Tektronix PhaserLink 850 does not require authentication for access to configuration pages such as _...
CVE-2001-0485 Unknown vulnerability in netprint in IRIX 6.2, and possibly other versions, allows local users with ...
E S
CVE-2001-0486 Remote attackers can cause a denial of service in Novell BorderManager 3.6 and earlier by sending TC...
E S
CVE-2001-0487 AIX SNMP server snmpd allows remote attackers to cause a denial of service via a RST during the TCP ...
CVE-2001-0488 pcltotiff in HP-UX 10.x has unnecessary set group id permissions, which allows local users to cause ...
S
CVE-2001-0489 Format string vulnerability in gftp prior to 2.0.8 allows remote malicious FTP servers to execute ar...
S
CVE-2001-0490 Buffer overflow in WINAMP 2.6x and 2.7x allows attackers to execute arbitrary code via a long string...
S
CVE-2001-0491 Directory traversal vulnerability in RaidenFTPD Server 2.1 before build 952 allows attackers to acce...
S
CVE-2001-0492 Netcruiser Web server version 0.1.2.8 and earlier allows remote attackers to determine the physical ...
CVE-2001-0493 Small HTTP server 2.03 allows remote attackers to cause a denial of service via a URL that contains ...
CVE-2001-0494 Buffer overflow in IPSwitch IMail SMTP server 6.06 and possibly prior versions allows remote attacke...
S
CVE-2001-0495 Directory traversal in DataWizard WebXQ server 1.204 allows remote attackers to view files outside o...
E S
CVE-2001-0496 kdesu in kdelibs package creates world readable temporary files containing authentication info, whic...
S
CVE-2001-0497 dnskeygen in BIND 8.2.4 and earlier, and dnssec-keygen in BIND 9.1.2 and earlier, set insecure permi...
S
CVE-2001-0498 Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier allows remote ...
CVE-2001-0499 Buffer overflow in Transparent Network Substrate (TNS) Listener in Oracle 8i 8.1.7 and earlier allow...
CVE-2001-0500 Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6....
E S
CVE-2001-0501 Microsoft Word 2002 and earlier allows attackers to automatically execute macros without warning the...
S
CVE-2001-0502 Running Windows 2000 LDAP Server over SSL, a function does not properly check the permissions of a u...
CVE-2001-0503 Microsoft NetMeeting 3.01 with Remote Desktop Sharing enabled allows remote attackers to cause a den...
CVE-2001-0504 Vulnerability in authentication process for SMTP service in Microsoft Windows 2000 allows remote att...
CVE-2001-0505 Multiple memory leaks in Microsoft Services for Unix 2.0 allow remote attackers to cause a denial of...
CVE-2001-0506 Buffer overflow in ssinc.dll in IIS 5.0 and 4.0 allows local users to gain system privileges via a S...
E S
CVE-2001-0507 IIS 5.0 uses relative paths to find system files that will run in-process, which allows local users ...
CVE-2001-0508 Vulnerability in IIS 5.0 allows remote attackers to cause a denial of service (restart) via a long, ...
CVE-2001-0509 Vulnerabilities in RPC servers in (1) Microsoft Exchange Server 2000 and earlier, (2) Microsoft SQL ...
S
CVE-2001-0513 Oracle listener process on Windows NT redirects connection requests to another port and creates a se...
S
CVE-2001-0514 SNMP service in Atmel 802.11b VNET-B Access Point 1.3 and earlier, as used in Netgear ME102 and Link...
S
CVE-2001-0515 Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malf...
S
CVE-2001-0516 Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of servic...
S
CVE-2001-0517 Oracle listener in Oracle 8i on Solaris allows remote attackers to cause a denial of service via a m...
S
CVE-2001-0518 Oracle listener before Oracle 9i allows attackers to cause a denial of service by repeatedly sending...
S
CVE-2001-0519 Aladdin eSafe Gateway versions 2.x allows a remote attacker to circumvent HTML SCRIPT filtering via ...
E S
CVE-2001-0520 Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent filtering of S...
E
CVE-2001-0521 Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent HTML SCRIPT fi...
E
CVE-2001-0522 Format string vulnerability in Gnu Privacy Guard (aka GnuPG or gpg) 1.05 and earlier can allow an at...
S
CVE-2001-0523 eEye SecureIIS versions 1.0.3 and earlier allows a remote attacker to bypass filtering of requests m...
E
CVE-2001-0524 eEye SecureIIS versions 1.0.3 and earlier does not perform length checking on individual HTTP header...
E
CVE-2001-0525 Buffer overflow in dsh in dqs 3.2.7 in SuSE Linux 7.0 and earlier, and possibly other operating syst...
E S
CVE-2001-0526 Buffer overflow in the Xview library as used by mailtool in Solaris 8 and earlier allows a local att...
E S
CVE-2001-0527 DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by...
E S
CVE-2001-0528 Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) version 7.x includes a deb...
E S
CVE-2001-0529 OpenSSH version 2.9 and earlier, with X forwarding enabled, allows a local attacker to delete any fi...
E S
CVE-2001-0530 Spearhead NetGAP 200 and 300 before build 78 allow a remote attacker to bypass file blocking and con...
E S
CVE-2001-0533 Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileg...
CVE-2001-0534 Multiple buffer overflows in RADIUS daemon radiusd in (1) Merit 3.6b and (2) Lucent 2.1-2 RADIUS all...
CVE-2001-0535 Example applications (Exampleapps) in ColdFusion Server 4.x do not properly restrict prevent access ...
CVE-2001-0537 HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitra...
E S
CVE-2001-0538 Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers...
CVE-2001-0540 Memory leak in Terminal servers in Windows NT and Windows 2000 allows remote attackers to cause a de...
CVE-2001-0541 Buffer overflow in Microsoft Windows Media Player 7.1 and earlier allows remote attackers to execute...
CVE-2001-0542 Buffer overflows in Microsoft SQL Server 7.0 and 2000 allow attackers with access to SQL Server to e...
S
CVE-2001-0543 Memory leak in NNTP service in Windows NT 4.0 and Windows 2000 allows remote attackers to cause a de...
S
CVE-2001-0544 IIS 5.0 allows local users to cause a denial of service (hang) via by installing content that produc...
CVE-2001-0545 IIS 4.0 with URL redirection enabled allows remote attackers to cause a denial of service (crash) vi...
CVE-2001-0546 Memory leak in H.323 Gatekeeper Service in Microsoft Internet Security and Acceleration (ISA) Server...
CVE-2001-0547 Memory leak in the proxy service in Microsoft Internet Security and Acceleration (ISA) Server 2000 a...
CVE-2001-0548 Buffer overflow in dtmail in Solaris 2.6 and 7 allows local users to gain privileges via the MAIL en...
CVE-2001-0549 Symantec LiveUpdate 1.5 stores proxy passwords in cleartext in a registry key, which could allow loc...
S
CVE-2001-0550 wu-ftpd 2.6.1 allows remote attackers to execute arbitrary commands via a "~{" argument to commands ...
E S
CVE-2001-0551 Buffer overflow in CDE Print Viewer (dtprintinfo) allows local users to execute arbitrary code by co...
S
CVE-2001-0552 ovactiond in HP OpenView Network Node Manager (NNM) 6.1 and Tivoli Netview 5.x and 6.x allows remote...
E S
CVE-2001-0553 SSH Secure Shell 3.0.0 on Unix systems does not properly perform password authentication to the sshd...
E S
CVE-2001-0554 Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attack...
E S
CVE-2001-0555 ScreamingMedia SITEWare versions 2.5 through 3.1 allows a remote attacker to read world-readable fil...
E S
CVE-2001-0556 The Nirvana Editor (NEdit) 5.1.1 and earlier allows a local attacker to overwrite other users' files...
E S
CVE-2001-0557 T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..'...
E S
CVE-2001-0558 T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of servi...
E S
CVE-2001-0559 crontab in Vixie cron 3.0.1 and earlier does not properly drop privileges after the failed parsing o...
E S
CVE-2001-0560 Buffer overflow in Vixie cron 3.0.1-56 and earlier could allow a local attacker to gain additional p...
E S
CVE-2001-0561 Directory traversal vulnerability in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to...
E S
CVE-2001-0562 a1disp.cgi program in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to execute comman...
E S
CVE-2001-0563 ElectroSystems Engineering Inc. ElectroComm 2.0 and earlier allows a remote attacker to create a den...
E
CVE-2001-0564 APC Web/SNMP Management Card prior to Firmware 310 only supports one telnet connection, which allows...
E
CVE-2001-0565 Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privile...
E S
CVE-2001-0566 Cisco Catalyst 2900XL switch allows a remote attacker to create a denial of service via an empty UDP...
CVE-2001-0567 Digital Creations Zope 2.3.2 and earlier allows a local attacker to gain additional privileges via t...
S
CVE-2001-0568 Digital Creations Zope 2.3.1 b1 and earlier allows a local attacker (Zope user) with through-the-web...
S
CVE-2001-0569 Digital Creations Zope 2.3.1 b1 and earlier contains a problem in the method return values related t...
S
CVE-2001-0570 minicom 1.83.1 and earlier allows a local attacker to gain additional privileges via numerous format...
E S
CVE-2001-0571 Directory traversal vulnerability in the web server for (1) Elron Internet Manager (IM) Message Insp...
E S
CVE-2001-0572 The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weak...
E S
CVE-2001-0573 lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs ...
E S
CVE-2001-0574 Directory traversal vulnerability in MP3Mystic prior to 1.04b3 allows a remote attacker to download ...
E S
CVE-2001-0575 Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional priv...
S
CVE-2001-0576 lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additiona...
S
CVE-2001-0577 recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges v...
S
CVE-2001-0578 Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional...
S
CVE-2001-0579 lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffe...
S
CVE-2001-0580 Hughes Technologies Virtual DNS (VDNS) Server 1.0 allows a remote attacker to create a denial of ser...
E S
CVE-2001-0581 Spytech Spynet Chat Server 6.5 allows a remote attacker to create a denial of service (crash) via a ...
E S
CVE-2001-0582 Ben Spink CrushFTP FTP Server 2.1.6 and earlier allows a local attacker to access arbitrary files vi...
E S
CVE-2001-0583 Alt-N Technologies MDaemon 3.5.4 allows a remote attacker to create a denial of service via the URL ...
S
CVE-2001-0584 IMAP server in Alt-N Technologies MDaemon 3.5.6 allows a local user to cause a denial of service (ha...
E S
CVE-2001-0585 Gordano NTMail 6.0.3c allows a remote attacker to create a denial of service via a long (>= 255 char...
S
CVE-2001-0586 TrendMicro ScanMail for Exchange 3.5 Evaluation allows a local attacker to recover the administrativ...
E S
CVE-2001-0587 deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additiona...
E S
CVE-2001-0588 sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local...
E S
CVE-2001-0589 NetScreen ScreenOS prior to 2.5r6 on the NetScreen-10 and Netscreen-100 can allow a local attacker t...
S
CVE-2001-0590 Apache Software Foundation Tomcat Servlet prior to 3.2.2 allows a remote attacker to read the source...
E
CVE-2001-0591 Directory traversal vulnerability in Oracle JSP 1.0.x through 1.1.1 and Oracle 8.1.7 iAS Release 1.0...
S
CVE-2001-0592 Watchguard Firebox II prior to 4.6 allows a remote attacker to create a denial of service in the ker...
E S
CVE-2001-0593 Anaconda Partners Clipper 3.3 and earlier allows a remote attacker to read arbitrary files via a '.....
E S
CVE-2001-0594 kcms_configure as included with Solaris 7 and 8 allows a local attacker to gain additional privilege...
E S
CVE-2001-0595 Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute...
E
CVE-2001-0596 Netscape Communicator before 4.77 allows remote attackers to execute arbitrary Javascript via a GIF ...
S
CVE-2001-0597 Zetetic Secure Tool for Recalling Important Passwords (STRIP) 0.5 and earlier for the PalmOS allows ...
E S
CVE-2001-0598 Symantec Ghost 6.5 and earlier allows a remote attacker to create a denial of service by sending lar...
E S
CVE-2001-0599 Sybase Adaptive Server Anywhere Database Engine 6.0.3.2747 and earlier as included with Symantec Gho...
E S
CVE-2001-0600 Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeated U...
E S
CVE-2001-0601 Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via HTTP reque...
E
CVE-2001-0602 Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeated (...
E S
CVE-2001-0603 Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeatedly...
E S
CVE-2001-0604 Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via URL reques...
E S
CVE-2001-0605 Headlight Software MyGetright prior to 1.0b allows a remote attacker to upload and/or overwrite arbi...
CVE-2001-0606 Vulnerability in iPlanet Web Server 4.X in HP-UX 11.04 (VVOS) with VirtualVault A.04.00 allows a rem...
S
CVE-2001-0607 asecure as included with HP-UX 10.01 through 11.00 can allow a local attacker to create a denial of ...
S
CVE-2001-0608 HP architected interface facility (AIF) as includes with MPE/iX 5.5 through 6.5 running on a HP3000 ...
S
CVE-2001-0609 Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain ...
E S
CVE-2001-0610 kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink ...
CVE-2001-0611 Becky! 2.00.05 and earlier can allow a remote attacker to gain additional privileges via a buffer ov...
E S
CVE-2001-0612 McAfee Remote Desktop 3.0 and earlier allows remote attackers to cause a denial of service (crash) v...
E S
CVE-2001-0613 Omnicron Technologies OmniHTTPD Professional 2.08 and earlier allows a remote attacker to create a d...
E
CVE-2001-0614 Carello E-Commerce 1.2.1 and earlier allows a remote attacker to gain additional privileges and exec...
CVE-2001-0615 Directory traversal vulnerability in Faust Informatics Freestyle Chat server prior to 4.1 SR3 allows...
E S
CVE-2001-0616 Faust Informatics Freestyle Chat server prior to 4.1 SR3 allows a remote attacker to create a denial...
E S
CVE-2001-0617 Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual S...
S
CVE-2001-0618 Orinoco RG-1000 wireless Residential Gateway uses the last 5 digits of the 'Network Name' or SSID as...
E
CVE-2001-0619 The Lucent Closed Network protocol can allow remote attackers to join Closed Network networks which ...
CVE-2001-0620 iPlanet Calendar Server 5.0p2 and earlier allows a local attacker to gain access to the Netscape Adm...
CVE-2001-0621 The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS ...
S
CVE-2001-0622 The web management service on Cisco Content Service series 11000 switches (CSS) before WebNS 4.01B29...
S
CVE-2001-0623 sendfiled, as included with Simple Asynchronous File Transfer (SAFT), on various Linux systems does ...
S
CVE-2001-0624 QNX 2.4 allows a local user to read arbitrary files by directly accessing the mount point for the FA...
CVE-2001-0625 ftpdownload in Computer Associates InoculateIT 6.0 allows a local attacker to overwrite arbitrary fi...
CVE-2001-0626 O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical pa...
E
CVE-2001-0627 vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files ...
E
CVE-2001-0628 Microsoft Word 2000 does not check AutoRecovery (.asd) files for macros, which allows a local attack...
E S
CVE-2001-0629 HP Event Correlation Service (ecsd) as included with OpenView Network Node Manager 6.1 allows a rem...
E S
CVE-2001-0630 Directory traversal vulnerability in MIMAnet viewsrc.cgi 2.0 allows a remote attacker to read arbitr...
E S
CVE-2001-0631 Centrinity First Class Internet Services 5.50 allows for the circumventing of the default 'spam' fil...
E
CVE-2001-0632 Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the de...
S
CVE-2001-0633 Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker ...
S
CVE-2001-0634 Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local attacke...
S
CVE-2001-0635 Red Hat Linux 7.1 sets insecure permissions on swap files created during installation, which can all...
S
CVE-2001-0636 Buffer overflows in Raytheon SilentRunner allow remote attackers to (1) cause a denial of service in...
CVE-2001-0641 Buffer overflow in man program in various distributions of Linux allows local user to execute arbitr...
E S
CVE-2001-0642 Directory traversal vulnerability in IncrediMail version 1400185 and earlier allows local users to o...
E
CVE-2001-0643 Internet Explorer 5.5 does not display the Class ID (CLSID) when it is at the end of the file name, ...
E S
CVE-2001-0644 Maxum Rumpus FTP Server 1.3.3 and 2.0.3 dev 3 stores passwords in plaintext in the "Rumpus User Data...
E S
CVE-2001-0645 Symantec/AXENT NetProwler 3.5.x contains several default passwords, which could allow remote attacke...
S
CVE-2001-0646 Maxum Rumpus FTP Server 1.3.3 and 2.0.3 dev 3 allows a remote attacker to perform a denial of servic...
E S
CVE-2001-0647 Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via...
E
CVE-2001-0648 Directory traversal vulnerability in PHProjekt 2.1 and earlier allows a remote attacker to conduct u...
E S
CVE-2001-0649 Personal Web Sharing 1.5.5 allows a remote attacker to cause a denial of service via a long HTTP req...
CVE-2001-0650 Cisco devices IOS 12.0 and earlier allow a remote attacker to cause a crash, or bad route updates, v...
S
CVE-2001-0652 Heap overflow in xlock in Solaris 2.6 through 8 allows local users to gain root privileges via a lon...
CVE-2001-0653 Sendmail 8.10.0 through 8.11.5, and 8.12.0 beta, allows local users to modify process memory and pos...
E S
CVE-2001-0654 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0655 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0656 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0657 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0658 Cross-site scripting (CSS) vulnerability in Microsoft Internet Security and Acceleration (ISA) Serve...
CVE-2001-0659 Buffer overflow in IrDA driver providing infrared data exchange on Windows 2000 allows attackers who...
CVE-2001-0660 Outlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and earlier, allows remote attackers to iden...
S
CVE-2001-0662 RPC endpoint mapper in Windows NT 4.0 allows remote attackers to cause a denial of service (loss of ...
CVE-2001-0663 Terminal Server in Windows NT and Windows 2000 allows remote attackers to cause a denial of service ...
CVE-2001-0664 Internet Explorer 5.5 and 5.01 allows remote attackers to bypass security restrictions via malformed...
CVE-2001-0665 Internet Explorer 6 and earlier allows remote attackers to cause certain HTTP requests to be automat...
CVE-2001-0666 Outlook Web Access (OWA) in Microsoft Exchange 2000 allows an authenticated user to cause a denial o...
S
CVE-2001-0667 Internet Explorer 6 and earlier, when used with the Telnet client in Services for Unix (SFU) 2.0, al...
S
CVE-2001-0668 Buffer overflow in line printer daemon (rlpdaemon) in HP-UX 10.01 through 11.11 allows remote attack...
S
CVE-2001-0669 Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2)...
S
CVE-2001-0670 Buffer overflow in BSD line printer daemon (in.lpd or lpd) in various BSD-based operating systems al...
S
CVE-2001-0671 Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 all...
S
CVE-2001-0674 Directory traversal vulnerability in RobTex Viking Web server before 1.07-381 allows remote attacker...
E S
CVE-2001-0675 Rit Research Labs The Bat! 1.51 for Windows allows a remote attacker to cause a denial of service by...
E
CVE-2001-0676 Directory traversal vulnerability in Rit Research Labs The Bat! 1.48f and earlier allows a remote at...
E S
CVE-2001-0677 Eudora 5.0.2 allows a remote attacker to read arbitrary files via an email with the path of the targ...
E
CVE-2001-0678 A buffer overflow in reggo.dll file used by Trend Micro InterScan VirusWall prior to 3.51 build 1349...
E
CVE-2001-0679 A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary ...
E
CVE-2001-0680 Directory traversal vulnerability in ftpd in QPC QVT/Net 4.0 and AVT/Term 5.0 allows a remote attack...
E
CVE-2001-0681 Buffer overflow in ftpd in QPC QVT/Net 5.0 and QVT/Term 5.0 allows a remote attacker to cause a deni...
CVE-2001-0682 ZoneAlarm and ZoneAlarm Pro allows a local attacker to cause a denial of service by running a trojan...
CVE-2001-0683 Memory leak in Netscape Collabra Server 3.5.4 and earlier allows a remote attacker to cause a denial...
E S
CVE-2001-0684 Netscape Collabra Server 3.5.4 and earlier allows a remote attacker to cause a denial of service by ...
E S
CVE-2001-0685 Thibault Godouet FCron prior to 1.1.1 allows a local user to corrupt another user's crontab file via...
E S
CVE-2001-0686 Buffer overflow in mail included with SunOS 5.8 for x86 allows a local user to gain privileges via a...
E S
CVE-2001-0687 Broker FTP server 5.9.5 for Windows NT and 9x allows a remote attacker to retrieve privileged web se...
E
CVE-2001-0688 Broker FTP Server 5.9.5.0 allows a remote attacker to cause a denial of service by repeatedly issuin...
E
CVE-2001-0689 Vulnerability in TrendMicro Virus Control System 1.8 allows a remote attacker to view configuration ...
CVE-2001-0690 Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in ba...
E S
CVE-2001-0691 Buffer overflows in Washington University imapd 2000a through 2000c could allow local users without ...
S
CVE-2001-0692 SMTP proxy in WatchGuard Firebox (2500 and 4500) 4.5 and 4.6 allows a remote attacker to bypass fire...
E S
CVE-2001-0693 WebTrends HTTP Server 3.1c and 3.5 allows a remote attacker to view script source code via a filenam...
CVE-2001-0694 Directory traversal vulnerability in WFTPD 3.00 R5 allows a remote attacker to view arbitrary files ...
E S
CVE-2001-0695 WFTPD 3.00 R5 allows a remote attacker to cause a denial of service by making repeated requests to c...
E S
CVE-2001-0696 NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to cause a denial of service (crash) via a CD...
E S
CVE-2001-0697 NetWin SurgeFTP prior to 1.1h allows a remote attacker to cause a denial of service (crash) via an '...
E S
CVE-2001-0698 Directory traversal vulnerability in NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to list ...
E S
CVE-2001-0699 Buffer overflow in cb_reset in the System Service Processor (SSP) package of SunOS 5.8 allows a loca...
CVE-2001-0700 Buffer overflow in w3m 0.2.1 and earlier allows a remote attacker to execute arbitrary code via a lo...
E S
CVE-2001-0701 Buffer overflow in ptexec in the Sun Validation Test Suite 4.3 and earlier allows a local user to ga...
E S
CVE-2001-0702 Cerberus FTP 1.5 and earlier allows remote attackers to cause a denial of service, and possibly exec...
E
CVE-2001-0703 tradecli.dll in Arcadia Internet Store 1.0 allows a remote attacker to cause a denial of service via...
E S
CVE-2001-0704 tradecli.dll in Arcadia Internet Store 1.0 allows a remote attacker to discover the full path to the...
E S
CVE-2001-0705 Directory traversal vulnerability in tradecli.dll in Arcadia Internet Store 1.0 allows a remote atta...
E S
CVE-2001-0706 Maximum Rumpus FTP Server 2.0.3 dev and before allows an attacker to cause a denial of service (cras...
E S
CVE-2001-0707 Denicomp RSHD 2.18 and earlier allows a remote attacker to cause a denial of service (crash) via a l...
CVE-2001-0708 Denicomp REXECD 1.05 and earlier allows a remote attacker to cause a denial of service (crash) via a...
CVE-2001-0709 Microsoft IIS 4.0 and before, when installed on a FAT partition, allows a remote attacker to obtain ...
S
CVE-2001-0710 NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of ser...
E S
CVE-2001-0711 Cisco IOS 11.x and 12.0 with ATM support allows attackers to cause a denial of service via the undoc...
S
CVE-2001-0712 The rendering engine in Internet Explorer determines the MIME type independently of the type that is...
E S
CVE-2001-0713 Sendmail before 8.12.1 does not properly drop privileges when the -C option is used to load custom c...
CVE-2001-0714 Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to cause a d...
S
CVE-2001-0715 Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to obtain po...
E S
CVE-2001-0716 Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and earlier, allows re...
S
CVE-2001-0717 Format string vulnerability in ToolTalk database server rpc.ttdbserverd allows remote attackers to e...
S
CVE-2001-0718 Vulnerability in (1) Microsoft Excel 2002 and earlier and (2) Microsoft PowerPoint 2002 and earlier ...
S
CVE-2001-0719 Buffer overflow in Microsoft Windows Media Player 6.4 allows remote attackers to execute arbitrary c...
CVE-2001-0720 Internet Explorer 5.1 for Macintosh on Mac OS X allows remote attackers to execute arbitrary command...
CVE-2001-0721 Universal Plug and Play (UPnP) in Windows 98, 98SE, ME, and XP allows remote attackers to cause a de...
CVE-2001-0722 Internet Explorer 5.5 and 6.0 allows remote attackers to read and modify user cookies via Javascript...
E S
CVE-2001-0723 Internet Explorer 5.5 and 6.0 allows remote attackers to read and modify user cookies via Javascript...
E S
CVE-2001-0724 Internet Explorer 5.5 allows remote attackers to bypass security restrictions via malformed URLs tha...
CVE-2001-0726 Outlook Web Access (OWA) in Microsoft Exchange 5.5 Server, when used with Internet Explorer, does no...
S
CVE-2001-0727 Internet Explorer 6.0 allows remote attackers to execute arbitrary code by modifying the Content-Dis...
S
CVE-2001-0728 Buffer overflow in Compaq Management Agents before 5.2, included in Compaq Web-enabled Management So...
S
CVE-2001-0729 Apache 1.3.20 on Windows servers allows remote attackers to bypass the default index page and list d...
CVE-2001-0730 split-logfile in Apache 1.3.20 allows remote attackers to overwrite arbitrary files that end in the ...
CVE-2001-0731 Apache 1.3.20 with Multiviews enabled allows remote attackers to view directory contents and bypass ...
S
CVE-2001-0733 The #sinclude directive in Embedded Perl (ePerl) 2.2.14 and earlier allows a remote attacker to exec...
S
CVE-2001-0734 Hitachi Super-H architecture in NetBSD 1.5 and 1.4.1 allows a local user to gain privileges via modi...
S
CVE-2001-0735 Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows loca...
E S
CVE-2001-0736 Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local user...
S
CVE-2001-0737 A long 'synch' delay in Logitech wireless mice and keyboard receivers allows a remote attacker to hi...
E
CVE-2001-0738 LogLine function in klogd in sysklogd 1.3 in various Linux distributions allows an attacker to cause...
S
CVE-2001-0739 Guardian Digital WebTool in EnGarde Secure Linux 1.0.1 allows restarted services to inherit some env...
S
CVE-2001-0740 3COM OfficeConnect 812 and 840 ADSL Router 4.2, running OCR812 router software 1.1.9 and earlier, al...
E S
CVE-2001-0741 Cisco Hot Standby Routing Protocol (HSRP) allows local attackers to cause a denial of service by spo...
E
CVE-2001-0742 Buffer overflow in Computalynx CMail POP3 mail server 2.4.9 allows remote attackers to run arbitrary...
CVE-2001-0743 Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service...
E
CVE-2001-0744 Horde IMP 2.2.4 and earlier allows local users to overwrite files via a symlink attack on a temporar...
S
CVE-2001-0745 Netscape 4.7x allows remote attackers to obtain sensitive information such as the user's login, mail...
E
CVE-2001-0746 Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows rem...
E S
CVE-2001-0747 Buffer overflow in iPlanet Web Server (iWS) Enterprise Edition 4.1, service packs 3 through 7, allow...
S
CVE-2001-0748 Acme.Serve 1.7, as used in Cisco Secure ACS Unix and possibly other products, allows remote attacker...
CVE-2001-0749 Beck IPC GmbH IPC@CHIP Embedded-Webserver allows remote attackers to read arbitrary files via a webs...
E S
CVE-2001-0750 Cisco IOS 12.1(2)T, 12.1(3)T allow remote attackers to cause a denial of service (reload) via a conn...
S
CVE-2001-0751 Cisco switches and routers running CBOS 2.3.8 and earlier use predictable TCP Initial Sequence Numbe...
S
CVE-2001-0752 Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via an ICMP ECHO R...
S
CVE-2001-0753 Cisco CBOS 2.3.8 and earlier stores the passwords for (1) exec and (2) enable in cleartext in the NV...
S
CVE-2001-0754 Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via a series of la...
CVE-2001-0755 Buffer overflow in ftp daemon (ftpd) 6.2 in Debian GNU/Linux allows attackers to cause a denial of s...
CVE-2001-0756 CatalogMgr.pl in VirtualCatalog (incorrectly claimed to be in VirtualCart) allows remote attackers t...
S
CVE-2001-0757 Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) 12.1DC card does not properly disable a...
E S
CVE-2001-0758 Directory traversal vulnerability in Shambala 4.5 allows remote attackers to escape the FTP root dir...
CVE-2001-0759 Buffer overflow in bctool in Jetico BestCrypt 0.8.1 and earlier allows local users to execute arbitr...
E S
CVE-2001-0760 Citrix Nfuse 1.51 allows remote attackers to obtain the absolute path of the web root via a malforme...
E
CVE-2001-0761 Buffer overflow in HttpSave.dll in Trend Micro InterScan WebManager 1.2 allows remote attackers to e...
CVE-2001-0762 Buffer overflow in su-wrapper 1.1.1 allows local users to execute arbitrary code via a long first ar...
E
CVE-2001-0763 Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arb...
S
CVE-2001-0764 Buffer overflow in ntping in scotty 2.1.0 allows local users to execute arbitrary code via a long ho...
E S
CVE-2001-0765 BisonFTP V4R1 allows local users to access directories outside of their home directory by uploading ...
E S
CVE-2001-0766 Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access r...
E S
CVE-2001-0767 Directory traversal vulnerability in GuildFTPd 0.9.7 allows attackers to list or read arbitrary file...
S
CVE-2001-0768 GuildFTPd 0.9.7 stores user names and passwords in plaintext in the default.usr file, which allows l...
CVE-2001-0769 Memory leak in GuildFTPd Server 0.97 allows remote attackers to cause a denial of service via a requ...
CVE-2001-0770 Buffer overflow in GuildFTPd Server 0.97 allows remote attacker to execute arbitrary code via a long...
CVE-2001-0771 Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator access via a single character...
CVE-2001-0772 Buffer overflows and other vulnerabilities in multiple Common Desktop Environment (CDE) modules in H...
S
CVE-2001-0773 Cayman 3220-H DSL Router 1.0 allows remote attacker to cause a denial of service (crash) via a serie...
E
CVE-2001-0774 Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain pr...
S
CVE-2001-0775 Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in Linux allows remote attackers to execut...
E S
CVE-2001-0776 Buffer overflow in DynFX MailServer version 2.10 allows remote attackers to conduct a denial of serv...
S
CVE-2001-0777 Omnicron OmniHTTPd 2.0.8 allows remote attackers to cause a denial of service (memory exhaustion) vi...
E
CVE-2001-0778 OmniHTTPd 2.0.8 and earlier allow remote attackers to obtain source code via a GET request with the ...
E
CVE-2001-0779 Buffer overflow in rpc.yppasswdd (yppasswd server) in Solaris 2.6, 7 and 8 allows remote attackers t...
E S
CVE-2001-0780 Directory traversal vulnerability in cosmicpro.cgi in Cosmicperl Directory Pro 2.0 allows remote att...
E
CVE-2001-0781 Buffer overflow in SpoonFTP 1.0.0.12 allows remote attackers to execute arbitrary code via a long ar...
CVE-2001-0782 KDE ktvision 0.1.1-271 and earlier allows local attackers to gain root privileges via a symlink atta...
E
CVE-2001-0783 Cisco TFTP server 1.1 allows remote attackers to read arbitrary files via a ..(dot dot) attack in th...
E S
CVE-2001-0784 Directory traversal vulnerability in Icecast 1.3.10 and earlier allows remote attackers to read arbi...
E
CVE-2001-0785 Directory traversal in Webpaging interface in Internet Software Solutions Air Messenger LAN Server (...
CVE-2001-0786 Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 stores user passwords in plai...
CVE-2001-0787 LPRng in Red Hat Linux 7.0 and 7.1 does not properly drop memberships in supplemental groups when lo...
CVE-2001-0788 Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows remote attackers to ob...
E
CVE-2001-0789 Format string vulnerability in avpkeeper in Kaspersky KAV 3.5.135.2 for Sendmail allows remote attac...
S
CVE-2001-0790 Specter IDS version 4.5 and 5.0 allows a remote attacker to cause a denial of service (CPU exhaustio...
CVE-2001-0791 Trend Micro InterScan VirusWall for Windows NT allows remote attackers to make configuration changes...
CVE-2001-0792 Format string vulnerability in XChat 1.2.x allows remote attackers to execute arbitrary code via a m...
E
CVE-2001-0794 Buffer overflow in A-FTP Anonymous FTP Server allows remote attackers to cause a denial of service v...
CVE-2001-0795 Perception LiteServe 1.25 allows remote attackers to obtain source code of CGI scripts via URLs that...
E S
CVE-2001-0796 SGI IRIX 6.5 through 6.5.12f and possibly earlier versions, and FreeBSD 3.0, allows remote attackers...
S
CVE-2001-0797 Buffer overflow in login in various System V based operating systems allows remote attackers to exec...
E S
CVE-2001-0798 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0799 Buffer overflows in lpsched in IRIX 6.5.13f and earlier allow remote attackers to execute arbitrary ...
E S
CVE-2001-0800 lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell ...
S
CVE-2001-0801 lpstat in IRIX 6.5.13f and earlier allows local users to gain root privileges by specifying a Trojan...
E S
CVE-2001-0802 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0803 Buffer overflow in the client connection routine of libDtSvc.so.1 in CDE Subprocess Control Service ...
S
CVE-2001-0804 Directory traversal vulnerability in story.pl in Interactive Story 1.3 allows a remote attacker to r...
E S
CVE-2001-0805 Directory traversal vulnerability in ttawebtop.cgi in Tarantella Enterprise 3.00 and 3.01 allows rem...
E S
CVE-2001-0806 Apple MacOS X 10.0 and 10.1 allow a local user to read and write to a user's desktop folder via inse...
S
CVE-2001-0807 Internet Explorer 5.0, and possibly other versions, may allow remote attackers (malicious web pages)...
E
CVE-2001-0808 gnatsweb.pl in GNATS GnatsWeb 2.7 through 3.95 allows remote attackers to execute arbitrary commands...
S
CVE-2001-0809 Vulnerability in CIFS/9000 Server (SAMBA) A.01.06 and earlier in HP-UX 11.0 and 11.11, when configur...
S
CVE-2001-0810 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0811 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0812 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0813 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0814 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2001-0815 Buffer overflow in PerlIS.dll in Activestate ActivePerl 5.6.1.629 and earlier allows remote attacker...
E S
CVE-2001-0816 OpenSSH before 2.9.9, when running sftp using sftp-server and using restricted keypairs, allows remo...
S
CVE-2001-0817 Vulnerability in HP-UX line printer daemon (rlpdaemon) in HP-UX 10.01 through 11.11 allows remote at...
S
CVE-2001-0818 A buffer overflow the '\s' console command in MDBMS 0.99b9 and earlier allows remote attackers to ex...
E S
CVE-2001-0819 A buffer overflow in Linux fetchmail before 5.8.6 allows remote attackers to execute arbitrary code ...
S
CVE-2001-0820 Buffer overflows in GazTek ghttpd 1.4 allows a remote attacker to execute arbitrary code via long ar...
E
CVE-2001-0821 The default configuration of DCShop 1.002 beta places sensitive files in the cgi-bin directory, whic...
E S
CVE-2001-0822 FPF kernel module 1.0 allows a remote attacker to cause a denial of service via fragmented packets....
E S
CVE-2001-0823 The pmpost program in Performance Co-Pilot (PCP) before 2.2.1-3 allows a local user to gain privileg...
E S
CVE-2001-0824 Cross-site scripting vulnerability in IBM WebSphere 3.02 and 3.5 FP2 allows remote attackers to exec...
E S
CVE-2001-0825 Buffer overflow in internal string handling routines of xinetd before 2.1.8.8 allows remote attacker...
S
CVE-2001-0826 Buffer overflows in CesarFTPD 0.98b allows remote attackers to execute arbitrary commands via long a...
CVE-2001-0827 Cerberus FTP server 1.0 - 1.5 allows remote attackers to cause a denial of service (crash) via a lar...
S
CVE-2001-0828 A cross-site scripting vulnerability in Caucho Technology Resin before 1.2.4 allows a malicious webm...
E S
CVE-2001-0829 A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Ja...
E S
CVE-2001-0830 6tunnel 0.08 and earlier does not properly close sockets that were initiated by a client, which allo...
E
CVE-2001-0831 Unknown vulnerability in Oracle Label Security in Oracle 8.1.7 and 9.0.1, when audit functionality, ...
S
CVE-2001-0832 Vulnerability in Oracle 8.0.x through 9.0.1 on Unix allows local users to overwrite arbitrary files,...
S
CVE-2001-0833 Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary cod...
S
CVE-2001-0834 htsearch CGI program in htdig (ht://Dig) 3.1.5 and earlier allows remote attackers to use the -c opt...
S
CVE-2001-0835 Cross-site scripting vulnerability in Webalizer 2.01-06, and possibly other versions, allows remote ...
S
CVE-2001-0836 Buffer overflow in Oracle9iAS Web Cache 2.0.0.1 allows remote attackers to execute arbitrary code vi...
CVE-2001-0837 DeltaThree Pc-To-Phone 3.0.3 places sensitive data in world-readable locations in the installation d...
CVE-2001-0838 Format string vulnerability in Network Solutions Rwhoisd 1.5.x allows remote attackers to execute ar...
CVE-2001-0839 ibillpm.pl in iBill password management system generates weak passwords based on a client's MASTER_A...
E
CVE-2001-0840 Buffer overflow in Compaq Insight Manager XE 2.1b and earlier allows remote attackers to execute arb...
S
CVE-2001-0841 Directory traversal vulnerability in Search.cgi in Ikonboard ib219 and earlier allows remote attacke...
CVE-2001-0842 Directory traversal vulnerability in Search.cgi in Leoboard LB5000 LB5000II 1029 and earlier allows ...
CVE-2001-0843 Squid proxy server 2.4 and earlier allows remote attackers to cause a denial of service (crash) via ...
S
CVE-2001-0844 Vulnerability in (1) Book of guests and (2) Post it! allows remote attackers to execute arbitrary co...
CVE-2001-0845 Vulnerability in DECwindows Motif Server on OpenVMS VAX or Alpha 6.2 through 7.3, and SEVMS VAX or A...
S
CVE-2001-0846 Lotus Domino 5.x allows remote attackers to read files or execute arbitrary code by requesting the R...
CVE-2001-0847 Lotus Domino Web Server 5.x allows remote attackers to gain sensitive information by accessing the d...
CVE-2001-0848 join.cfm in e-Zone Media Fuse Talk allows a local user to execute arbitrary SQL code via a semi-colo...
CVE-2001-0849 viralator CGI script in Viralator 0.9pre1 and earlier allows remote attackers to execute arbitrary c...
S
CVE-2001-0850 A configuration error in the libdb1 package in OpenLinux 3.1 uses insecure versions of the snprintf ...
S
CVE-2001-0851 Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rul...
S
CVE-2001-0852 TUX HTTP server 2.1.0-2 in Red Hat Linux allows remote attackers to cause a denial of service via a ...
CVE-2001-0853 Directory traversal vulnerability in Entrust GetAccess allows remote attackers to read arbitrary fil...
S
CVE-2001-0854 PHP-Nuke 5.2 allows remote attackers to copy and delete arbitrary files by calling case.filemanager....
CVE-2001-0855 Buffer overflow in db_loader in ClearCase 4.2 and earlier allows local users to gain root privileges...
CVE-2001-0856 Common Cryptographic Architecture (CCA) in IBM 4758 allows an attacker with physical access to the s...
E S
CVE-2001-0857 Cross-site scripting vulnerability in status.php3 in Imp Webmail 2.2.6 and earlier allows remote att...
CVE-2001-0858 Buffer overflow in pppattach and other linked PPP utilities in Caldera Open Unix 8.0 and UnixWare 7....
S
CVE-2001-0859 2.4.3-12 kernel in Red Hat Linux 7.1 Korean installation program sets the setting default umask for ...
S
CVE-2001-0860 Terminal Services Manager MMC in Windows 2000 and XP trusts the Client Address (IP address) that is ...
CVE-2001-0861 Cisco 12000 with IOS 12.0 and line cards based on Engine 2 and earlier allows remote attackers to ca...
S
CVE-2001-0862 Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragmen...
CVE-2001-0863 Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in...
CVE-2001-0864 Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "de...
S
CVE-2001-0865 Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword i...
S
CVE-2001-0866 Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL ...
CVE-2001-0867 Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly filter does not properl...
CVE-2001-0868 Red Hat Stronghold 2.3 to 3.0 allows remote attackers to retrieve system information via an HTTP GET...
CVE-2001-0869 Format string vulnerability in the default logging callback function _sasl_syslog in common.c in Cyr...
S
CVE-2001-0870 HTTP server in Alchemy Eye and Alchemy Network Monitor 1.9x through 2.6.18 is enabled without authen...
S
CVE-2001-0871 Directory traversal vulnerability in HTTP server for Alchemy Eye and Alchemy Network Monitor allows ...
CVE-2001-0872 OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment varia...
S
CVE-2001-0873 uuxqt in Taylor UUCP package does not properly remove dangerous long options, which allows local use...
E S
CVE-2001-0874 Internet Explorer 5.5 and 6.0 allow remote attackers to read certain files via HTML that passes info...
S
CVE-2001-0875 Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to mis...
E S
CVE-2001-0876 Buffer overflow in Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP allows remote atta...
S
CVE-2001-0877 Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP allows remote attackers to cause a de...
S
CVE-2001-0879 Format string vulnerability in the C runtime functions in SQL Server 7.0 and 2000 allows attackers t...
S
CVE-2001-0884 Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain ...
S
CVE-2001-0886 Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and ...
S
CVE-2001-0887 xSANE 0.81 and earlier allows local users to modify files of other xSANE users via a symlink attack ...
S
CVE-2001-0888 Atmel Firmware 1.3 Wireless Access Point (WAP) allows remote attackers to cause a denial of service ...
CVE-2001-0889 Exim 3.22 and earlier, in some configurations, does not properly verify the local part of an address...
S
CVE-2001-0890 Certain backend drivers in the SANE library 1.0.3 and earlier, as used in frontend software such as ...
S
CVE-2001-0891 Format string vulnerability in NQS daemon (nqsdaemon) in NQE 3.3.0.16 for CRAY UNICOS and SGI IRIX a...
S
CVE-2001-0892 Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to...
CVE-2001-0893 Acme mini_httpd before 1.16 allows remote attackers to view sensitive files under the document root ...
CVE-2001-0894 Vulnerability in Postfix SMTP server before 20010228-pl07, when configured to email the postmaster w...
S
CVE-2001-0895 Multiple Cisco networking products allow remote attackers to cause a denial of service on the local ...
S
CVE-2001-0896 Inetd in OpenServer 5.0.5 allows remote attackers to cause a denial of service (crash) via a port sc...
CVE-2001-0897 Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remo...
CVE-2001-0898 Opera 6.0 and earlier allows remote attackers to access sensitive information such as cookies and li...
CVE-2001-0899 Network Tools 0.2 for PHP-Nuke allows remote attackers to execute commands on the server via shell m...
S
CVE-2001-0900 Directory traversal vulnerability in modules.php in Gallery before 1.2.3 allows remote attackers to ...
CVE-2001-0901 Hypermail allows remote attackers to execute arbitrary commands on a server supporting SSI via an at...
CVE-2001-0902 Microsoft IIS 5.0 allows remote attackers to spoof web log entries via an HTTP request that includes...
CVE-2001-0903 Linear key exchange process in High-bandwidth Digital Content Protection (HDCP) System allows remote...
CVE-2001-0904 Internet Explorer 5.5 and 6 with the Q312461 (MS01-055) patch modifies the HTTP_USER_AGENT (UserAgen...
CVE-2001-0905 Race condition in signal handling of procmail 3.20 and earlier, when running setuid, allows local us...
S
CVE-2001-0906 teTeX filter before 1.0.7 allows local users to gain privileges via a symlink attack on temporary fi...
E S
CVE-2001-0907 Linux kernel 2.2.1 through 2.2.19, and 2.4.1 through 2.4.10, allows local users to cause a denial of...
CVE-2001-0908 CITRIX Metaframe 1.8 logs the Client Address (IP address) that is provided by the client instead of ...
CVE-2001-0909 Buffer overflow in helpctr.exe program in Microsoft Help Center for Windows XP allows remote attacke...
E
CVE-2001-0910 Legato Networker before 6.1 allows remote attackers to bypass access restrictions and gain privilege...
CVE-2001-0911 PHP-Nuke 5.1 stores user and administrator passwords in a base-64 encoded cookie, which could allow ...
CVE-2001-0912 Packaging error for expect 8.3.3 in Mandrake Linux 8.1 causes expect to search for its libraries in ...
S
CVE-2001-0913 Format string vulnerability in Network Solutions Rwhoisd 1.5.7.2 and earlier, when using syslog, all...
S
CVE-2001-0914 Linux kernel before 2.4.11pre3 in multiple Linux distributions allows local users to cause a denial ...
CVE-2001-0915 Format string vulnerability in Berkeley parallel make (pmake) 2.1.33 and earlier allows a local user...
CVE-2001-0916 Buffer overflow in Berkeley parallel make (pmake) 2.1.33 and earlier allows a local user to gain roo...
CVE-2001-0917 Jakarta Tomcat 4.0.1 allows remote attackers to reveal physical path information by requesting a lon...
CVE-2001-0918 Vulnerabilities in CGI scripts in susehelp in SuSE 7.2 and 7.3 allow remote attackers to execute arb...
S
CVE-2001-0919 Internet Explorer 5.50.4134.0100 on Windows ME with "Prompt to allow cookies to be stored on your ma...
CVE-2001-0920 Format string vulnerability in auto nice daemon (AND) 1.0.4 and earlier allows a local user to possi...
S
CVE-2001-0921 Netscape 4.79 and earlier for MacOS allows an attacker with access to the browser to obtain password...
CVE-2001-0922 ndcgi.exe in Netdynamics 4.x through 5.x, and possibly earlier versions, allows remote attackers to ...
S
CVE-2001-0923 RPM Package Manager 4.0.x through 4.0.2.x allows an attacker to execute arbitrary code via corrupted...
E S
CVE-2001-0924 Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attacke...
E S
CVE-2001-0925 The default installation of Apache before 1.3.19 allows remote attackers to list directories instead...
E S
CVE-2001-0926 SSIFilter in Allaire JRun 3.1, 3.0 and 2.3.3 allows remote attackers to obtain source code for Java ...
S
CVE-2001-0927 Format string vulnerability in the permitted function of GNOME libgtop_daemon in libgtop 1.0.12 and ...
S
CVE-2001-0928 Buffer overflow in the permitted function of GNOME gtop daemon (libgtop_daemon) in libgtop 1.0.13 an...
S
CVE-2001-0929 Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated S...
S
CVE-2001-0930 Sendpage.pl allows remote attackers to execute arbitrary commands via a message containing shell met...
CVE-2001-0931 Directory traversal vulnerability in Cooolsoft PowerFTP Server 2.03 allows attackers to list or read...
CVE-2001-0932 Buffer overflow in Cooolsoft PowerFTP Server 2.03 allows remote attackers to cause a denial of servi...
E
CVE-2001-0933 Cooolsoft PowerFTP Server 2.03 allows remote attackers to list the contents of arbitrary drives via ...
CVE-2001-0934 Cooolsoft PowerFTP Server 2.03 allows remote attackers to obtain the physical path of the server roo...
CVE-2001-0935 Vulnerability in wu-ftpd 2.6.0, and possibly earlier versions, which is unrelated to the ftpglob bug...
CVE-2001-0936 Buffer overflow in Frox transparent FTP proxy 0.6.6 and earlier, with the local caching method selec...
S
CVE-2001-0937 PGPMail.pl 1.31 allows remote attackers to execute arbitrary commands via shell metacharacters in th...
CVE-2001-0938 Directory traversal vulnerability in AspUpload 2.1, in certain configurations, allows remote attacke...
CVE-2001-0939 Lotus Domino 5.08 and earlier allows remote attackers to cause a denial of service (crash) via a Sun...
S
CVE-2001-0940 Buffer overflow in the GUI authentication code of Check Point VPN-1/FireWall-1 Management Server 4.0...
S
CVE-2001-0941 Buffer overflow in dbsnmp in Oracle 8.0.6 through 9.0.1 allows local users to execute arbitrary code...
S
CVE-2001-0942 dbsnmp in Oracle 8.1.6 and 8.1.7 uses the ORACLE_HOME environment variable to find and execute the d...
S
CVE-2001-0943 dbsnmp in Oracle 8.0.5 and 8.1.5, under certain conditions, trusts the PATH environment variable to ...
E S
CVE-2001-0944 DDE in mIRC allows local users to launch applications under another user's account via a DDE message...
CVE-2001-0945 Buffer overflow in Outlook Express 5.0 through 5.02 for Macintosh allows remote attackers to cause a...
CVE-2001-0946 apmscript in Apmd in Red Hat 7.2 "Enigma" allows local users to create or change the modification da...
CVE-2001-0947 Forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows rem...
S
CVE-2001-0948 Cross-site scripting (CSS) vulnerability in ValiCert Enterprise Validation Authority (EVA) 3.3 throu...
S
CVE-2001-0949 Buffer overflows in forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) Administ...
S
CVE-2001-0950 ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 uses insuffic...
E S
CVE-2001-0951 Windows 2000 allows remote attackers to cause a denial of service (CPU consumption) by flooding Inte...
E
CVE-2001-0952 THQ Volition Red Faction Game allows remote attackers to cause a denial of service (hang) of a clien...
E
CVE-2001-0953 Kebi WebMail allows remote attackers to access the administrator menu and gain privileges via the /a...
CVE-2001-0954 Lotus Domino 5.0.5 and 5.0.8, and possibly other versions, allows remote attackers to cause a denial...
CVE-2001-0955 Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, a...
S
CVE-2001-0956 speechd 0.54 and earlier, with the Festival or rsynth speech synthesis package, allows attackers to ...
E S
CVE-2001-0958 Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3.51 and 3.51J allow ...
E S
CVE-2001-0959 Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 creates a hidden share named ARC...
S
CVE-2001-0960 Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 stores the backup agent user nam...
S
CVE-2001-0961 Buffer overflow in tab expansion capability of the most program allows local or remote attackers to ...
S
CVE-2001-0962 IBM WebSphere Application Server 3.02 through 3.53 uses predictable session IDs for cookies, which a...
CVE-2001-0963 Directory traversal vulnerability in SpoonFTP 1.1 allows local and sometimes remote attackers to acc...
E S
CVE-2001-0964 Buffer overflow in client for Half-Life 1.1.0.8 and earlier allows malicious remote servers to execu...
CVE-2001-0965 glFTPD 1.23 allows remote attackers to cause a denial of service (CPU consumption) via a LIST comman...
E S
CVE-2001-0966 Directory traversal vulnerability in Nudester 1.10 and earlier allows remote attackers to read or wr...
E S
CVE-2001-0967 Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords ...
S
CVE-2001-0968 Knox Arkeia server 4.2, and possibly other versions, installs its root user with a null password by ...
CVE-2001-0969 ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces...
S
CVE-2001-0970 Cross-site scripting vulnerability in TDForum 1.2 CGI script (tdforum12.cgi) allows remote attackers...
CVE-2001-0971 Directory traversal vulnerability in ACI 4d webserver allows remote attackers to read arbitrary file...
E
CVE-2001-0972 Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remot...
S
CVE-2001-0973 BSCW groupware system 3.3 through 4.0.2 beta allows remote attackers to read or modify arbitrary fil...
S
CVE-2001-0974 Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow rem...
S
CVE-2001-0975 Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow r...
S
CVE-2001-0976 Vulnerability in HP Process Resource Manager (PRM) C.01.08.2 and earlier, as used by HP-UX Workload ...
S
CVE-2001-0977 slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial...
S
CVE-2001-0978 login in HP-UX 10.26 does not record failed login attempts in /var/adm/btmp, which could allow attac...
S
CVE-2001-0979 Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain p...
E S
CVE-2001-0980 docview before 1.0-15 allows remote attackers to execute arbitrary commands via shell metacharacters...
E S
CVE-2001-0981 HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the "unix password sync" option enabled calls t...
S
CVE-2001-0982 Directory traversal vulnerability in IBM Tivoli WebSEAL Policy Director 3.01 through 3.7.1 allows re...
S
CVE-2001-0983 UltraEdit uses weak encryption to record FTP passwords in the uedit32.ini file, which allows local u...
E
CVE-2001-0984 Password Safe 1.7(1) leaves cleartext passwords in memory when a user copies the password to the cli...
CVE-2001-0985 shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary command...
E S
CVE-2001-0986 SQLQHit.asp sample file in Microsoft Index Server 2.0 allows remote attackers to obtain sensitive in...
E S
CVE-2001-0987 Cross-site scripting vulnerability in CGIWrap before 3.7 allows remote attackers to execute arbitrar...
E S
CVE-2001-0988 Arkeia backup server 4.2.8-2 and earlier creates its database files with world-writable permissions,...
CVE-2001-0989 Buffer overflows in Pileup before 1.2 allows local users to gain root privileges via (1) long comman...
S
CVE-2001-0990 Inter7 vpopmail 4.10.35 and earlier, when using the MySQL module, compiles authentication informatio...
S
CVE-2001-0991 Cross-site scripting vulnerability in Proxomitron Naoko-4 BetaFour and earlier allows remote attacke...
E S
CVE-2001-0992 shopplus.cgi in ShopPlus shopping cart allows remote attackers to execute arbitrary commands via she...
E
CVE-2001-0993 sendmsg function in NetBSD 1.3 through 1.5 allows local users to cause a denial of service (kernel t...
S
CVE-2001-0994 Marconi ForeThought 7.1 allows remote attackers to cause a denial of service by causing both telnet ...
CVE-2001-0995 PHProjekt before 2.4a allows remote attackers to perform actions as other PHProjekt users by modifyi...
S
CVE-2001-0996 POP3Lite before 0.2.4 does not properly quote a . (dot) in an email message, which could allow a rem...
E S
CVE-2001-0997 Textor Webmasters Ltd listrec.pl CGI program allows remote attackers to execute arbitrary commands v...
E
CVE-2001-0998 IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection to...
E S
CVE-2001-0999 Outlook Express 6.00 allows remote attackers to execute arbitrary script by embedding SCRIPT tags in...
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.