|
266701
|
7.5 |
HIGH
|
ssh
|
ssh
|
SSH daemon version 1 (aka SSHD-1 or SSH-1) 1.2.30 and earlier does not log repeated login attempts, which could allow remote attackers to compromise accounts without detection via a brute force attac…
|
NVD-CWE-Other
|
CVE-2001-0471
|
2008-09-6 05:24 |
2001-06-27 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266702
|
7.5 |
HIGH
|
webcalendar
|
webcalendar
|
Vulnerability in WebCalendar 0.9.26 allows remote command execution.
|
NVD-CWE-Other
|
CVE-2001-0477
|
2008-09-6 05:24 |
2001-06-27 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266703
|
7.5 |
HIGH
|
phpmyadmin
|
phpmyadmin
|
Directory traversal vulnerability in phpMyAdmin 2.2.0 and earlier versions allows remote attackers to execute arbitrary code via a .. (dot dot) in an argument to the sql.php script.
|
NVD-CWE-Other
|
CVE-2001-0478
|
2008-09-6 05:24 |
2001-06-27 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266704
|
5.0 |
MEDIUM
|
alex_linde
|
alexs_ftp_server
|
Directory traversal vulnerability in Alex's FTP Server 0.7 allows remote attackers to read arbitrary files via a ... (modified dot dot) in the (1) GET or (2) CD commands.
|
NVD-CWE-Other
|
CVE-2001-0480
|
2008-09-6 05:24 |
2001-06-27 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266705
|
7.5 |
HIGH
|
symantec
|
raptor_firewall
|
Configuration error in Axent Raptor Firewall 6.5 allows remote attackers to use the firewall as a proxy to access internal web resources when the http.noproxy Rule is not set.
|
NVD-CWE-Other
|
CVE-2001-0483
|
2008-09-6 05:24 |
2001-06-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266706
|
7.5 |
HIGH
|
nullsoft
|
winamp
|
Buffer overflow in WINAMP 2.6x and 2.7x allows attackers to execute arbitrary code via a long string in an AIP file.
|
NVD-CWE-Other
|
CVE-2001-0490
|
2008-09-6 05:24 |
2001-06-27 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266707
|
7.5 |
HIGH
|
macromedia
|
coldfusion_server
|
Example applications (Exampleapps) in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote attackers to conduct upload, read, or exe…
|
NVD-CWE-Other
|
CVE-2001-0535
|
2008-09-6 05:24 |
2001-10-30 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266708
|
2.1 |
LOW
|
zope
|
zope
|
Digital Creations Zope 2.3.1 b1 and earlier allows a local attacker (Zope user) with through-the-web scripting capabilities to alter ZClasses class attributes.
|
NVD-CWE-Other
|
CVE-2001-0568
|
2008-09-6 05:24 |
2001-08-22 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266709
|
2.1 |
LOW
|
zope
|
zope
|
Digital Creations Zope 2.3.1 b1 and earlier contains a problem in the method return values related to the classes (1) ObjectManager, (2) PropertyManager, and (3) PropertySheet.
|
NVD-CWE-Other
|
CVE-2001-0569
|
2008-09-6 05:24 |
2001-08-22 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266710
|
7.5 |
HIGH
|
openbsd
ssh
|
openssh
ssh
|
The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: (1) pass…
|
NVD-CWE-Other
|
CVE-2001-0572
|
2008-09-6 05:24 |
2001-08-22 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266711
|
7.5 |
HIGH
|
sun
|
chilisoft
|
Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the default installation, which can allow a remote attacker to gain additional privileges.
|
NVD-CWE-Other
|
CVE-2001-0632
|
2008-09-6 05:24 |
2001-08-22 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266712
|
5.0 |
MEDIUM
|
sun
|
chilisoft
|
Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '..' (dot dot) attack in the sample script 'codebr…
|
NVD-CWE-Other
|
CVE-2001-0633
|
2008-09-6 05:24 |
2001-08-22 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266713
|
7.5 |
HIGH
|
raytheon
|
silentrunner
|
Buffer overflows in Raytheon SilentRunner allow remote attackers to (1) cause a denial of service in the collector (cle.exe) component of SilentRunner 2.0 via traffic containing long passwords, or (2…
|
NVD-CWE-Other
|
CVE-2001-0636
|
2008-09-6 05:24 |
2001-09-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266714
|
5.0 |
MEDIUM
|
orange_software
|
orange_web_server
|
Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via an HTTP GET request that does not include the HTTP version.
|
NVD-CWE-Other
|
CVE-2001-0647
|
2008-09-6 05:24 |
2001-08-6 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266715
|
10.0 |
HIGH
|
ibm
|
aix
|
Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 allow remote attackers to gain root privileges.
|
NVD-CWE-Other
|
CVE-2001-0671
|
2008-09-6 05:24 |
2001-12-6 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266716
|
5.0 |
MEDIUM
|
transsoft
|
broker_ftp_server
|
Broker FTP Server 5.9.5.0 allows a remote attacker to cause a denial of service by repeatedly issuing an invalid CD or CWD ("CD . .") command.
|
NVD-CWE-Other
|
CVE-2001-0688
|
2008-09-6 05:24 |
2001-09-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266717
|
7.5 |
HIGH
|
trend_micro
|
virus_control_system
|
Vulnerability in TrendMicro Virus Control System 1.8 allows a remote attacker to view configuration files and change the configuration via a certain CGI program.
|
NVD-CWE-Other
|
CVE-2001-0689
|
2008-09-6 05:24 |
2001-09-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266718
|
4.6 |
MEDIUM
|
university_of_washington
|
imapd
|
Buffer overflows in Washington University imapd 2000a through 2000c could allow local users without shell access to execute code as themselves in certain configurations.
|
NVD-CWE-Other
|
CVE-2001-0691
|
2008-09-6 05:24 |
2001-09-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266719
|
7.5 |
HIGH
|
texas_imperial_software
|
wftpd
|
Directory traversal vulnerability in WFTPD 3.00 R5 allows a remote attacker to view arbitrary files via a dot dot attack in the CD command.
|
NVD-CWE-Other
|
CVE-2001-0694
|
2008-09-6 05:24 |
2001-09-20 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266720
|
4.6 |
MEDIUM
|
sendmail
|
sendmail
|
Sendmail before 8.12.1 does not properly drop privileges when the -C option is used to load custom configuration files, which allows local users to gain privileges via malformed arguments in the conf…
|
NVD-CWE-Other
|
CVE-2001-0713
|
2008-09-6 05:24 |
2001-10-30 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266721
|
2.1 |
LOW
|
sendmail
|
sendmail
|
Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to cause a denial of service (data loss) by (1) setting a high initial message hop count option (-h), which cau…
|
NVD-CWE-Other
|
CVE-2001-0714
|
2008-09-6 05:24 |
2001-10-30 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266722
|
7.5 |
HIGH
|
computalynx
|
cmail
|
Buffer overflow in Computalynx CMail POP3 mail server 2.4.9 allows remote attackers to run arbitrary code via a long HELO command.
|
NVD-CWE-Other
|
CVE-2001-0742
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266723
|
5.0 |
MEDIUM
|
oreilly
|
webboard
|
Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service via a message with an escaped ' character followed by JavaScript commands.
|
NVD-CWE-Other
|
CVE-2001-0743
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266724
|
7.5 |
HIGH
|
debian
|
debian_linux
|
Buffer overflow in ftp daemon (ftpd) 6.2 in Debian GNU/Linux allows attackers to cause a denial of service and possibly execute arbitrary code via a long SITE command.
|
NVD-CWE-Other
|
CVE-2001-0755
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266725
|
7.5 |
HIGH
|
evolvable_corporation
|
shambala_server
|
Directory traversal vulnerability in Shambala 4.5 allows remote attackers to escape the FTP root directory via "CWD ..." command.
|
NVD-CWE-Other
|
CVE-2001-0758
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266726
|
7.2 |
HIGH
|
jetico
|
bestcrypt
|
Buffer overflow in bctool in Jetico BestCrypt 0.8.1 and earlier allows local users to execute arbitrary code via a file or directory with a long pathname, which is processed during an unmount.
|
NVD-CWE-Other
|
CVE-2001-0759
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266727
|
7.5 |
HIGH
|
trend_micro
|
interscan_webmanager
|
Buffer overflow in HttpSave.dll in Trend Micro InterScan WebManager 1.2 allows remote attackers to execute arbitrary code via a long value to a certain parameter.
|
NVD-CWE-Other
|
CVE-2001-0761
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266728
|
4.6 |
MEDIUM
|
su-wrapper
|
su-wrapper
|
Buffer overflow in su-wrapper 1.1.1 allows local users to execute arbitrary code via a long first argument.
|
NVD-CWE-Other
|
CVE-2001-0762
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266729
|
5.0 |
MEDIUM
|
steve_poulsen
|
guildftpd
|
Directory traversal vulnerability in GuildFTPd 0.9.7 allows attackers to list or read arbitrary files and directories via a .. in (1) LS or (2) GET.
|
NVD-CWE-Other
|
CVE-2001-0767
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266730
|
5.0 |
MEDIUM
|
internet_software_solutions
|
air_messenger_lan_server
|
Directory traversal in Webpaging interface in Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows allows remote attackers to read arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2001-0785
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266731
|
5.0 |
MEDIUM
|
internet_software_solutions
|
air_messenger_lan_server
|
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 stores user passwords in plaintext in the pUser.Dat file.
|
NVD-CWE-Other
|
CVE-2001-0786
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266732
|
5.0 |
MEDIUM
|
internet_software_solutions
|
air_messenger_lan_server
|
Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 allows remote attackers to obtain an absolute path for the server directory by viewing the Location header.
|
NVD-CWE-Other
|
CVE-2001-0788
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266733
|
5.0 |
MEDIUM
|
specter
|
specter_ids
|
Specter IDS version 4.5 and 5.0 allows a remote attacker to cause a denial of service (CPU exhaustion) via a port scan, which causes the server to consume CPU while preparing alerts.
|
NVD-CWE-Other
|
CVE-2001-0790
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266734
|
5.0 |
MEDIUM
|
trend_micro
|
interscan_viruswall
|
Trend Micro InterScan VirusWall for Windows NT allows remote attackers to make configuration changes by directly calling certain CGI programs, which do not restrict access.
|
NVD-CWE-Other
|
CVE-2001-0791
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266735
|
5.0 |
MEDIUM
|
a-ftp
|
anonymous_ftp_server
|
Buffer overflow in A-FTP Anonymous FTP Server allows remote attackers to cause a denial of service via a long USER command.
|
NVD-CWE-Other
|
CVE-2001-0794
|
2008-09-6 05:24 |
2001-10-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266736
|
10.0 |
HIGH
|
sgi
|
irix
|
lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0800
|
2008-09-6 05:24 |
2001-12-6 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266737
|
9.0 |
HIGH
|
apc
|
powerchute
|
The HTTP service in American Power Conversion (APC) PowerChute uses a default username and password, which allows remote attackers to gain system access.
|
NVD-CWE-Other
|
CVE-2000-1242
|
2008-09-6 05:23 |
2000-12-31 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266738
|
2.1 |
LOW
|
cisco
|
arrowpoint
content_services_switch
|
Arrowpoint (aka Cisco Content Services, or CSS) allows local users to cause a denial of service via a long argument to the "show script," "clear script," "show archive," "clear archive," "show log," …
|
NVD-CWE-Other
|
CVE-2001-0019
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266739
|
5.0 |
MEDIUM
|
alt-n
|
mdaemon
|
Webconfig, IMAP, and other services in MDaemon 3.5.0 and earlier allows remote attackers to cause a denial of service via a long URL terminated by a "\r\n" string.
|
NVD-CWE-Other
|
CVE-2001-0064
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266740
|
2.1 |
LOW
|
nsa
|
security-enhanced_linux
|
Buffer overflow in the find_default_type function in libsecure in NSA Security-enhanced Linux, which may allow attackers to modify critical data in memory.
|
NVD-CWE-Other
|
CVE-2001-0073
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266741
|
5.0 |
MEDIUM
|
technote_inc
|
technote
|
Directory traversal vulnerability in print.cgi in Technote allows remote attackers to read arbitrary files via a .. (dot dot) attack in the board parameter.
|
NVD-CWE-Other
|
CVE-2001-0074
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266742
|
5.0 |
MEDIUM
|
technote_inc
|
technote
|
Directory traversal vulnerability in main.cgi in Technote allows remote attackers to read arbitrary files via a .. (dot dot) attack in the filename parameter.
|
NVD-CWE-Other
|
CVE-2001-0075
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266743
|
2.1 |
LOW
|
hp
|
support_tools_manager
|
Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the tool_stat.txt log file.
|
NVD-CWE-Other
|
CVE-2001-0079
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266744
|
7.5 |
HIGH
|
checkpoint
|
firewall-1
|
Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets.
|
NVD-CWE-Other
|
CVE-2001-0082
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266745
|
7.2 |
HIGH
|
freebsd
|
freebsd
|
Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying critical environmental variables that affect the behavior of telnetd.
|
NVD-CWE-Other
|
CVE-2001-0093
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266746
|
10.0 |
HIGH
|
omnicron
|
omnihttpd
|
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script.
|
NVD-CWE-Other
|
CVE-2001-0113
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266747
|
5.0 |
MEDIUM
|
omnicron
|
omnihttpd
|
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter.
|
NVD-CWE-Other
|
CVE-2001-0114
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266748
|
7.6 |
HIGH
|
oliver_debon
|
flash
|
Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long DefineSound tag.
|
NVD-CWE-Other
|
CVE-2001-0127
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266749
|
1.2 |
LOW
|
trend_micro
|
interscan_viruswall
|
Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack.
|
NVD-CWE-Other
|
CVE-2001-0132
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266750
|
10.0 |
HIGH
|
trend_micro
|
interscan_viruswall
|
The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator …
|
NVD-CWE-Other
|
CVE-2001-0133
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
