275851
|
- |
|
web_crossing
|
webx
|
WebX stores authentication information in the HTTP_REFERER variable, which is included in URL links within bulletin board messages posted by users, which could allow remote attackers to hijack user s…
|
NVD-CWE-Other
|
CVE-2001-1532
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275852
|
- |
|
open_source_development_network
|
slashcode
|
Slashcode 2.0 creates new accounts with an 8-character random password, which could allow local users to obtain session ID's from cookies and gain unauthorized access via a brute force attack.
|
NVD-CWE-Other
|
CVE-2001-1535
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275853
|
- |
|
speedxess
|
ha-120_dsl_router
|
SpeedXess HA-120 DSL router has a default administrative password of "speedxess", which allows remote attackers to gain access.
|
NVD-CWE-Other
|
CVE-2001-1538
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275854
|
- |
|
david_f._mischler
|
iproute
|
IPRoute 0.973, 0.974 and 1.18 allows remote attackers to cause a denial of service via fragmented IP packets that split the TCP header.
|
NVD-CWE-Other
|
CVE-2001-1540
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275855
|
- |
|
bsdi
|
bsd_os
|
Buffer overflow in Unix-to-Unix Copy Protocol (UUCP) in BSDI BSD/OS 3.0 through 4.2 allows local users to execute arbitrary code via a long command line argument.
|
NVD-CWE-Other
|
CVE-2001-1541
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275856
|
- |
|
axis
|
2100_network_camera 2110_network_camera 2120_network_camera neteye_200 neteye_200\+
|
Axis network camera 2120, 2110, 2100, 200+ and 200 contains a default administration password "pass", which allows remote attackers to gain access to the camera.
|
NVD-CWE-Other
|
CVE-2001-1543
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275857
|
- |
|
macromedia
|
jrun
|
Directory traversal vulnerability in Macromedia JRun Web Server (JWS) 2.3.3, 3.0 and 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-1544
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275858
|
- |
|
macromedia
|
jrun
|
Macromedia JRun 3.0 and 3.1 appends the jsessionid to URL requests (a.k.a. rewriting) when client browsers have cookies enabled, which allows remote attackers to obtain session IDs and hijack session…
|
NVD-CWE-Other
|
CVE-2001-1545
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275859
|
- |
|
microsoft
|
outlook_express
|
Outlook Express 6.0, with "Do not allow attachments to be saved or opened that could potentially be a virus" enabled, does not block email attachments from forwarded messages, which could allow remot…
|
NVD-CWE-Other
|
CVE-2001-1547
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275860
|
- |
|
zonelabs
|
zonealarm
|
ZoneAlarm 2.1 through 2.6 and ZoneAlarm Pro 2.4 and 2.6 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters.
|
NVD-CWE-Other
|
CVE-2001-1548
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|