272111
|
- |
|
webmin
|
webmin
|
run.cgi in Webmin 0.80 and 0.88 creates temporary files with world-writable permissions, which allows local users to execute arbitrary commands.
|
NVD-CWE-Other
|
CVE-2001-1530
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272112
|
- |
|
apple
|
claris_emailer
|
Buffer overflow in Claris Emailer 2.0v2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an email attachment with a long filename.
|
NVD-CWE-Other
|
CVE-2001-1531
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272113
|
- |
|
web_crossing
|
webx
|
WebX stores authentication information in the HTTP_REFERER variable, which is included in URL links within bulletin board messages posted by users, which could allow remote attackers to hijack user s…
|
NVD-CWE-Other
|
CVE-2001-1532
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272114
|
- |
|
open_source_development_network
|
slashcode
|
Slashcode 2.0 creates new accounts with an 8-character random password, which could allow local users to obtain session ID's from cookies and gain unauthorized access via a brute force attack.
|
NVD-CWE-Other
|
CVE-2001-1535
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272115
|
- |
|
speedxess
|
ha-120_dsl_router
|
SpeedXess HA-120 DSL router has a default administrative password of "speedxess", which allows remote attackers to gain access.
|
NVD-CWE-Other
|
CVE-2001-1538
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272116
|
- |
|
david_f._mischler
|
iproute
|
IPRoute 0.973, 0.974 and 1.18 allows remote attackers to cause a denial of service via fragmented IP packets that split the TCP header.
|
NVD-CWE-Other
|
CVE-2001-1540
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272117
|
- |
|
bsdi
|
bsd_os
|
Buffer overflow in Unix-to-Unix Copy Protocol (UUCP) in BSDI BSD/OS 3.0 through 4.2 allows local users to execute arbitrary code via a long command line argument.
|
NVD-CWE-Other
|
CVE-2001-1541
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272118
|
- |
|
axis
|
2100_network_camera 2110_network_camera 2120_network_camera neteye_200 neteye_200\+
|
Axis network camera 2120, 2110, 2100, 200+ and 200 contains a default administration password "pass", which allows remote attackers to gain access to the camera.
|
NVD-CWE-Other
|
CVE-2001-1543
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272119
|
- |
|
macromedia
|
jrun
|
Directory traversal vulnerability in Macromedia JRun Web Server (JWS) 2.3.3, 3.0 and 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-1544
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272120
|
- |
|
macromedia
|
jrun
|
Macromedia JRun 3.0 and 3.1 appends the jsessionid to URL requests (a.k.a. rewriting) when client browsers have cookies enabled, which allows remote attackers to obtain session IDs and hijack session…
|
NVD-CWE-Other
|
CVE-2001-1545
|
2008-09-6 05:26 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|