Latest CVE Feed
-
7.5
HIGHCVE-2001-1323
Buffer overflow in MIT Kerberos 5 (krb5) 1.2.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via base-64 encoded data, which is not properly handled when the radix_encode function processes file glob ... Read more
Affected Products : kerberos_5- Published: May. 16, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-1342
Apache before 1.3.20 on Windows and OS/2 systems allows remote attackers to cause a denial of service (GPF) via an HTTP request for a URI that contains a large number of / (slash) or other characters, which causes certain functions to dereference a null p... Read more
Affected Products : http_server- Published: May. 12, 2001
- Modified: Apr. 03, 2025
-
2.6
LOWCVE-2001-1450
Microsoft Internet Explorer 5.0 through 6.0 allows attackers to cause a denial of service (browser crash) via a crafted FTP URL such as "/.#./".... Read more
Affected Products : internet_explorer- Published: May. 11, 2001
- Modified: Apr. 03, 2025
-
1.2
LOWCVE-2001-1333
Linux CUPS before 1.1.6 does not securely handle temporary files, possibly due to a symlink vulnerability that could allow local users to overwrite files.... Read more
Affected Products : cups- Published: May. 10, 2001
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2001-1332
Buffer overflows in Linux CUPS before 1.1.6 may allow remote attackers to execute arbitrary code.... Read more
Affected Products : cups- Published: May. 10, 2001
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2001-0319
orderdspc.d2w macro in IBM Net.Commerce 3.x allows remote attackers to execute arbitrary SQL queries by inserting them into the order_rn option of the report capability.... Read more
- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2001-0285
Buffer overflow in A1 HTTP server 1.0a allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP request.... Read more
Affected Products : http_server- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2001-0297
Directory traversal vulnerability in Simple Server HTTPd 1.0 (originally Free Java Server) allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.... Read more
Affected Products : simple_server- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2001-0268
The i386_set_ldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USER_LDT kernel option is enabled, does not validate a call gate target, which allows local users to gain root privileges by creating a segment call gate in the ... Read more
- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2001-0271
mailnews.cgi 1.3 and earlier allows remote attackers to execute arbitrary commands via a user name that contains shell metacharacters.... Read more
Affected Products : mailnews.cgi- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2001-0308
UploadServlet in Bajie HTTP JServer 0.78, and possibly other versions before 0.80, allows remote attackers to execute arbitrary commands by calling the servlet to upload a program, then using a ... (modified ..) to access the file that was created for the... Read more
Affected Products : java_http_server- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2001-0301
Buffer overflow in Analog before 4.16 allows remote attackers to execute arbitrary commands by using the ALIAS command to construct large strings.... Read more
Affected Products : analog- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2001-0282
SEDUM 2.1 HTTP server allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP request.... Read more
Affected Products : sedum- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2001-0296
Buffer overflow in WFTPD Pro 3.00 allows remote attackers to execute arbitrary commands via a long CWD command.... Read more
Affected Products : wftpd_pro- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
2.6
LOWCVE-2001-0324
Windows 98 and Windows 2000 Java clients allow remote attackers to cause a denial of service via a Java applet that opens a large number of UDP sockets, which prevents the host from establishing any additional UDP connections, and possibly causes a crash.... Read more
- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2001-0168
Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.... Read more
Affected Products : winvnc- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
4.6
MEDIUMCVE-2001-0278
Vulnerability in linkeditor in HP MPE/iX 6.5 and earlier allows local users to gain privileges.... Read more
Affected Products : mpe_ix- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
6.4
MEDIUMCVE-2001-0276
ext.dll in BadBlue 1.02.07 Personal Edition web server allows remote attackers to determine the physical path of the server by directly calling ext.dll without any arguments, which produces an error message that contains the path.... Read more
Affected Products : badblue- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2001-0145
Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an attacker to execute arbitrary commands via a malformed vCard birthday field.... Read more
- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2001-0288
Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.... Read more
Affected Products : ios- Published: May. 03, 2001
- Modified: Apr. 03, 2025