Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2001-1373

    MailSafe in Zone Labs ZoneAlarm 2.6 and earlier and ZoneAlarm Pro 2.6 and 2.4 does not block prohibited file types with long file names, which allows remote attackers to send potentially dangerous attachments.... Read more

    Affected Products : zonealarm
    • EPSS Score: %0.56
    • Published: Jul. 18, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0980

    docview before 1.0-15 allows remote attackers to execute arbitrary commands via shell metacharacters that are processed when converting a man page to a web page.... Read more

    • EPSS Score: %2.80
    • Published: Jul. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-1182

    Vulnerability in login in HP-UX 11.00, 11.11, and 10.20 allows restricted shell users to bypass certain security checks and gain privileges.... Read more

    Affected Products : hp-ux
    • EPSS Score: %0.05
    • Published: Jul. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1242

    Directory traversal vulnerability in Un-CGI 1.9 and earlier allows remote attackers to execute arbitrary code via a .. (dot dot) in an HTML form.... Read more

    Affected Products : un-cgi
    • EPSS Score: %4.75
    • Published: Jul. 17, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1569

    Quake 1 and NetQuake servers allow remote attackers to cause a denial of service (resource exhaustion or forced disconnection) via a flood of spoofed UDP connection packets, which exceeds the server's player limit.... Read more

    Affected Products : quake
    • EPSS Score: %1.32
    • Published: Jul. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1279

    Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that trigger an integer signedness error, a different vulnerabil... Read more

    Affected Products : tcpdump
    • EPSS Score: %17.29
    • Published: Jul. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1241

    Un-CGI 1.9 and earlier does not verify that a CGI script has the execution bits set before executing it, which allows remote attackers to execute arbitrary commands by directing Un-CGI to a document that begins with "#!" and the desired program name.... Read more

    Affected Products : un-cgi
    • EPSS Score: %2.96
    • Published: Jul. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0974

    Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : internet_directory
    • EPSS Score: %2.70
    • Published: Jul. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-1179

    xman allows local users to gain privileges by modifying the MANPATH to point to a man page whose filename contains shell metacharacters.... Read more

    Affected Products : x11r6
    • EPSS Score: %0.06
    • Published: Jul. 17, 2001
    • Modified: Apr. 03, 2025

  • 6.2

    MEDIUM
    CVE-2001-1177

    ml85p in Samsung ML-85G GDI printer driver before 0.2.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files.... Read more

    • EPSS Score: %0.13
    • Published: Jul. 17, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1306

    iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : iplanet_directory_server
    • EPSS Score: %8.06
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1321

    Oracle Internet Directory Server 2.1.1.x and 3.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid encodings of BER OBJECT-IDENTIFIER values, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : internet_directory
    • EPSS Score: %5.25
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.8

    HIGH
    CVE-2001-1238

    Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which could allow local users to install Trojan horses that cannot... Read more

    Affected Products : windows_2000
    • EPSS Score: %0.80
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1315

    Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed BER encodings, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    • EPSS Score: %11.26
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1313

    Lotus Domino R5 before R5.0.7a allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via miscellaneous packets with semi-valid BER encodings, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : lotus_domino_r5
    • EPSS Score: %7.68
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1310

    IBM SecureWay 3.2.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, via invalid encodings for the L field of a BER encoding, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : secureway_directory
    • EPSS Score: %11.55
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1311

    Buffer overflows in Lotus Domino R5 before R5.0.7a allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : lotus_domino_r5
    • EPSS Score: %19.95
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1318

    Vulnerabilities in Qualcomm Eudora WorldMail Server may allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : eudora_worldmail_server
    • EPSS Score: %10.03
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1312

    Format string vulnerabilities in Lotus Domino R5 before R5.0.7a allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : lotus_domino_r5
    • EPSS Score: %11.55
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1308

    Format string vulnerabilities in iPlanet Directory Server 4.1.4 and earlier (LDAP) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : iplanet_directory_server
    • EPSS Score: %17.52
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 291170 Results