Vulnerabilities (CVE)

Filtered by NVD-CWE-Other
Total 29922 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-1267 1 Gnu 1 Tar 2026-06-16 2.1 LOW N/A
Directory traversal vulnerability in GNU tar 1.13.19 and earlier allows local users to overwrite arbitrary files during archive extraction via a tar file whose filenames contain a .. (dot dot).
CVE-2001-1266 1 Doug Neal 1 Dnhttpd 2026-06-16 5.0 MEDIUM N/A
Directory traversal vulnerability in Doug Neal's HTTPD Daemon (DNHTTPD) before 0.4.1 allows remote attackers to view arbitrary files via a .. (dot dot) attack using the dot hex code '%2E'.
CVE-2001-1265 1 Ibm 1 Alphaworks Tftp Server 2026-06-16 7.5 HIGH N/A
Directory traversal vulnerability in IBM alphaWorks Java TFTP server 1.21 allows remote attackers to conduct unauthorized operations on arbitrary files via a .. (dot dot) attack.
CVE-2001-1264 1 Hp 2 Hp-ux, Vvos 2026-06-16 10.0 HIGH N/A
Vulnerability in mkacct in HP-UX 11.04 running Virtualvault Operating System (VVOS) 4.0 and 4.5 allows attackers to elevate privileges.
CVE-2001-1263 1 Pragma Systems 1 Interaccess 2026-06-16 5.0 MEDIUM N/A
telnet95.exe in Pragma InterAccess 4.0 build 5 allows remote attackers to cause a denial of service (crash) via a large number of characters to port 23, possibly due to a buffer overflow.
CVE-2001-1262 1 Avaya 1 Argent Office 2026-06-16 7.5 HIGH N/A
Avaya Argent Office 2.1 compares a user-provided SNMP community string with the correct string only up to the length of the user-provided string, which allows remote attackers to bypass authentication with a 0 length community string.
CVE-2001-1261 1 Avaya 1 Argent Office 2026-06-16 5.0 MEDIUM N/A
Avaya Argent Office 2.1 may allow remote attackers to change hold music by spoofing a legitimate server's response to a TFTP broadcast and providing an alternate HoldMusic file.
CVE-2001-1260 1 Avaya 1 Argent Office 2026-06-16 10.0 HIGH N/A
Avaya Argent Office uses weak encryption (trivial encoding) for passwords, which allows remote attackers to gain administrator privileges by sniffing and decrypting the sniffing the passwords during a system reboot.
CVE-2001-1259 1 Avaya 1 Argent Office 2026-06-16 5.0 MEDIUM N/A
Avaya Argent Office allows remote attackers to cause a denial of service by sending UDP packets to port 53 with no payload.
CVE-2001-1258 1 Horde 1 Imp 2026-06-16 3.6 LOW N/A
Horde Internet Messaging Program (IMP) before 2.2.6 allows local users to read IMP configuration files and steal the Horde database password by placing the prefs.lang file containing PHP code on the server.
CVE-2001-1257 1 Horde 1 Imp 2026-06-16 7.5 HIGH N/A
Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) before 2.2.6 and 1.2.6 allows remote attackers to execute arbitrary Javascript embedded in an email.
CVE-2001-1256 1 Hp 1 Hp-ux 2026-06-16 1.2 LOW N/A
kmmodreg in HP-UX 11.11, 11.04 and 11.00 allows local users to create arbitrary world-writeable files via a symlink attack on the (1) /tmp/.kmmodreg_lock and (2) /tmp/kmpath.tmp temporary files.
CVE-2001-1255 2 Mysql, Oracle 2 Winmysqladmin, Mysql 2026-06-16 4.6 MEDIUM N/A
WinMySQLadmin 1.1 stores the MySQL password in plain text in the my.ini file, which allows local users to obtain unathorized access the MySQL database.
CVE-2001-1254 1 Com2001 1 Alexis Server 2026-06-16 7.5 HIGH N/A
Web Access component for COM2001 Alexis 2.0 and 2.1 in InternetPBX sends username and voice mail passwords in the clear via a Java applet that sends the information to port 8888 of the server, which could allow remote attackers to steal the passwords via sniffing.
CVE-2001-1253 1 Com2001 1 Alexis Server 2026-06-16 4.6 MEDIUM N/A
Alexis 2.0 and 2.1 in COM2001 InternetPBX stores voicemail passwords in plain text in the com2001.ini file, which could allow local users to make long distance calls as other users.
CVE-2001-1252 1 Pgp 1 Keyserver 2026-06-16 10.0 HIGH N/A
Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin for the programs (1) console, (2) cs, (3) multi_config and (4) directory.
CVE-2001-1251 2 Max Feoktistov, Vwebserver 2 Small Http Server, Vwebserver 2026-06-16 5.0 MEDIUM N/A
SmallHTTP 1.204 through 3.00 beta 8 allows remote attackers to cause a denial of service via multiple long URL requests.
CVE-2001-1250 1 Vwebserver 1 Vwebserver 2026-06-16 5.0 MEDIUM N/A
vWebServer 1.2.0 allows remote attackers to cause a denial of service (hang) via a small number of long URL requests, possibly due to a buffer overflow.
CVE-2001-1249 1 Vwebserver 1 Vwebserver 2026-06-16 5.0 MEDIUM N/A
vWebServer 1.2.0 allows remote attackers to cause a denial of service via a URL that contains MS-DOS device names.
CVE-2001-1248 1 Vwebserver 1 Vwebserver 2026-06-16 5.0 MEDIUM N/A
vWebServer 1.2.0 allows remote attackers to view arbitrary ASP scripts via a request for an ASP script that ends with a URL-encoded space character (%20).