Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.6

    MEDIUM
    CVE-2001-1347

    Windows 2000 allows local users to cause a denial of service and possibly gain privileges by setting a hardware breakpoint that is handled using global debug registers, which could cause other processes to terminate due to an exception, and allow hijackin... Read more

    Affected Products : windows_2000
    • Published: May. 24, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0749

    Beck IPC GmbH IPC@CHIP Embedded-Webserver allows remote attackers to read arbitrary files via a webserver root directory set to system root.... Read more

    Affected Products : ipc_at_chip_embedded-webserver
    • Published: May. 24, 2001
    • Modified: Apr. 03, 2025

  • 9.8

    CRITICAL
    CVE-2001-1339

    Beck IPC GmbH IPC@CHIP telnet service does not delay or disconnect users from the service when bad passwords are entered, which makes it easier for remote attackers to conduct brute force password guessing attacks.... Read more

    Affected Products : ipc\@chip_firmware ipc\@chip
    • Published: May. 24, 2001
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-1327

    pmake before 2.1.35 in Turbolinux 6.05 and earlier is installed with setuid root privileges, which could allow local users to gain privileges by exploiting vulnerabilities in pmake or programs that are used by pmake.... Read more

    Affected Products : pmake
    • Published: May. 24, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1338

    Beck IPC GmbH IPC@CHIP TelnetD server generates different responses when given valid and invalid login names, which allows remote attackers to determine accounts on the system.... Read more

    Affected Products : ipc_at_chip_telnetd_server
    • Published: May. 24, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1428

    The (1) FTP and (2) Telnet services in Beck GmbH IPC@Chip are shipped with a default password, which allows remote attackers to gain unauthorized access.... Read more

    Affected Products : ipc_at_chip_embedded-webserver
    • Published: May. 24, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0551

    Buffer overflow in CDE Print Viewer (dtprintinfo) allows local users to execute arbitrary code by copying text from the clipboard into the Help window.... Read more

    Affected Products : hp-ux
    • Published: May. 22, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1337

    Beck IPC GmbH IPC@CHIP Embedded-Webserver allows remote attackers to cause a denial of service via a long HTTP request.... Read more

    Affected Products : ipc_at_chip_embedded-webserver
    • Published: May. 21, 2001
    • Modified: Apr. 03, 2025

  • 1.2

    LOW
    CVE-2001-1346

    Computer Associates ARCserveIT 6.61 and 6.63 (also called ARCservIT) allows local users to overwrite arbitrary files via a symlink attack on the temporary files (1) asagent.tmp or (2) inetd.tmp.... Read more

    Affected Products : arcserve_backup arcserve_backup
    • Published: May. 18, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1323

    Buffer overflow in MIT Kerberos 5 (krb5) 1.2.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via base-64 encoded data, which is not properly handled when the radix_encode function processes file glob ... Read more

    Affected Products : kerberos_5
    • Published: May. 16, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1342

    Apache before 1.3.20 on Windows and OS/2 systems allows remote attackers to cause a denial of service (GPF) via an HTTP request for a URI that contains a large number of / (slash) or other characters, which causes certain functions to dereference a null p... Read more

    Affected Products : http_server
    • Published: May. 12, 2001
    • Modified: Apr. 03, 2025

  • 2.6

    LOW
    CVE-2001-1450

    Microsoft Internet Explorer 5.0 through 6.0 allows attackers to cause a denial of service (browser crash) via a crafted FTP URL such as "/.#./".... Read more

    Affected Products : internet_explorer
    • Published: May. 11, 2001
    • Modified: Apr. 03, 2025

  • 1.2

    LOW
    CVE-2001-1333

    Linux CUPS before 1.1.6 does not securely handle temporary files, possibly due to a symlink vulnerability that could allow local users to overwrite files.... Read more

    Affected Products : cups
    • Published: May. 10, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1332

    Buffer overflows in Linux CUPS before 1.1.6 may allow remote attackers to execute arbitrary code.... Read more

    Affected Products : cups
    • Published: May. 10, 2001
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2001-0268

    The i386_set_ldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USER_LDT kernel option is enabled, does not validate a call gate target, which allows local users to gain root privileges by creating a segment call gate in the ... Read more

    Affected Products : netbsd openbsd
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0282

    SEDUM 2.1 HTTP server allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP request.... Read more

    Affected Products : sedum
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0271

    mailnews.cgi 1.3 and earlier allows remote attackers to execute arbitrary commands via a user name that contains shell metacharacters.... Read more

    Affected Products : mailnews.cgi
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2001-0269

    pam_ldap authentication module in Solaris 8 allows remote attackers to bypass authentication via a NULL password.... Read more

    Affected Products : sunos
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-0297

    Directory traversal vulnerability in Simple Server HTTPd 1.0 (originally Free Java Server) allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.... Read more

    Affected Products : simple_server
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-0308

    UploadServlet in Bajie HTTP JServer 0.78, and possibly other versions before 0.80, allows remote attackers to execute arbitrary commands by calling the servlet to upload a program, then using a ... (modified ..) to access the file that was created for the... Read more

    Affected Products : java_http_server
    • Published: May. 03, 2001
    • Modified: Apr. 03, 2025
Showing 20 of 293497 Results