Total
27865 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2001-0033 | 2 Kth, Netbsd | 2 Kth Kerberos, Netbsd | 2017-10-09 | 7.2 HIGH | N/A |
| KTH Kerberos IV allows local users to change the configuration of a Kerberos server running at an elevated privilege by specifying an alternate directory using with the KRBCONFDIR environmental variable, which allows the user to gain additional privileges. | |||||
| CVE-2001-0716 | 1 Citrix | 1 Metaframe | 2017-10-09 | 5.0 MEDIUM | N/A |
| Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and earlier, allows remote attackers to cause a denial of service (crash) via a large number of incomplete connections to the server. | |||||
| CVE-2001-0034 | 1 Kth | 1 Kth Kerberos | 2017-10-09 | 7.2 HIGH | N/A |
| KTH Kerberos IV allows local users to specify an alternate proxy using the krb4_proxy variable, which allows the user to generate false proxy responses and possibly gain privileges. | |||||
| CVE-2001-0717 | 1 Tooltalk | 1 Tooltalk Database Server | 2017-10-09 | 10.0 HIGH | N/A |
| Format string vulnerability in ToolTalk database server rpc.ttdbserverd allows remote attackers to execute arbitrary commands via format string specifiers that are passed to the syslog function. | |||||
| CVE-2001-0036 | 1 Kth | 1 Kth Kerberos | 2017-10-09 | 1.2 LOW | N/A |
| KTH Kerberos IV allows local users to overwrite arbitrary files via a symlink attack on a ticket file. | |||||
| CVE-2001-0035 | 1 Kth | 1 Kth Kerberos | 2017-10-09 | 7.2 HIGH | N/A |
| Buffer overflow in the kdc_reply_cipher function in KTH Kerberos IV allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long authentication request. | |||||
| CVE-2001-0862 | 1 Cisco | 1 12000 Router | 2017-10-09 | 7.5 HIGH | N/A |
| Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote attackers to bypass the ACL. | |||||
| CVE-2001-0622 | 1 Cisco | 1 Content Services Switch 11000 | 2017-10-09 | 7.5 HIGH | N/A |
| The web management service on Cisco Content Service series 11000 switches (CSS) before WebNS 4.01B29s or WebNS 4.10B17s allows a remote attacker to gain additional privileges by directly requesting the web management URL instead of navigating through the interface. | |||||
| CVE-2001-0630 | 1 Mimanet | 1 Source Viewer | 2017-10-09 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in MIMAnet viewsrc.cgi 2.0 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in the 'loc' variable. | |||||
| CVE-2001-0859 | 1 Redhat | 1 Linux | 2017-10-09 | 5.0 MEDIUM | N/A |
| 2.4.3-12 kernel in Red Hat Linux 7.1 Korean installation program sets the setting default umask for init to 000, which installs files with world-writeable permissions. | |||||
| CVE-2001-0062 | 1 Freebsd | 1 Freebsd | 2017-10-09 | 2.1 LOW | N/A |
| procfs in FreeBSD and possibly other operating systems allows local users to cause a denial of service by calling mmap on the process' own mem file, which causes the kernel to hang. | |||||
| CVE-2001-0626 | 1 Oreilly | 1 Website Professional | 2017-10-09 | 7.5 HIGH | N/A |
| O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character. | |||||
| CVE-2000-0372 | 1 Caldera | 1 Openlinux | 2017-10-09 | 7.2 HIGH | N/A |
| Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges. | |||||
| CVE-2001-0174 | 1 Trend Micro | 1 Virus Buster 2001 | 2017-10-09 | 7.6 HIGH | N/A |
| Buffer overflow in Trend Micro Virus Buster 2001 8.00 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a large "To" address. | |||||
| CVE-2000-0373 | 1 Kde | 1 Kvt | 2017-10-09 | 7.2 HIGH | N/A |
| Vulnerabilities in the KDE kvt terminal program allow local users to gain root privileges. | |||||
| CVE-2001-0553 | 1 Ssh | 1 Secure Shell | 2017-10-09 | 7.2 HIGH | N/A |
| SSH Secure Shell 3.0.0 on Unix systems does not properly perform password authentication to the sshd2 daemon, which allows local users to gain access to accounts with short password fields, such as locked accounts that use "NP" in the password field. | |||||
| CVE-2001-0042 | 1 Apache | 1 Http Server | 2017-10-09 | 5.0 MEDIUM | N/A |
| PHP 3.x (PHP3) on Apache 1.3.6 allows remote attackers to read arbitrary files via a modified .. (dot dot) attack containing "%5c" (encoded backslash) sequences. | |||||
| CVE-2001-0187 | 1 Washington University | 1 Wu-ftpd | 2017-10-09 | 10.0 HIGH | N/A |
| Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PASV port assignment. | |||||
| CVE-2001-0311 | 1 Hp | 2 Hp-ux, Omniback Ii | 2017-10-09 | 4.6 MEDIUM | N/A |
| Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized access to an OmniBack client. | |||||
| CVE-2001-0123 | 1 Extropia | 1 Bbs Forum.cgi | 2017-10-09 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in eXtropia bbs_forum.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the file parameter. | |||||