Full List

Search

Recent Vulnerabilities

• CVE-2001-0430 • published on September 18, 2001 Vulnerability in exuberant-ctags before 3.2.4-0.1 insecurely creates temporary files.
• CVE-2001-0434 • published on September 18, 2001 The LogDataListToFile ActiveX function used in (1) Knowledge Center and (2) Back web components of Compaq Presario computers allows remote attackers to modify arbitrary files and cause a denial of service.
• CVE-2001-0439 • published on September 18, 2001 licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.
• CVE-2001-0455 • published on September 18, 2001 Cisco Aironet 340 Series wireless bridge before 8.55 does not properly disable access to the web interface, which allows remote attackers to modify its configuration.
• CVE-2001-0413 • published on September 18, 2001 BinTec X4000 Access router, and possibly other versions, allows remote attackers to cause a denial of service via a SYN port scan, which causes the router to hang.
• CVE-2001-0428 • published on September 18, 2001 Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via an IP packet with an invalid IP option.
• CVE-2001-0462 • published on September 18, 2001 Directory traversal vulnerability in Perl web server 0.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.
• CVE-2001-0467 • published on September 18, 2001 Directory traversal vulnerability in RobTex Viking Web server before 1.07-381 allows remote attackers to read arbitrary files via a \... (modified dot dot) in an HTTP URL request.
• CVE-2001-0469 • published on September 18, 2001 rwho daemon rwhod in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service via malformed packets with a short length.
• CVE-2001-0474 • published on September 18, 2001 Utah-glx in Mesa before 3.3-14 on Mandrake Linux 7.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/glxmemory file.
• CVE-2001-0481 • published on September 18, 2001 Vulnerability in rpmdrake in Mandrake Linux 8.0 related to insecure temporary file handling.
• CVE-2001-0489 • published on September 18, 2001 Format string vulnerability in gftp prior to 2.0.8 allows remote malicious FTP servers to execute arbitrary commands.
• CVE-2001-0495 • published on September 18, 2001 Directory traversal in DataWizard WebXQ server 1.204 allows remote attackers to view files outside of the web root via a .. (dot dot) attack.
• CVE-2001-0457 • published on September 18, 2001 man2html before 1.5-22 allows remote attackers to cause a denial of service (memory exhaustion).
• CVE-2001-0465 • published on September 18, 2001 TurboTax saves passwords in a temporary file when a user imports investment tax information from a financial institution, which could allow local users to obtain sensitive information.
• CVE-2001-0494 • published on September 18, 2001 Buffer overflow in IPSwitch IMail SMTP server 6.06 and possibly prior versions allows remote attackers to execute arbitrary code via a long From: header.
• CVE-2001-0473 • published on September 18, 2001 Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.
• CVE-2001-0475 • published on September 18, 2001 index.php in Jelsoft vBulletin does not properly initialize a PHP variable that is used to store template information, which allows remote attackers to execute arbitrary PHP code via special characters in the templatecache parameter.
• CVE-2001-0482 • published on September 18, 2001 Configuration error in Argus PitBull LX allows root users to bypass specified access control restrictions and cause a denial of service or execute arbitrary commands by modifying kernel variables such as MaxFiles, MaxInodes, and ModProbePath in /proc/sys via calls to sysctl.
• CVE-2001-0488 • published on September 18, 2001 pcltotiff in HP-UX 10.x has unnecessary set group id permissions, which allows local users to cause a denial of service.