|
259001
|
4.6 |
MEDIUM
|
su-wrapper
|
su-wrapper
|
Buffer overflow in su-wrapper 1.1.1 allows local users to execute arbitrary code via a long first argument.
|
NVD-CWE-Other
|
CVE-2001-0762
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259002
|
5.0 |
MEDIUM
|
steve_poulsen
|
guildftpd
|
Directory traversal vulnerability in GuildFTPd 0.9.7 allows attackers to list or read arbitrary files and directories via a .. in (1) LS or (2) GET.
|
NVD-CWE-Other
|
CVE-2001-0767
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259003
|
5.0 |
MEDIUM
|
internet_software_solutions
|
air_messenger_lan_server
|
Directory traversal in Webpaging interface in Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows allows remote attackers to read arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2001-0785
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259004
|
5.0 |
MEDIUM
|
internet_software_solutions
|
air_messenger_lan_server
|
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 stores user passwords in plaintext in the pUser.Dat file.
|
NVD-CWE-Other
|
CVE-2001-0786
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259005
|
5.0 |
MEDIUM
|
internet_software_solutions
|
air_messenger_lan_server
|
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows remote attackers to obtain an absolute path for the server directory by viewing the Location header.
|
NVD-CWE-Other
|
CVE-2001-0788
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259006
|
5.0 |
MEDIUM
|
specter
|
specter_ids
|
Specter IDS version 4.5 and 5.0 allows a remote attacker to cause a denial of service (CPU exhaustion) via a port scan, which causes the server to consume CPU while preparing alerts.
|
NVD-CWE-Other
|
CVE-2001-0790
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259007
|
5.0 |
MEDIUM
|
trend_micro
|
interscan_viruswall
|
Trend Micro InterScan VirusWall for Windows NT allows remote attackers to make configuration changes by directly calling certain CGI programs, which do not restrict access.
|
NVD-CWE-Other
|
CVE-2001-0791
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259008
|
5.0 |
MEDIUM
|
a-ftp
|
anonymous_ftp_server
|
Buffer overflow in A-FTP Anonymous FTP Server allows remote attackers to cause a denial of service via a long USER command.
|
NVD-CWE-Other
|
CVE-2001-0794
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259009
|
10.0 |
HIGH
|
sgi
|
irix
|
lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0800
|
2008-09-6 05:24 |
2001-12-6 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259010
|
9.0 |
HIGH
|
apc
|
powerchute
|
The HTTP service in American Power Conversion (APC) PowerChute uses a default username and password, which allows remote attackers to gain system access.
|
NVD-CWE-Other
|
CVE-2000-1242
|
2008-09-6 05:23 |
2000-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259011
|
2.1 |
LOW
|
cisco
|
arrowpoint
content_services_switch
|
Arrowpoint (aka Cisco Content Services, or CSS) allows local users to cause a denial of service via a long argument to the "show script," "clear script," "show archive," "clear archive," "show log," …
|
NVD-CWE-Other
|
CVE-2001-0019
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259012
|
5.0 |
MEDIUM
|
alt-n
|
mdaemon
|
Webconfig, IMAP, and other services in MDaemon 3.5.0 and earlier allows remote attackers to cause a denial of service via a long URL terminated by a "\r\n" string.
|
NVD-CWE-Other
|
CVE-2001-0064
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259013
|
2.1 |
LOW
|
nsa
|
security-enhanced_linux
|
Buffer overflow in the find_default_type function in libsecure in NSA Security-enhanced Linux, which may allow attackers to modify critical data in memory.
|
NVD-CWE-Other
|
CVE-2001-0073
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259014
|
5.0 |
MEDIUM
|
technote_inc
|
technote
|
Directory traversal vulnerability in print.cgi in Technote allows remote attackers to read arbitrary files via a .. (dot dot) attack in the board parameter.
|
NVD-CWE-Other
|
CVE-2001-0074
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259015
|
5.0 |
MEDIUM
|
technote_inc
|
technote
|
Directory traversal vulnerability in main.cgi in Technote allows remote attackers to read arbitrary files via a .. (dot dot) attack in the filename parameter.
|
NVD-CWE-Other
|
CVE-2001-0075
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259016
|
2.1 |
LOW
|
hp
|
support_tools_manager
|
Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the tool_stat.txt log file.
|
NVD-CWE-Other
|
CVE-2001-0079
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259017
|
7.5 |
HIGH
|
checkpoint
|
firewall-1
|
Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets.
|
NVD-CWE-Other
|
CVE-2001-0082
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259018
|
7.2 |
HIGH
|
freebsd
|
freebsd
|
Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying critical environmental variables that affect the behavior of telnetd.
|
NVD-CWE-Other
|
CVE-2001-0093
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259019
|
10.0 |
HIGH
|
omnicron
|
omnihttpd
|
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script.
|
NVD-CWE-Other
|
CVE-2001-0113
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259020
|
5.0 |
MEDIUM
|
omnicron
|
omnihttpd
|
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter.
|
NVD-CWE-Other
|
CVE-2001-0114
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259021
|
7.6 |
HIGH
|
oliver_debon
|
flash
|
Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long DefineSound tag.
|
NVD-CWE-Other
|
CVE-2001-0127
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259022
|
1.2 |
LOW
|
trend_micro
|
interscan_viruswall
|
Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack.
|
NVD-CWE-Other
|
CVE-2001-0132
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259023
|
10.0 |
HIGH
|
trend_micro
|
interscan_viruswall
|
The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator …
|
NVD-CWE-Other
|
CVE-2001-0133
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259024
|
7.5 |
HIGH
|
van_dyke_technologies
|
vshell
|
Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execute arbitrary commands via a user name that contains format string specifiers.
|
NVD-CWE-Other
|
CVE-2001-0155
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259025
|
5.0 |
MEDIUM
|
lucent
orinoco
|
wavelan
orinoco_wavelan
|
Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will l…
|
NVD-CWE-Other
|
CVE-2001-0160
|
2008-09-6 05:23 |
2001-01-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259026
|
5.0 |
MEDIUM
|
cisco
|
aironet
|
Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks.
|
NVD-CWE-Other
|
CVE-2001-0161
|
2008-09-6 05:23 |
2001-01-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259027
|
4.6 |
MEDIUM
|
cisco
|
aironet_ap340
|
Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
|
NVD-CWE-Other
|
CVE-2001-0163
|
2008-09-6 05:23 |
2001-01-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259028
|
5.0 |
MEDIUM
|
free_java_web_server
|
free_java_web_server
|
Directory traversal vulnerability in Free Java Web Server 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2001-0186
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259029
|
10.0 |
HIGH
|
davide_libenzi
|
xmail
|
Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfileget or domaindel functions.
|
NVD-CWE-Other
|
CVE-2001-0192
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259030
|
5.0 |
MEDIUM
|
heat-on_software
|
hsweb
|
HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled.
|
NVD-CWE-Other
|
CVE-2001-0200
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259031
|
5.0 |
MEDIUM
|
informs
|
picserver
|
Picserver web server allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0202
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259032
|
5.0 |
MEDIUM
|
soft_lite
|
serverworx
|
Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbitrary files by inserting a .. (dot dot) or ... into the requested pathname of an HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0206
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259033
|
4.6 |
MEDIUM
|
microfocus
|
cobol
|
MicroFocus Cobol 4.1, with the AppTrack feature enabled, installs the mfaslmf directory and the nolicense file with insecure permissions, which allows local users to gain privileges by modifying file…
|
NVD-CWE-Other
|
CVE-2001-0208
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259034
|
5.0 |
MEDIUM
|
carey_internet_service
|
commerce.cgi
|
Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the page parameter.
|
NVD-CWE-Other
|
CVE-2001-0210
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259035
|
5.0 |
MEDIUM
|
silverplatter
|
webspirs
|
Directory traversal vulnerability in WebSPIRS 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the sp.nextform parameter.
|
NVD-CWE-Other
|
CVE-2001-0211
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259036
|
7.5 |
HIGH
|
his
|
auktion
|
Directory traversal vulnerability in HIS Auktion 1.62 allows remote attackers to read arbitrary files via a .. (dot dot) in the menue parameter, and possibly execute commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0212
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259037
|
5.0 |
MEDIUM
|
way
|
way-board
|
Way-board CGI program allows remote attackers to read arbitrary files by specifying the filename in the db parameter and terminating the filename with a null byte.
|
NVD-CWE-Other
|
CVE-2001-0214
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259038
|
7.2 |
HIGH
|
ja-elvis
ko-helvis
|
ja-elvis
ko-helvis
|
Buffer overflow in ja-elvis and ko-helvis ports of elvis allow local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-2001-0220
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259039
|
10.0 |
HIGH
|
lenzo
|
infobot
|
fortran math component in Infobot 0.44.5.3 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0225
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259040
|
5.0 |
MEDIUM
|
biblioscape
|
biblioweb_server
|
Buffer overflow in BiblioWeb web server 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0227
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259041
|
7.2 |
HIGH
|
sun
|
chilisoft
|
Chili!Soft ASP for Linux before 3.6 does not properly set group privileges when running in inherited mode, which could allow attackers to gain privileges via malicious scripts.
|
NVD-CWE-Other
|
CVE-2001-0229
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259042
|
5.0 |
MEDIUM
|
ibrow
|
news_desk
|
newsdesk.cgi in News Desk 1.2 allows remote attackers to read arbitrary files via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0232
|
2008-09-6 05:23 |
2001-03-26 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259043
|
7.5 |
HIGH
|
netscape
|
smartdownload
|
Buffer overflow in Netscape SmartDownload 1.3 allows remote attackers (malicious web pages) to execute arbitrary commands via a long URL.
|
NVD-CWE-Other
|
CVE-2001-0262
|
2008-09-6 05:23 |
2001-07-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259044
|
5.0 |
MEDIUM
|
gene6
|
g6_ftp_server
|
Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send t…
|
NVD-CWE-Other
|
CVE-2001-0264
|
2008-09-6 05:23 |
2001-06-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259045
|
7.2 |
HIGH
|
hp
|
hp-ux
|
Vulnerability in Software Distributor SD-UX in HP-UX 11.0 and earlier allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2001-0266
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259046
|
5.0 |
MEDIUM
|
marconi
|
forethought
asx-1000
|
Marconi ASX-1000 ASX switches allow remote attackers to cause a denial of service in the telnet and web management interfaces via a malformed packet with the SYN-FIN and More Fragments attributes set.
|
NVD-CWE-Other
|
CVE-2001-0270
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259047
|
10.0 |
HIGH
|
mailnews.cgi
|
mailnews.cgi
|
mailnews.cgi 1.3 and earlier allows remote attackers to execute arbitrary commands via a user name that contains shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0271
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259048
|
5.0 |
MEDIUM
|
w3.org
|
sendtemp.pl
|
Directory traversal vulnerability in sendtemp.pl in W3.org Anaya Web development server allows remote attackers to read arbitrary files via a .. (dot dot) attack in the templ parameter.
|
NVD-CWE-Other
|
CVE-2001-0272
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259049
|
2.1 |
LOW
|
moby
|
netsuite_web_server
|
Moby Netsuite Web Server 1.02 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request.
|
NVD-CWE-Other
|
CVE-2001-0275
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259050
|
7.2 |
HIGH
|
debian
mandrakesoft
|
debian_linux
mandrake_linux
mandrake_linux_corporate_server
|
Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-2001-0279
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
