Search
Total
27796 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2001-0668 | 1 Hp | 1 Hp-ux | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in line printer daemon (rlpdaemon) in HP-UX 10.01 through 11.11 allows remote attackers to execute arbitrary commands. | |||||
| CVE-2001-0670 | 4 Bsd, Freebsd, Netbsd and 1 more | 4 Bsd, Freebsd, Netbsd and 1 more | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in BSD line printer daemon (in.lpd or lpd) in various BSD-based operating systems allows remote attackers to execute arbitrary code via an incomplete print job followed by a request to display the printer queue. | |||||
| CVE-2001-0675 | 1 Ritlabs | 1 The Bat | 2017-10-10 | 5.0 MEDIUM | N/A |
| Rit Research Labs The Bat! 1.51 for Windows allows a remote attacker to cause a denial of service by sending an email to a user's account containing a carriage return <CR> that is not followed by a line feed <LF>. | |||||
| CVE-2001-0676 | 1 Ritlabs | 1 The Bat | 2017-10-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in Rit Research Labs The Bat! 1.48f and earlier allows a remote attacker to create arbitrary files via a "dot dot" attack in the filename for an attachment. | |||||
| CVE-2001-0677 | 1 Qualcomm | 1 Eudora | 2017-10-10 | 5.0 MEDIUM | N/A |
| Eudora 5.0.2 allows a remote attacker to read arbitrary files via an email with the path of the target file in the "Attachment Converted" MIME header, which sends the file when the email is forwarded to the attacker by the user. | |||||
| CVE-2001-0741 | 1 Cisco | 1 Hsrp | 2017-10-10 | 2.1 LOW | N/A |
| Cisco Hot Standby Routing Protocol (HSRP) allows local attackers to cause a denial of service by spoofing HSRP packets. | |||||
| CVE-2001-0680 | 1 Qpc Software | 2 Avt Term, Qvt Net | 2017-10-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in ftpd in QPC QVT/Net 4.0 and AVT/Term 5.0 allows a remote attacker to traverse directories on the web server via a "dot dot" attack in a LIST (ls) command. | |||||
| CVE-2001-0682 | 1 Zonelabs | 1 Zonealarm | 2017-10-10 | 2.1 LOW | N/A |
| ZoneAlarm and ZoneAlarm Pro allows a local attacker to cause a denial of service by running a trojan to initialize a ZoneAlarm mutex object which prevents ZoneAlarm from starting. | |||||
| CVE-2001-0685 | 1 Thibault Godouet | 1 Fcron | 2017-10-10 | 2.6 LOW | N/A |
| Thibault Godouet FCron prior to 1.1.1 allows a local user to corrupt another user's crontab file via a symlink attack on the fcrontab temporary file. | |||||
| CVE-2001-0690 | 4 Conectiva, Debian, Redhat and 1 more | 4 Linux, Debian Linux, Linux and 1 more | 2017-10-10 | 7.5 HIGH | N/A |
| Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers. | |||||
| CVE-2001-0692 | 1 Watchguard | 2 Firebox 2500, Firebox 4500 | 2017-10-10 | 7.5 HIGH | N/A |
| SMTP proxy in WatchGuard Firebox (2500 and 4500) 4.5 and 4.6 allows a remote attacker to bypass firewall filtering via a base64 MIME encoded email attachment whose boundary name ends in two dashes. | |||||
| CVE-2001-0873 | 1 Ian Lance Taylor | 1 Taylor Uucp | 2017-10-10 | 7.2 HIGH | N/A |
| uuxqt in Taylor UUCP package does not properly remove dangerous long options, which allows local users to gain privileges by calling uux and specifying an alternate configuration file with the --config option. | |||||
| CVE-2001-0696 | 1 Netwin | 1 Surgeftp | 2017-10-10 | 5.0 MEDIUM | N/A |
| NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to cause a denial of service (crash) via a CD command to a directory with an MS-DOS device name such as con. | |||||
| CVE-2001-0697 | 1 Netwin | 1 Surgeftp | 2017-10-10 | 5.0 MEDIUM | N/A |
| NetWin SurgeFTP prior to 1.1h allows a remote attacker to cause a denial of service (crash) via an 'ls ..' command. | |||||
| CVE-2001-0698 | 1 Netwin | 1 Surgeftp | 2017-10-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to list arbitrary files and directories via the 'nlist ...' command. | |||||
| CVE-2001-0700 | 1 W3m | 1 W3m | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in w3m 0.2.1 and earlier allows a remote attacker to execute arbitrary code via a long base64 encoded MIME header. | |||||
| CVE-2001-0706 | 1 Maxum Development Corporation | 1 Rumpus Ftp Server | 2017-10-10 | 2.1 LOW | N/A |
| Maximum Rumpus FTP Server 2.0.3 dev and before allows an attacker to cause a denial of service (crash) via a mkdir command that specifies a large number of sub-folders. | |||||
| CVE-2001-0710 | 2 Freebsd, Netbsd | 2 Freebsd, Netbsd | 2017-10-10 | 5.0 MEDIUM | N/A |
| NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of service by sending a large number of IP fragments to the machine, exhausting the mbuf pool. | |||||
| CVE-2001-0716 | 1 Citrix | 1 Metaframe | 2017-10-10 | 5.0 MEDIUM | N/A |
| Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and earlier, allows remote attackers to cause a denial of service (crash) via a large number of incomplete connections to the server. | |||||
| CVE-2001-0728 | 1 Compaq | 1 Management Agents | 2017-10-10 | 4.6 MEDIUM | N/A |
| Buffer overflow in Compaq Management Agents before 5.2, included in Compaq Web-enabled Management Software, allows local users to gain privileges. | |||||
| CVE-2001-0733 | 1 Ralf S. Engelschall | 1 Eperl | 2017-10-10 | 7.5 HIGH | N/A |
| The #sinclude directive in Embedded Perl (ePerl) 2.2.14 and earlier allows a remote attacker to execute arbitrary code by modifying the 'sinclude' file to point to another file that contains a #include directive that references a file that contains the code. | |||||
| CVE-2001-0749 | 1 Beck Ipc Gmbh | 1 Ipc At Chip Embedded-webserver | 2017-10-10 | 7.5 HIGH | N/A |
| Beck IPC GmbH IPC@CHIP Embedded-Webserver allows remote attackers to read arbitrary files via a webserver root directory set to system root. | |||||
| CVE-2001-0738 | 2 Debian, Immunix | 2 Debian Linux, Immunix | 2017-10-10 | 5.0 MEDIUM | N/A |
| LogLine function in klogd in sysklogd 1.3 in various Linux distributions allows an attacker to cause a denial of service (hang) by causing null bytes to be placed in log messages. | |||||
| CVE-2001-0739 | 1 Engardelinux | 1 Secure Linux | 2017-10-10 | 7.2 HIGH | N/A |
| Guardian Digital WebTool in EnGarde Secure Linux 1.0.1 allows restarted services to inherit some environmental variables, which could allow local users to gain root privileges. | |||||
| CVE-2001-0740 | 1 3com | 2 3c840-us, 3cp4144 | 2017-10-10 | 5.0 MEDIUM | N/A |
| 3COM OfficeConnect 812 and 840 ADSL Router 4.2, running OCR812 router software 1.1.9 and earlier, allows remote attackers to cause a denial of service via a long string containing a large number of "%s" strings, possibly triggering a format string vulnerability. | |||||
| CVE-2001-0745 | 1 Netscape | 1 Messanger | 2017-10-10 | 5.0 MEDIUM | N/A |
| Netscape 4.7x allows remote attackers to obtain sensitive information such as the user's login, mailbox location and installation path via Javascript that accesses the mailbox: URL in the document.referrer property. | |||||
| CVE-2001-0750 | 1 Cisco | 1 Ios | 2017-10-10 | 5.0 MEDIUM | N/A |
| Cisco IOS 12.1(2)T, 12.1(3)T allow remote attackers to cause a denial of service (reload) via a connection to TCP ports 3100-3999, 5100-5999, 7100-7999 and 10100-10999. | |||||
| CVE-2001-0751 | 1 Cisco | 1 Cbos | 2017-10-10 | 7.5 HIGH | N/A |
| Cisco switches and routers running CBOS 2.3.8 and earlier use predictable TCP Initial Sequence Numbers (ISN), which allows remote attackers to spoof or hijack TCP connections. | |||||
| CVE-2001-0752 | 1 Cisco | 1 Cbos | 2017-10-10 | 5.0 MEDIUM | N/A |
| Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via an ICMP ECHO REQUEST (ping) with the IP Record Route option set. | |||||
| CVE-2001-0754 | 1 Cisco | 1 Cbos | 2017-10-10 | 5.0 MEDIUM | N/A |
| Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via a series of large ICMP ECHO REPLY (ping) packets, which cause it to enter ROMMON mode and stop forwarding packets. | |||||
| CVE-2001-0757 | 1 Cisco | 1 6400 Nrp 2 | 2017-10-10 | 7.5 HIGH | N/A |
| Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) 12.1DC card does not properly disable access when a password has not been set for vtys, which allows remote attackers to obtain access via telnet. | |||||
| CVE-2001-0760 | 1 Citrix | 1 Nfuse | 2017-10-10 | 5.0 MEDIUM | N/A |
| Citrix Nfuse 1.51 allows remote attackers to obtain the absolute path of the web root via a malformed request to launch.asp that does not provide the session field. | |||||
| CVE-2001-0912 | 1 Mandrakesoft | 1 Mandrake Linux | 2017-10-10 | 7.2 HIGH | N/A |
| Packaging error for expect 8.3.3 in Mandrake Linux 8.1 causes expect to search for its libraries in the /home/snailtalk directory before other directories, which could allow a local user to gain root privileges. | |||||
| CVE-2001-0764 | 1 Juergen Schoenwaelder | 1 Scotty | 2017-10-10 | 7.2 HIGH | N/A |
| Buffer overflow in ntping in scotty 2.1.0 allows local users to execute arbitrary code via a long hostname as a command line argument. | |||||
| CVE-2001-0765 | 1 Bisonware | 1 Bison Ftp Server | 2017-10-10 | 4.6 MEDIUM | N/A |
| BisonFTP V4R1 allows local users to access directories outside of their home directory by uploading .bdl files, which can then be linked to other directories. | |||||
| CVE-2001-0769 | 1 Steve Poulsen | 1 Guildftpd | 2017-10-10 | 5.0 MEDIUM | N/A |
| Memory leak in GuildFTPd Server 0.97 allows remote attackers to cause a denial of service via a request containing a null character. | |||||
| CVE-2001-0770 | 1 Steve Poulsen | 1 Guildftpd | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in GuildFTPd Server 0.97 allows remote attacker to execute arbitrary code via a long SITE command. | |||||
| CVE-2001-0773 | 1 Cayman | 1 3220-h Dsl Router | 2017-10-10 | 5.0 MEDIUM | N/A |
| Cayman 3220-H DSL Router 1.0 allows remote attacker to cause a denial of service (crash) via a series of SYN or TCP connect requests. | |||||
| CVE-2001-0774 | 1 Tripwire | 1 Tripwire | 2017-10-10 | 4.6 MEDIUM | N/A |
| Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain privileges via a symbolic link attack on temporary files. | |||||
| CVE-2001-0784 | 1 Icecast | 1 Icecast | 2017-10-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in Icecast 1.3.10 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack using encoded URL characters. | |||||
| CVE-2001-0787 | 1 Redhat | 1 Linux | 2017-10-10 | 4.6 MEDIUM | N/A |
| LPRng in Red Hat Linux 7.0 and 7.1 does not properly drop memberships in supplemental groups when lowering privileges, which could allow a local user to elevate privileges. | |||||
| CVE-2001-0796 | 2 Freebsd, Sgi | 2 Freebsd, Irix | 2017-10-10 | 5.0 MEDIUM | N/A |
| SGI IRIX 6.5 through 6.5.12f and possibly earlier versions, and FreeBSD 3.0, allows remote attackers to cause a denial of service via a malformed IGMP multicast packet with a small response delay. | |||||
| CVE-2001-0801 | 1 Sgi | 1 Irix | 2017-10-10 | 7.2 HIGH | N/A |
| lpstat in IRIX 6.5.13f and earlier allows local users to gain root privileges by specifying a Trojan Horse nettype shared library. | |||||
| CVE-2001-0804 | 1 Valerie Mates | 1 Interactive Story | 2017-10-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in story.pl in Interactive Story 1.3 allows a remote attacker to read arbitrary files via a .. (dot dot) attack on the "next" parameter. | |||||
| CVE-2001-0805 | 1 Tarantella | 1 Tarantella Enterprise | 2017-10-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in ttawebtop.cgi in Tarantella Enterprise 3.00 and 3.01 allows remote attackers to read arbitrary files via a .. (dot dot) in the pg parameter. | |||||
| CVE-2001-0806 | 1 Apple | 1 Mac Os X | 2017-10-10 | 3.6 LOW | N/A |
| Apple MacOS X 10.0 and 10.1 allow a local user to read and write to a user's desktop folder via insecure default permissions for the Desktop when it is created in some languages. | |||||
| CVE-2001-0815 | 1 Activestate | 1 Activeperl | 2017-10-10 | 7.5 HIGH | N/A |
| Buffer overflow in PerlIS.dll in Activestate ActivePerl 5.6.1.629 and earlier allows remote attackers to execute arbitrary code via an HTTP request for a long filename that ends in a .pl extension. | |||||
| CVE-2001-0822 | 1 Packet Knights | 1 Fpf Linux Kernel Module | 2017-10-10 | 5.0 MEDIUM | N/A |
| FPF kernel module 1.0 allows a remote attacker to cause a denial of service via fragmented packets. | |||||
| CVE-2001-0828 | 1 Caucho Technology | 1 Resin | 2017-10-10 | 5.1 MEDIUM | N/A |
| A cross-site scripting vulnerability in Caucho Technology Resin before 1.2.4 allows a malicious webmaster to embed Javascript in a hyperlink that ends in a .jsp extension, which causes an error message that does not properly quote the Javascript. | |||||
| CVE-2001-0830 | 1 Pld | 1 6tunnel | 2017-10-10 | 5.0 MEDIUM | N/A |
| 6tunnel 0.08 and earlier does not properly close sockets that were initiated by a client, which allows remote attackers to cause a denial of service (resource exhaustion) by repeatedly connecting to and disconnecting from the server. | |||||