Total
29739 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2001-1148 | 1 Sco | 1 Openserver | 2025-04-03 | N/A |
| Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh. | ||||
| CVE-2001-1149 | 1 Panda | 1 Panda Antivirus Platinum | 2025-04-03 | N/A |
| Panda Antivirus Platinum before 6.23.00 allows a remore attacker to cause a denial of service (crash) when a user selects an action for a malformed UPX packed executable file. | ||||
| CVE-2001-1330 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
| Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument. | ||||
| CVE-2001-1183 | 1 Cisco | 1 Ios | 2025-04-03 | N/A |
| PPTP implementation in Cisco IOS 12.1 and 12.2 allows remote attackers to cause a denial of service (crash) via a malformed packet. | ||||
| CVE-2001-1185 | 1 Freebsd | 1 Freebsd | 2025-04-03 | N/A |
| Some AIO operations in FreeBSD 4.4 may be delayed until after a call to execve, which could allow a local user to overwrite memory of the new process and gain privileges. | ||||
| CVE-2001-1189 | 1 Ibm | 1 Websphere Application Server | 2025-04-03 | N/A |
| IBM Websphere Application Server 3.5.3 and earlier stores a password in cleartext in the sas.server.props file, which allows local users to obtain the passwords via a JSP script. | ||||
| CVE-2001-1207 | 1 Daydream | 1 Daydream Bbs | 2025-04-03 | N/A |
| Buffer overflows in DayDream BBS 2.9 through 2.13 allow remote attackers to possibly execute arbitrary code via the control codes (1) ~#MC, (2) ~#TF, or (3) ~#RA. | ||||
| CVE-2001-1203 | 1 Alessandro Rubini | 1 Gpm | 2025-04-03 | N/A |
| Format string vulnerability in gpm-root in gpm 1.17.8 through 1.17.18 allows local users to gain root privileges. | ||||
| CVE-2001-1206 | 1 Matrixs Cgi Vault | 1 Last Lines | 2025-04-03 | N/A |
| Matrix CGI vault Last Lines 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the $error_log variable. | ||||
| CVE-2001-1208 | 1 Daydream | 1 Daydream Bbs | 2025-04-03 | N/A |
| Format string vulnerability in DayDream BBS allows remote attackers to execute arbitrary code via format string specifiers in a file containing a ~#RA control code. | ||||
| CVE-2001-1209 | 1 Abe Timmerman | 1 Zml.cgi | 2025-04-03 | N/A |
| Directory traversal vulnerability in zml.cgi allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter. | ||||
| CVE-2001-1236 | 1 Sebastian Bunka | 1 Myphppagetool | 2025-04-03 | N/A |
| myphpPagetool PHP script 0.4.3-1 and earlier allows remote attackers to execute arbitrary code by including files from remote web sites, using an HTTP request that modifies the includedir variable. | ||||
| CVE-2001-1239 | 1 Connect Inc. | 1 Powernet Ix | 2025-04-03 | N/A |
| PowerNet IX allows remote attackers to cause a denial of service via a port scan. | ||||
| CVE-2001-1263 | 1 Pragma Systems | 1 Interaccess | 2025-04-03 | N/A |
| telnet95.exe in Pragma InterAccess 4.0 build 5 allows remote attackers to cause a denial of service (crash) via a large number of characters to port 23, possibly due to a buffer overflow. | ||||
| CVE-2001-1264 | 1 Hp | 2 Hp-ux, Vvos | 2025-04-03 | N/A |
| Vulnerability in mkacct in HP-UX 11.04 running Virtualvault Operating System (VVOS) 4.0 and 4.5 allows attackers to elevate privileges. | ||||
| CVE-2001-1286 | 1 Ipswitch | 1 Imail | 2025-04-03 | N/A |
| Ipswitch IMail 7.04 and earlier stores a user's session ID in a URL, which could allow remote attackers to hijack sessions by obtaining the URL, e.g. via an HTML email that causes the Referrer to be sent to a URL under the attacker's control. | ||||
| CVE-2001-1289 | 1 Id Software | 1 Quake 3 Arena | 2025-04-03 | N/A |
| Quake 3 arena 1.29f and 1.29g allows remote attackers to cause a denial of service (crash) via a malformed connection packet that begins with several char-255 characters. | ||||
| CVE-2001-1318 | 1 Qualcomm | 1 Eudora Worldmail Server | 2025-04-03 | N/A |
| Vulnerabilities in Qualcomm Eudora WorldMail Server may allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite. | ||||
| CVE-2001-1337 | 1 Beck Ipc Gmbh | 1 Ipc At Chip Embedded-webserver | 2025-04-03 | N/A |
| Beck IPC GmbH IPC@CHIP Embedded-Webserver allows remote attackers to cause a denial of service via a long HTTP request. | ||||
| CVE-2001-1336 | 1 Aclogic | 1 Cesarftp | 2025-04-03 | N/A |
| CesarFTP 0.98b and earlier stores usernames and passwords in plaintext in the settings.ini file, which allows attackers to gain privileges. | ||||