|
268871
|
- |
|
aclogic
|
cesarftp
|
CesarFTP 0.98b and earlier stores usernames and passwords in plaintext in the settings.ini file, which allows attackers to gain privileges.
|
NVD-CWE-Other
|
CVE-2001-1336
|
2008-09-11 04:10 |
2001-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268872
|
- |
|
beck_ipc_gmbh
|
ipc_at_chip_telnetd_server
|
Beck GmbH IPC@Chip TelnetD service supports only one connection and does not disconnect a user who does not complete the login process, which allows remote attackers to lock out the administrator acc…
|
NVD-CWE-Other
|
CVE-2001-1340
|
2008-09-11 04:10 |
2002-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268873
|
- |
|
beck_ipc_gmbh
|
ipc_at_chip_embedded-webserver
|
The Beck GmbH IPC@Chip embedded web server installs the chipcfg.cgi program by default, which allows remote attackers to obtain sensitive network information via a request to the program.
|
NVD-CWE-Other
|
CVE-2001-1341
|
2008-09-11 04:10 |
2001-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268874
|
- |
|
leon_j_breedt
|
pam-pgsql
|
Leon J Breedt pam-pgsql before 0.5.2 allows remote attackers to execute arbitrary SQL code and bypass authentication or modify user account records by injecting SQL statements into user or password f…
|
NVD-CWE-Other
|
CVE-2001-1369
|
2008-09-11 04:10 |
2001-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268875
|
- |
|
redhat
|
linux
|
initscript in setserial 2.17-4 and earlier uses predictable temporary file names, which could allow local users to conduct unauthorized operations on files.
|
NVD-CWE-Other
|
CVE-2001-1383
|
2008-09-11 04:10 |
2001-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268876
|
- |
|
proftpd_project
|
proftpd
|
The glob functionality in ProFTPD 1.2.1, and possibly other versions allows remote attackers to cause a denial of service (CPU and memory consumption) via commands with large numbers of wildcard and …
|
NVD-CWE-Other
|
CVE-2001-1501
|
2008-09-11 04:10 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268877
|
- |
|
openbsd
|
openssh
|
OpenSSH before 3.0.1 with Kerberos V enabled does not properly authenticate users, which could allow remote attackers to login unchallenged.
|
NVD-CWE-Other
|
CVE-2001-1507
|
2008-09-11 04:10 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268878
|
- |
|
macromedia
|
jrun
|
Unknown vulnerability in Allaire JRun 3.1 allows remote attackers to directly access the WEB-INF and META-INF directories and execute arbitrary JavaServer Pages (JSP), a variant of CVE-2000-1050.
|
NVD-CWE-Other
|
CVE-2001-1512
|
2008-09-11 04:10 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268879
|
- |
|
macromedia
|
jrun
|
Macromedia JRun 3.0 and 3.1 allows remote attackers to obtain duplicate active user session IDs and perform actions as other users via a URL request for the web application directory without the trai…
|
NVD-CWE-Other
|
CVE-2001-1513
|
2008-09-11 04:10 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268880
|
- |
|
postnuke_software_foundation
|
postnuke
|
Cross-site scripting (XSS) vulnerability in user.php in PostNuke 0.64 allows remote attackers to inject arbitrary web script or HTML via the uname parameter.
|
NVD-CWE-Other
|
CVE-2001-1521
|
2008-09-11 04:10 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
