272641
|
- |
|
freebsd
|
freebsd
|
Some AIO operations in FreeBSD 4.4 may be delayed until after a call to execve, which could allow a local user to overwrite memory of the new process and gain privileges.
|
NVD-CWE-Other
|
CVE-2001-1185
|
2008-09-6 05:25 |
2001-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272642
|
- |
|
brian_dorricott
|
mailto
|
mailto.exe in Brian Dorricott MAILTO 1.0.9 and earlier allows remote attackers to send SPAM e-mail through remote servers by modifying the sendto, email, server, subject, and resulturl hidden form fi…
|
NVD-CWE-Other
|
CVE-2001-1188
|
2008-09-6 05:25 |
2001-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272643
|
- |
|
ibm
|
websphere_application_server
|
IBM Websphere Application Server 3.5.3 and earlier stores a password in cleartext in the sas.server.props file, which allows local users to obtain the passwords via a JSP script.
|
NVD-CWE-Other
|
CVE-2001-1189
|
2008-09-6 05:25 |
2001-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272644
|
- |
|
mandrakesoft
|
mandrake_linux
|
The default PAM files included with passwd in Mandrake Linux 8.1 do not support MD5 passwords, which could result in a lower level of password security than intended.
|
NVD-CWE-Other
|
CVE-2001-1190
|
2008-09-6 05:25 |
2001-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272645
|
- |
|
ibm
|
tivoli_secureway_policy_director
|
WebSeal in IBM Tivoli SecureWay Policy Director 3.8 allows remote attackers to cause a denial of service (crash) via a URL that ends in %2e.
|
NVD-CWE-Other
|
CVE-2001-1191
|
2008-09-6 05:25 |
2001-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272646
|
- |
|
microsoft
|
windows_xp
|
Microsoft Windows XP allows local users to bypass a locked screen and run certain programs that are associated with Hot Keys.
|
NVD-CWE-Other
|
CVE-2001-1200
|
2008-09-6 05:25 |
2001-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272647
|
- |
|
daydream
|
daydream_bbs
|
Buffer overflows in DayDream BBS 2.9 through 2.13 allow remote attackers to possibly execute arbitrary code via the control codes (1) ~#MC, (2) ~#TF, or (3) ~#RA.
|
NVD-CWE-Other
|
CVE-2001-1207
|
2008-09-6 05:25 |
2001-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272648
|
- |
|
ipswitch
|
imail
|
Ipswitch IMail 7.0.4 and earlier allows attackers with administrator privileges to read and modify user alias and mailing list information for other domains hosted by the same server via the (1) alia…
|
NVD-CWE-Other
|
CVE-2001-1211
|
2008-09-6 05:25 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272649
|
- |
|
oracle
|
application_server
|
Buffer overflow in PL/SQL Apache module in Oracle 9i Application Server allows remote attackers to execute arbitrary code via a long request for a help page.
|
NVD-CWE-Other
|
CVE-2001-1216
|
2008-09-6 05:25 |
2001-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272650
|
- |
|
oracle
|
application_server
|
Directory traversal vulnerability in PL/SQL Apache module in Oracle Oracle 9i Application Server allows remote attackers to access sensitive information via a double encoded URL with .. (dot dot) seq…
|
NVD-CWE-Other
|
CVE-2001-1217
|
2008-09-6 05:25 |
2001-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|