Vulnerabilities (CVE)

Filtered by NVD-CWE-Other
Total 29918 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-1457 1 Nobreak Technologies 1 Crazywwwboard 2026-06-16 7.5 HIGH N/A
Buffer overflow in CrazyWWWBoard 2000p4 and 2000LEp5 allows remote attackers to execute arbitrary code via a long HTTP_USER_AGENT CGI environment variable.
CVE-2001-1455 1 Netegrity 1 Siteminder 2026-06-16 7.5 HIGH N/A
Netegrity SiteMinder 3.6 through 4.5.1 allows remote attackers to bypass filtering via URLs containing Unicode characters.
CVE-2001-1454 1 Oracle 1 Mysql 2026-06-16 7.5 HIGH N/A
Buffer overflow in MySQL before 3.23.33 allows remote attackers to execute arbitrary code via a long drop database request.
CVE-2001-1453 1 Oracle 1 Mysql 2026-06-16 7.5 HIGH N/A
Buffer overflow in libmysqlclient.so in MySQL 3.23.33 and earlier allows remote attackers to execute arbitrary code via a long host parameter.
CVE-2001-1451 1 Microsoft 1 Windows 2000 2026-06-16 5.0 MEDIUM N/A
Memory leak in the SNMP LAN Manager (LANMAN) MIB extension for Microsoft Windows 2000 before SP3, when the Print Spooler is not running, allows remote attackers to cause a denial of service (memory consumption) via a large number of GET or GETNEXT requests.
CVE-2001-1450 1 Microsoft 1 Internet Explorer 2026-06-16 2.6 LOW N/A
Microsoft Internet Explorer 5.0 through 6.0 allows attackers to cause a denial of service (browser crash) via a crafted FTP URL such as "/.#./".
CVE-2001-1449 2 Apache, Mandrakesoft 4 Http Server, Mandrake Linux, Mandrake Linux Corporate Server and 1 more 2026-06-16 7.5 HIGH N/A
The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories.
CVE-2001-1448 1 Magic 1 Edeveloper 2026-06-16 4.6 MEDIUM N/A
Magic eDeveloper Enterprise Edition 8.30-5 and earlier allows local users to overwrite arbitrary files and possibly execute code via a symlink attack on temporary files created by the (1) mkuserproc, (2) mgrnt, and (3) mgdatasrvr.sc scripts.
CVE-2001-1447 1 Apple 1 Mac Os X 2026-06-16 7.2 HIGH N/A
NetInfo Manager for Mac OS X 10.0 through 10.1 allows local users to gain root privileges by opening applications using the (1) "recent items" and (2) "services" menus, which causes the applications to run with root privileges.
CVE-2001-1446 1 Apple 1 Mac Os X 2026-06-16 7.5 HIGH N/A
Find-By-Content in Mac OS X 10.0 through 10.0.4 creates world-readable index files named .FBCIndex in every directory, which allows remote attackers to learn the contents of files in web accessible directories.
CVE-2001-1445 1 Lotus 1 Domino Mail Server 2026-06-16 7.5 HIGH N/A
Unknown vulnerability in the SMTP server in Lotus Domino 5.0 through 5.7 allows remote attackers to bypass mail relaying restrictions via crafted e-mail addresses in "RCPT TO" commands.
CVE-2001-1444 1 Kth 1 Kth Kerberos 2026-06-16 7.5 HIGH N/A
The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V (Heimdal), does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentication and encryption mechanisms via a man-in-the-middle attack.
CVE-2001-1443 1 Kth 1 Kth Kerberos 2026-06-16 5.0 MEDIUM N/A
KTH Kerberos IV and Kerberos V (Heimdal) for Telnet clients do not encrypt connections if the server does not support the requested encryption, which allows remote attackers to read communications via a man-in-the-middle attack.
CVE-2001-1442 1 Isc 1 Inn 2026-06-16 4.6 MEDIUM N/A
Buffer overflow in innfeed for ISC InterNetNews (INN) before 2.3.0 allows local users in the "news" group to gain privileges via a long -c command line argument.
CVE-2001-1441 1 Ibm 1 Visualage For Java 2026-06-16 6.8 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in VisualAge for Java 3.5 Professional allows remote attackers to execute JavaScript on other clients via the URL, which injects the script in the resulting error message.
CVE-2001-1440 1 Ibm 1 Aix 2026-06-16 10.0 HIGH N/A
Unknown vulnerability in login for AIX 5.1L, when using loadable authentication modules, allows remote attackers to gain access to the system.
CVE-2001-1439 1 Hp 1 Hp-ux 2026-06-16 2.1 LOW N/A
Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series 700 and Series 800 allows local users to cause a denial of service ("system availability") via text editors such as (1) e, (2) ex, (3) vi, (4) edit, (5) view, and (6) vedit.
CVE-2001-1438 2 Handspring, Palm 2 Visor, Palm Os 2026-06-16 5.0 MEDIUM N/A
Handspring Visor 1.0 and 1.0.1 with the VisorPhone Springboard module installed allows remote attackers to cause a denial of service (PalmOS crash and VisorPhone database corruption) by sending a large or crafted SMS image.
CVE-2001-1437 1 Easyscripts 1 Easynews 2026-06-16 7.5 HIGH N/A
easyScripts easyNews 1.5 allows remote attackers to obtain the full path of the web root via a view request with a non-integer news message id field, which leaks the path in a PHP error message when the script times out.
CVE-2001-1436 1 Dallas Semiconductor 1 Ibutton 2026-06-16 4.6 MEDIUM N/A
Dallas Semiconductor iButton DS1991 returns predictable values when given an incorrect password, which makes it easier for users with physical access to conduct dictionary attacks against the device password.