Latest CVE Feed
-
4.6
MEDIUMCVE-2001-0582
Ben Spink CrushFTP FTP Server 2.1.6 and earlier allows a local attacker to access arbitrary files via a '..' (dot dot) attack, or variations, in (1) GET, (2) CD, (3) NLST, (4) SIZE, (5) RETR.... Read more
Affected Products : crushftp_ftp_server- EPSS Score: %0.08
- Published: Aug. 22, 2001
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2001-0556
The Nirvana Editor (NEdit) 5.1.1 and earlier allows a local attacker to overwrite other users' files via a symlink attack on (1) backup files or (2) temporary files used when nedit prints a file or portions of a file.... Read more
Affected Products : nedit- EPSS Score: %0.05
- Published: Aug. 22, 2001
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2001-0569
Digital Creations Zope 2.3.1 b1 and earlier contains a problem in the method return values related to the classes (1) ObjectManager, (2) PropertyManager, and (3) PropertySheet.... Read more
Affected Products : zope- EPSS Score: %0.13
- Published: Aug. 22, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-0593
Anaconda Partners Clipper 3.3 and earlier allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in the template parameter.... Read more
Affected Products : clipper- EPSS Score: %6.96
- Published: Aug. 22, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-1131
Directory traversal vulnerability in WhitSoft Development SlimFTPd 2.2 allows an attacker to read arbitrary files and directories via a ... (modified dot dot) in the CD command.... Read more
Affected Products : slimftpd- EPSS Score: %0.43
- Published: Aug. 21, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-1295
Directory traversal vulnerability in Cerberus FTP Server 1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the CD command.... Read more
Affected Products : cerberus_ftp_server- EPSS Score: %1.61
- Published: Aug. 21, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-1149
Panda Antivirus Platinum before 6.23.00 allows a remore attacker to cause a denial of service (crash) when a user selects an action for a malformed UPX packed executable file.... Read more
Affected Products : panda_antivirus_platinum- EPSS Score: %0.48
- Published: Aug. 21, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-1166
linprocfs on FreeBSD 4.3 and earlier does not properly restrict access to kernel memory, which allows one process with debugging rights on a privileged process to read restricted memory from that process.... Read more
Affected Products : freebsd- EPSS Score: %0.58
- Published: Aug. 21, 2001
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2001-1133
Vulnerability in a system call in BSDI 3.0 and 3.1 allows local users to cause a denial of service (reboot) in the kernel via a particular sequence of instructions.... Read more
Affected Products : bsd_os- EPSS Score: %0.42
- Published: Aug. 21, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2000-1203
Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop.... Read more
Affected Products : domino- EPSS Score: %0.91
- Published: Aug. 20, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-1305
ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ user's contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer.... Read more
Affected Products : icq- EPSS Score: %0.52
- Published: Aug. 17, 2001
- Modified: Apr. 03, 2025
-
6.2
MEDIUMCVE-2001-1145
fts routines in FreeBSD 4.3 and earlier, NetBSD before 1.5.2, and OpenBSD 2.9 and earlier can be forced to change (chdir) into a different directory than intended when the directory above the current directory is moved, which could cause scripts to perfor... Read more
- EPSS Score: %0.06
- Published: Aug. 17, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-0566
Cisco Catalyst 2900XL switch allows a remote attacker to create a denial of service via an empty UDP packet sent to port 161 (SNMP) when SNMP is disabled.... Read more
Affected Products : catalyst_2900- EPSS Score: %15.85
- Published: Aug. 14, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-1231
GroupWise 5.5 and 6 running in live remote or smart caching mode allows remote attackers to read arbitrary users' mailboxes by extracting usernames and passwords from sniffed network traffic, as addressed by the "Padlock" fix.... Read more
Affected Products : groupwise- EPSS Score: %1.66
- Published: Aug. 14, 2001
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2001-0611
Becky! 2.00.05 and earlier can allow a remote attacker to gain additional privileges via a buffer overflow attack on long messages without newline characters.... Read more
Affected Products : becky_internet_mail- EPSS Score: %1.01
- Published: Aug. 14, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-0557
T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e).... Read more
Affected Products : jana_web_server- EPSS Score: %12.65
- Published: Aug. 14, 2001
- Modified: Apr. 03, 2025
-
4.6
MEDIUMCVE-2001-0549
Symantec LiveUpdate 1.5 stores proxy passwords in cleartext in a registry key, which could allow local users to obtain the passwords.... Read more
Affected Products : liveupdate- EPSS Score: %0.10
- Published: Aug. 14, 2001
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2001-0524
eEye SecureIIS versions 1.0.3 and earlier does not perform length checking on individual HTTP headers, which allows a remote attacker to send arbitrary length strings to IIS, contrary to an advertised feature of SecureIIS versions 1.0.3 and earlier.... Read more
Affected Products : securells- EPSS Score: %0.86
- Published: Aug. 14, 2001
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2001-0523
eEye SecureIIS versions 1.0.3 and earlier allows a remote attacker to bypass filtering of requests made to SecureIIS by escaping HTML characters within the request, which could allow a remote attacker to use restricted variables and perform directory trav... Read more
- EPSS Score: %0.42
- Published: Aug. 14, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-0615
Directory traversal vulnerability in Faust Informatics Freestyle Chat server prior to 4.1 SR3 allows a remote attacker to read arbitrary files via a specially crafted URL which includes variations of a '..' (dot dot) attack such as '...' or '....'.... Read more
Affected Products : freestyle_chat- EPSS Score: %6.18
- Published: Aug. 14, 2001
- Modified: Apr. 03, 2025