|
270801
|
2.1 |
LOW
|
cisco
|
arrowpoint
content_services_switch
|
Arrowpoint (aka Cisco Content Services, or CSS) allows local users to cause a denial of service via a long argument to the "show script," "clear script," "show archive," "clear archive," "show log," …
|
NVD-CWE-Other
|
CVE-2001-0019
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270802
|
5.0 |
MEDIUM
|
alt-n
|
mdaemon
|
Webconfig, IMAP, and other services in MDaemon 3.5.0 and earlier allows remote attackers to cause a denial of service via a long URL terminated by a "\r\n" string.
|
NVD-CWE-Other
|
CVE-2001-0064
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270803
|
2.1 |
LOW
|
nsa
|
security-enhanced_linux
|
Buffer overflow in the find_default_type function in libsecure in NSA Security-enhanced Linux, which may allow attackers to modify critical data in memory.
|
NVD-CWE-Other
|
CVE-2001-0073
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270804
|
5.0 |
MEDIUM
|
technote_inc
|
technote
|
Directory traversal vulnerability in print.cgi in Technote allows remote attackers to read arbitrary files via a .. (dot dot) attack in the board parameter.
|
NVD-CWE-Other
|
CVE-2001-0074
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270805
|
5.0 |
MEDIUM
|
technote_inc
|
technote
|
Directory traversal vulnerability in main.cgi in Technote allows remote attackers to read arbitrary files via a .. (dot dot) attack in the filename parameter.
|
NVD-CWE-Other
|
CVE-2001-0075
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270806
|
2.1 |
LOW
|
hp
|
support_tools_manager
|
Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the tool_stat.txt log file.
|
NVD-CWE-Other
|
CVE-2001-0079
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270807
|
7.5 |
HIGH
|
checkpoint
|
firewall-1
|
Check Point VPN-1/FireWall-1 4.1 SP2 with Fastmode enabled allows remote attackers to bypass access restrictions via malformed, fragmented packets.
|
NVD-CWE-Other
|
CVE-2001-0082
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270808
|
7.2 |
HIGH
|
freebsd
|
freebsd
|
Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying critical environmental variables that affect the behavior of telnetd.
|
NVD-CWE-Other
|
CVE-2001-0093
|
2008-09-6 05:23 |
2001-02-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270809
|
10.0 |
HIGH
|
omnicron
|
omnihttpd
|
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script.
|
NVD-CWE-Other
|
CVE-2001-0113
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270810
|
5.0 |
MEDIUM
|
omnicron
|
omnihttpd
|
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to overwrite arbitrary files via the cgidir parameter.
|
NVD-CWE-Other
|
CVE-2001-0114
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270811
|
7.6 |
HIGH
|
oliver_debon
|
flash
|
Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long DefineSound tag.
|
NVD-CWE-Other
|
CVE-2001-0127
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270812
|
1.2 |
LOW
|
trend_micro
|
interscan_viruswall
|
Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack.
|
NVD-CWE-Other
|
CVE-2001-0132
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270813
|
10.0 |
HIGH
|
trend_micro
|
interscan_viruswall
|
The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator …
|
NVD-CWE-Other
|
CVE-2001-0133
|
2008-09-6 05:23 |
2001-03-12 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270814
|
7.5 |
HIGH
|
van_dyke_technologies
|
vshell
|
Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execute arbitrary commands via a user name that contains format string specifiers.
|
NVD-CWE-Other
|
CVE-2001-0155
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270815
|
5.0 |
MEDIUM
|
lucent
orinoco
|
wavelan
orinoco_wavelan
|
Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will l…
|
NVD-CWE-Other
|
CVE-2001-0160
|
2008-09-6 05:23 |
2001-01-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270816
|
5.0 |
MEDIUM
|
cisco
|
aironet
|
Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks.
|
NVD-CWE-Other
|
CVE-2001-0161
|
2008-09-6 05:23 |
2001-01-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270817
|
4.6 |
MEDIUM
|
cisco
|
aironet_ap340
|
Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
|
NVD-CWE-Other
|
CVE-2001-0163
|
2008-09-6 05:23 |
2001-01-1 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270818
|
5.0 |
MEDIUM
|
free_java_web_server
|
free_java_web_server
|
Directory traversal vulnerability in Free Java Web Server 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
|
NVD-CWE-Other
|
CVE-2001-0186
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270819
|
10.0 |
HIGH
|
davide_libenzi
|
xmail
|
Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfileget or domaindel functions.
|
NVD-CWE-Other
|
CVE-2001-0192
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270820
|
5.0 |
MEDIUM
|
heat-on_software
|
hsweb
|
HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled.
|
NVD-CWE-Other
|
CVE-2001-0200
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270821
|
5.0 |
MEDIUM
|
informs
|
picserver
|
Picserver web server allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0202
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270822
|
5.0 |
MEDIUM
|
soft_lite
|
serverworx
|
Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbitrary files by inserting a .. (dot dot) or ... into the requested pathname of an HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0206
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270823
|
4.6 |
MEDIUM
|
microfocus
|
cobol
|
MicroFocus Cobol 4.1, with the AppTrack feature enabled, installs the mfaslmf directory and the nolicense file with insecure permissions, which allows local users to gain privileges by modifying file…
|
NVD-CWE-Other
|
CVE-2001-0208
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270824
|
5.0 |
MEDIUM
|
carey_internet_service
|
commerce.cgi
|
Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the page parameter.
|
NVD-CWE-Other
|
CVE-2001-0210
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270825
|
5.0 |
MEDIUM
|
silverplatter
|
webspirs
|
Directory traversal vulnerability in WebSPIRS 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the sp.nextform parameter.
|
NVD-CWE-Other
|
CVE-2001-0211
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270826
|
7.5 |
HIGH
|
his
|
auktion
|
Directory traversal vulnerability in HIS Auktion 1.62 allows remote attackers to read arbitrary files via a .. (dot dot) in the menue parameter, and possibly execute commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0212
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270827
|
5.0 |
MEDIUM
|
way
|
way-board
|
Way-board CGI program allows remote attackers to read arbitrary files by specifying the filename in the db parameter and terminating the filename with a null byte.
|
NVD-CWE-Other
|
CVE-2001-0214
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270828
|
7.2 |
HIGH
|
ja-elvis
ko-helvis
|
ja-elvis
ko-helvis
|
Buffer overflow in ja-elvis and ko-helvis ports of elvis allow local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-2001-0220
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270829
|
10.0 |
HIGH
|
lenzo
|
infobot
|
fortran math component in Infobot 0.44.5.3 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0225
|
2008-09-6 05:23 |
2001-06-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270830
|
5.0 |
MEDIUM
|
biblioscape
|
biblioweb_server
|
Buffer overflow in BiblioWeb web server 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0227
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270831
|
7.2 |
HIGH
|
sun
|
chilisoft
|
Chili!Soft ASP for Linux before 3.6 does not properly set group privileges when running in inherited mode, which could allow attackers to gain privileges via malicious scripts.
|
NVD-CWE-Other
|
CVE-2001-0229
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270832
|
5.0 |
MEDIUM
|
ibrow
|
news_desk
|
newsdesk.cgi in News Desk 1.2 allows remote attackers to read arbitrary files via shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0232
|
2008-09-6 05:23 |
2001-03-26 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270833
|
7.5 |
HIGH
|
netscape
|
smartdownload
|
Buffer overflow in Netscape SmartDownload 1.3 allows remote attackers (malicious web pages) to execute arbitrary commands via a long URL.
|
NVD-CWE-Other
|
CVE-2001-0262
|
2008-09-6 05:23 |
2001-07-2 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270834
|
5.0 |
MEDIUM
|
gene6
|
g6_ftp_server
|
Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send t…
|
NVD-CWE-Other
|
CVE-2001-0264
|
2008-09-6 05:23 |
2001-06-18 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270835
|
7.2 |
HIGH
|
hp
|
hp-ux
|
Vulnerability in Software Distributor SD-UX in HP-UX 11.0 and earlier allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2001-0266
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270836
|
5.0 |
MEDIUM
|
marconi
|
forethought
asx-1000
|
Marconi ASX-1000 ASX switches allow remote attackers to cause a denial of service in the telnet and web management interfaces via a malformed packet with the SYN-FIN and More Fragments attributes set.
|
NVD-CWE-Other
|
CVE-2001-0270
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270837
|
10.0 |
HIGH
|
mailnews.cgi
|
mailnews.cgi
|
mailnews.cgi 1.3 and earlier allows remote attackers to execute arbitrary commands via a user name that contains shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0271
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270838
|
5.0 |
MEDIUM
|
w3.org
|
sendtemp.pl
|
Directory traversal vulnerability in sendtemp.pl in W3.org Anaya Web development server allows remote attackers to read arbitrary files via a .. (dot dot) attack in the templ parameter.
|
NVD-CWE-Other
|
CVE-2001-0272
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270839
|
2.1 |
LOW
|
moby
|
netsuite_web_server
|
Moby Netsuite Web Server 1.02 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request.
|
NVD-CWE-Other
|
CVE-2001-0275
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270840
|
7.2 |
HIGH
|
debian
mandrakesoft
|
debian_linux
mandrake_linux
mandrake_linux_corporate_server
|
Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-2001-0279
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270841
|
7.2 |
HIGH
|
microsoft
|
windows_nt
|
Format string vulnerability in DbgPrint function, used in debug messages for some Windows NT drivers (possibly when called through DebugMessage), may allow local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2001-0281
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270842
|
6.4 |
MEDIUM
|
sun
|
sun_ftp
|
Directory traversal vulnerability in SunFTP build 9 allows remote attackers to read arbitrary files via .. (dot dot) characters in various commands, including (1) GET, (2) MKDIR, (3) RMDIR, (4) RENAM…
|
NVD-CWE-Other
|
CVE-2001-0283
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270843
|
10.0 |
HIGH
|
a1webserver
|
http_server
|
Buffer overflow in A1 HTTP server 1.0a allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP request.
|
NVD-CWE-Other
|
CVE-2001-0285
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270844
|
5.0 |
MEDIUM
|
a1webserver
|
http_server
|
Directory traversal vulnerability in A1 HTTP server 1.0a allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request.
|
NVD-CWE-Other
|
CVE-2001-0286
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270845
|
2.1 |
LOW
|
symantec_veritas
|
cluster_server
|
VERITAS Cluster Server (VCS) 1.3.0 on Solaris allows local users to cause a denial of service (system panic) via the -L option to the lltstat command.
|
NVD-CWE-Other
|
CVE-2001-0287
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270846
|
7.5 |
HIGH
|
cisco
|
ios
|
Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
|
NVD-CWE-Other
|
CVE-2001-0288
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270847
|
4.6 |
MEDIUM
|
joseph_allen
|
joe
|
Joe text editor 2.8 searches the current working directory (CWD) for the .joerc configuration file, which could allow local users to gain privileges of other users by placing a Trojan Horse .joerc fi…
|
NVD-CWE-Other
|
CVE-2001-0289
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270848
|
4.6 |
MEDIUM
|
gnu
|
mailman
|
Vulnerability in Mailman 2.0.1 and earlier allows list administrators to obtain user passwords.
|
NVD-CWE-Other
|
CVE-2001-0290
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270849
|
7.5 |
HIGH
|
francisco_burzi
|
php-nuke
|
PHP-Nuke 4.4.1a allows remote attackers to modify a user's email address and obtain the password by guessing the user id (UID) and calling user.php with the saveuser operator.
|
NVD-CWE-Other
|
CVE-2001-0292
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270850
|
5.0 |
MEDIUM
|
datawizard
|
ftpxq
|
Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitrary files via a .. (dot dot) in the GET command.
|
NVD-CWE-Other
|
CVE-2001-0293
|
2008-09-6 05:23 |
2001-05-3 |
表示
|
GitHub
Exploit DB
Packet Storm
|
|
|
