Total
210374 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2001-0133 | 1 Trend Micro | 1 Interscan Viruswall | 2008-09-05 | 10.0 HIGH | N/A |
| The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator password via the setpasswd.cgi program or other HTTP GET requests that contain base64 encoded usernames and passwords. | |||||
| CVE-2001-0155 | 1 Van Dyke Technologies | 1 Vshell | 2008-09-05 | 7.5 HIGH | N/A |
| Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execute arbitrary commands via a user name that contains format string specifiers. | |||||
| CVE-2001-0160 | 2 Lucent, Orinoco | 2 Wavelan, Orinoco Wavelan | 2008-09-05 | 5.0 MEDIUM | N/A |
| Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will let them decrypt messages. | |||||
| CVE-2001-0161 | 1 Cisco | 1 Aironet | 2008-09-05 | 5.0 MEDIUM | N/A |
| Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks. | |||||
| CVE-2001-0162 | 1 Microsoft | 1 Windows Ce | 2008-09-05 | 7.5 HIGH | N/A |
| WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections. | |||||
| CVE-2001-0163 | 1 Cisco | 1 Aironet Ap340 | 2008-09-05 | 4.6 MEDIUM | N/A |
| Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections. | |||||
| CVE-2001-0186 | 1 Free Java Web Server | 1 Free Java Web Server | 2008-09-05 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in Free Java Web Server 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-2001-0192 | 1 Davide Libenzi | 1 Xmail | 2008-09-05 | 10.0 HIGH | N/A |
| Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfileget or domaindel functions. | |||||
| CVE-2001-0200 | 1 Heat-on Software | 1 Hsweb | 2008-09-05 | 5.0 MEDIUM | N/A |
| HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled. | |||||
| CVE-2001-0202 | 1 Informs | 1 Picserver | 2008-09-05 | 5.0 MEDIUM | N/A |
| Picserver web server allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTP GET request. | |||||
| CVE-2001-0206 | 1 Soft Lite | 1 Serverworx | 2008-09-05 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbitrary files by inserting a .. (dot dot) or ... into the requested pathname of an HTTP GET request. | |||||
| CVE-2001-0208 | 1 Microfocus | 1 Cobol | 2008-09-05 | 4.6 MEDIUM | N/A |
| MicroFocus Cobol 4.1, with the AppTrack feature enabled, installs the mfaslmf directory and the nolicense file with insecure permissions, which allows local users to gain privileges by modifying files. | |||||
| CVE-2001-0210 | 1 Carey Internet Service | 1 Commerce.cgi | 2008-09-05 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the page parameter. | |||||
| CVE-2001-0211 | 1 Silverplatter | 1 Webspirs | 2008-09-05 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in WebSPIRS 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the sp.nextform parameter. | |||||
| CVE-2001-0212 | 1 His | 1 Auktion | 2008-09-05 | 7.5 HIGH | N/A |
| Directory traversal vulnerability in HIS Auktion 1.62 allows remote attackers to read arbitrary files via a .. (dot dot) in the menue parameter, and possibly execute commands via shell metacharacters. | |||||
| CVE-2001-0214 | 1 Way | 1 Way-board | 2008-09-05 | 5.0 MEDIUM | N/A |
| Way-board CGI program allows remote attackers to read arbitrary files by specifying the filename in the db parameter and terminating the filename with a null byte. | |||||
| CVE-2001-0220 | 2 Ja-elvis, Ko-helvis | 2 Ja-elvis, Ko-helvis | 2008-09-05 | 7.2 HIGH | N/A |
| Buffer overflow in ja-elvis and ko-helvis ports of elvis allow local users to gain root privileges. | |||||
| CVE-2001-0225 | 1 Lenzo | 1 Infobot | 2008-09-05 | 10.0 HIGH | N/A |
| fortran math component in Infobot 0.44.5.3 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters. | |||||
| CVE-2001-0227 | 1 Biblioscape | 1 Biblioweb Server | 2008-09-05 | 5.0 MEDIUM | N/A |
| Buffer overflow in BiblioWeb web server 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP GET request. | |||||
| CVE-2001-0229 | 1 Sun | 1 Chilisoft | 2008-09-05 | 7.2 HIGH | N/A |
| Chili!Soft ASP for Linux before 3.6 does not properly set group privileges when running in inherited mode, which could allow attackers to gain privileges via malicious scripts. | |||||