Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.0

    MEDIUM
    CVE-2001-0977

    slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.... Read more

    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1306

    iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : iplanet_directory_server
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1315

    Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed BER encodings, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1312

    Format string vulnerabilities in Lotus Domino R5 before R5.0.7a allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : lotus_domino_r5
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1318

    Vulnerabilities in Qualcomm Eudora WorldMail Server may allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : eudora_worldmail_server
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1320

    Network Associates PGP Keyserver 7.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via exceptional BER encodings (possibly buffer overflows), as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : keyserver
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1309

    Buffer overflows in IBM SecureWay 3.2.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : secureway_directory
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1317

    Teamware Office Enterprise Directory allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, via invalid encodings for certain BER object types, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : teamware_office
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1310

    IBM SecureWay 3.2.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, via invalid encodings for the L field of a BER encoding, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : secureway_directory
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1316

    Buffer overflows in Teamware Office Enterprise Directory allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : teamware_office
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1321

    Oracle Internet Directory Server 2.1.1.x and 3.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid encodings of BER OBJECT-IDENTIFIER values, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : internet_directory
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.8

    HIGH
    CVE-2001-1238

    Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which could allow local users to install Trojan horses that cannot... Read more

    Affected Products : windows_2000
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1313

    Lotus Domino R5 before R5.0.7a allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via miscellaneous packets with semi-valid BER encodings, as demonstrated by the PROTOS LDAPv3 test suite.... Read more

    Affected Products : lotus_domino_r5
    • Published: Jul. 16, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-1053

    AdLogin.pm in AdCycle 1.15 and earlier allows remote attackers to bypass authentication and gain privileges by injecting SQL code in the $password argument.... Read more

    Affected Products : adcycle
    • Published: Jul. 13, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1082

    Directory traversal vulnerability in Livingston/Lucent RADIUS before 2.1.va.1 may allow attackers to read arbitrary files via a .. (dot dot) attack.... Read more

    Affected Products : radius radius
    • Published: Jul. 13, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1142

    ArGoSoft FTP Server 1.2.2.2 uses weak encryption for user passwords, which allows an attacker with access to the password file to gain privileges.... Read more

    Affected Products : ftp_server
    • Published: Jul. 12, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-1291

    The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the server via brute force password guessing.... Read more

    • Published: Jul. 12, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1271

    Directory traversal vulnerability in rar 2.02 and earlier allows attackers to overwrite arbitrary files during archive extraction via a .. (dot dot) attack on archived filenames.... Read more

    Affected Products : rar
    • Published: Jul. 12, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1270

    Directory traversal vulnerability in the console version of PKZip (pkzipc) 4.00 and earlier allows attackers to overwrite arbitrary files during archive extraction with the -rec (recursive) option via a .. (dot dot) attack on the archived files.... Read more

    Affected Products : pkzip
    • Published: Jul. 12, 2001
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2001-1268

    Directory traversal vulnerability in Info-ZIP UnZip 5.42 and earlier allows attackers to overwrite arbitrary files during archive extraction via a .. (dot dot) in an extracted filename.... Read more

    Affected Products : unzip
    • Published: Jul. 12, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 293633 Results