|
258801
|
5.0 |
MEDIUM
|
internet_software_solutions
|
air_messenger_lan_server
|
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 stores user passwords in plaintext in the pUser.Dat file.
|
NVD-CWE-Other
|
CVE-2001-0786
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258802
|
5.0 |
MEDIUM
|
internet_software_solutions
|
air_messenger_lan_server
|
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows remote attackers to obtain an absolute path for the server directory by viewing the Location header.
|
NVD-CWE-Other
|
CVE-2001-0788
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258803
|
5.0 |
MEDIUM
|
specter
|
specter_ids
|
Specter IDS version 4.5 and 5.0 allows a remote attacker to cause a denial of service (CPU exhaustion) via a port scan, which causes the server to consume CPU while preparing alerts.
|
NVD-CWE-Other
|
CVE-2001-0790
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258804
|
5.0 |
MEDIUM
|
trend_micro
|
interscan_viruswall
|
Trend Micro InterScan VirusWall for Windows NT allows remote attackers to make configuration changes by directly calling certain CGI programs, which do not restrict access.
|
NVD-CWE-Other
|
CVE-2001-0791
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258805
|
5.0 |
MEDIUM
|
a-ftp
|
anonymous_ftp_server
|
Buffer overflow in A-FTP Anonymous FTP Server allows remote attackers to cause a denial of service via a long USER command.
|
NVD-CWE-Other
|
CVE-2001-0794
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258806
|
10.0 |
HIGH
|
sgi
|
irix
|
lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0800
|
2008-09-6 05:24 |
2001-12-6 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258807
|
9.0 |
HIGH
|
apc
|
powerchute
|
The HTTP service in American Power Conversion (APC) PowerChute uses a default username and password, which allows remote attackers to gain system access.
|
NVD-CWE-Other
|
CVE-2000-1242
|
2008-09-6 05:23 |
2000-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258808
|
2.1 |
LOW
|
cisco
|
arrowpoint
content_services_switch
|
Arrowpoint (aka Cisco Content Services, or CSS) allows local users to cause a denial of service via a long argument to the "show script," "clear script," "show archive," "clear archive," "show log," …
|
NVD-CWE-Other
|
CVE-2001-0019
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258809
|
5.0 |
MEDIUM
|
alt-n
|
mdaemon
|
Webconfig, IMAP, and other services in MDaemon 3.5.0 and earlier allows remote attackers to cause a denial of service via a long URL terminated by a "\r\n" string.
|
NVD-CWE-Other
|
CVE-2001-0064
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258810
|
2.1 |
LOW
|
nsa
|
security-enhanced_linux
|
Buffer overflow in the find_default_type function in libsecure in NSA Security-enhanced Linux, which may allow attackers to modify critical data in memory.
|
NVD-CWE-Other
|
CVE-2001-0073
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258811
|
5.0 |
MEDIUM
|
technote_inc
|
technote
|
Directory traversal vulnerability in print.cgi in Technote allows remote attackers to read arbitrary files via a .. (dot dot) attack in the board parameter.
|
NVD-CWE-Other
|
CVE-2001-0074
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258812
|
5.0 |
MEDIUM
|
technote_inc
|
technote
|
Directory traversal vulnerability in main.cgi in Technote allows remote attackers to read arbitrary files via a .. (dot dot) attack in the filename parameter.
|
NVD-CWE-Other
|
CVE-2001-0075
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258813
|
2.1 |
LOW
|
hp
|
support_tools_manager
|
Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the tool_stat.txt log file.
|
NVD-CWE-Other
|
CVE-2001-0079
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258814
|
7.5 |
HIGH
|
checkpoint
|
firewall-1
|
Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets.
|
NVD-CWE-Other
|
CVE-2001-0082
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258815
|
7.2 |
HIGH
|
freebsd
|
freebsd
|
Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying critical environmental variables that affect the behavior of telnetd.
|
NVD-CWE-Other
|
CVE-2001-0093
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258816
|
10.0 |
HIGH
|
omnicron
|
omnihttpd
|
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script.
|
NVD-CWE-Other
|
CVE-2001-0113
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258817
|
5.0 |
MEDIUM
|
omnicron
|
omnihttpd
|
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter.
|
NVD-CWE-Other
|
CVE-2001-0114
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258818
|
7.6 |
HIGH
|
oliver_debon
|
flash
|
Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long DefineSound tag.
|
NVD-CWE-Other
|
CVE-2001-0127
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258819
|
1.2 |
LOW
|
trend_micro
|
interscan_viruswall
|
Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack.
|
NVD-CWE-Other
|
CVE-2001-0132
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258820
|
10.0 |
HIGH
|
trend_micro
|
interscan_viruswall
|
The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator …
|
NVD-CWE-Other
|
CVE-2001-0133
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258821
|
7.5 |
HIGH
|
van_dyke_technologies
|
vshell
|
Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execute arbitrary commands via a user name that contains format string specifiers.
|
NVD-CWE-Other
|
CVE-2001-0155
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258822
|
5.0 |
MEDIUM
|
lucent
orinoco
|
wavelan
orinoco_wavelan
|
Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will l…
|
NVD-CWE-Other
|
CVE-2001-0160
|
2008-09-6 05:23 |
2001-01-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258823
|
5.0 |
MEDIUM
|
cisco
|
aironet
|
Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks.
|
NVD-CWE-Other
|
CVE-2001-0161
|
2008-09-6 05:23 |
2001-01-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258824
|
4.6 |
MEDIUM
|
cisco
|
aironet_ap340
|
Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
|
NVD-CWE-Other
|
CVE-2001-0163
|
2008-09-6 05:23 |
2001-01-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258825
|
5.0 |
MEDIUM
|
free_java_web_server
|
free_java_web_server
|
Directory traversal vulnerability in Free Java Web Server 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2001-0186
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258826
|
10.0 |
HIGH
|
davide_libenzi
|
xmail
|
Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfileget or domaindel functions.
|
NVD-CWE-Other
|
CVE-2001-0192
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258827
|
5.0 |
MEDIUM
|
heat-on_software
|
hsweb
|
HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled.
|
NVD-CWE-Other
|
CVE-2001-0200
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258828
|
5.0 |
MEDIUM
|
informs
|
picserver
|
Picserver web server allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0202
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258829
|
5.0 |
MEDIUM
|
soft_lite
|
serverworx
|
Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbitrary files by inserting a .. (dot dot) or ... into the requested pathname of an HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0206
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258830
|
4.6 |
MEDIUM
|
microfocus
|
cobol
|
MicroFocus Cobol 4.1, with the AppTrack feature enabled, installs the mfaslmf directory and the nolicense file with insecure permissions, which allows local users to gain privileges by modifying file…
|
NVD-CWE-Other
|
CVE-2001-0208
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258831
|
5.0 |
MEDIUM
|
carey_internet_service
|
commerce.cgi
|
Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the page parameter.
|
NVD-CWE-Other
|
CVE-2001-0210
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258832
|
5.0 |
MEDIUM
|
silverplatter
|
webspirs
|
Directory traversal vulnerability in WebSPIRS 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the sp.nextform parameter.
|
NVD-CWE-Other
|
CVE-2001-0211
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258833
|
7.5 |
HIGH
|
his
|
auktion
|
Directory traversal vulnerability in HIS Auktion 1.62 allows remote attackers to read arbitrary files via a .. (dot dot) in the menue parameter, and possibly execute commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0212
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258834
|
5.0 |
MEDIUM
|
way
|
way-board
|
Way-board CGI program allows remote attackers to read arbitrary files by specifying the filename in the db parameter and terminating the filename with a null byte.
|
NVD-CWE-Other
|
CVE-2001-0214
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258835
|
7.2 |
HIGH
|
ja-elvis
ko-helvis
|
ja-elvis
ko-helvis
|
Buffer overflow in ja-elvis and ko-helvis ports of elvis allow local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-2001-0220
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258836
|
10.0 |
HIGH
|
lenzo
|
infobot
|
fortran math component in Infobot 0.44.5.3 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0225
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258837
|
5.0 |
MEDIUM
|
biblioscape
|
biblioweb_server
|
Buffer overflow in BiblioWeb web server 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0227
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258838
|
7.2 |
HIGH
|
sun
|
chilisoft
|
Chili!Soft ASP for Linux before 3.6 does not properly set group privileges when running in inherited mode, which could allow attackers to gain privileges via malicious scripts.
|
NVD-CWE-Other
|
CVE-2001-0229
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258839
|
5.0 |
MEDIUM
|
ibrow
|
news_desk
|
newsdesk.cgi in News Desk 1.2 allows remote attackers to read arbitrary files via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0232
|
2008-09-6 05:23 |
2001-03-26 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258840
|
7.5 |
HIGH
|
netscape
|
smartdownload
|
Buffer overflow in Netscape SmartDownload 1.3 allows remote attackers (malicious web pages) to execute arbitrary commands via a long URL.
|
NVD-CWE-Other
|
CVE-2001-0262
|
2008-09-6 05:23 |
2001-07-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258841
|
5.0 |
MEDIUM
|
gene6
|
g6_ftp_server
|
Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send t…
|
NVD-CWE-Other
|
CVE-2001-0264
|
2008-09-6 05:23 |
2001-06-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258842
|
7.2 |
HIGH
|
hp
|
hp-ux
|
Vulnerability in Software Distributor SD-UX in HP-UX 11.0 and earlier allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2001-0266
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258843
|
5.0 |
MEDIUM
|
marconi
|
forethought
asx-1000
|
Marconi ASX-1000 ASX switches allow remote attackers to cause a denial of service in the telnet and web management interfaces via a malformed packet with the SYN-FIN and More Fragments attributes set.
|
NVD-CWE-Other
|
CVE-2001-0270
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258844
|
10.0 |
HIGH
|
mailnews.cgi
|
mailnews.cgi
|
mailnews.cgi 1.3 and earlier allows remote attackers to execute arbitrary commands via a user name that contains shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0271
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258845
|
5.0 |
MEDIUM
|
w3.org
|
sendtemp.pl
|
Directory traversal vulnerability in sendtemp.pl in W3.org Anaya Web development server allows remote attackers to read arbitrary files via a .. (dot dot) attack in the templ parameter.
|
NVD-CWE-Other
|
CVE-2001-0272
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258846
|
2.1 |
LOW
|
moby
|
netsuite_web_server
|
Moby Netsuite Web Server 1.02 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request.
|
NVD-CWE-Other
|
CVE-2001-0275
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258847
|
7.2 |
HIGH
|
debian
mandrakesoft
|
debian_linux
mandrake_linux
mandrake_linux_corporate_server
|
Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-2001-0279
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258848
|
7.2 |
HIGH
|
microsoft
|
windows_nt
|
Format string vulnerability in DbgPrint function, used in debug messages for some Windows NT drivers (possibly when called through DebugMessage), may allow local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2001-0281
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258849
|
6.4 |
MEDIUM
|
sun
|
sun_ftp
|
Directory traversal vulnerability in SunFTP build 9 allows remote attackers to read arbitrary files via .. (dot dot) characters in various commands, including (1) GET, (2) MKDIR, (3) RMDIR, (4) RENAM…
|
NVD-CWE-Other
|
CVE-2001-0283
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258850
|
10.0 |
HIGH
|
a1webserver
|
http_server
|
Buffer overflow in A1 HTTP server 1.0a allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP request.
|
NVD-CWE-Other
|
CVE-2001-0285
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
