Vulnerabilities (CVE)

Filtered by NVD-CWE-Other
Total 29922 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-1058 1 Wolfram Research 1 Mathematica 2026-06-16 7.5 HIGH N/A
The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to bypass access control (specified by the -restrict argument) and steal a license via a client request that includes the name of a host that is allowed to obtain the license.
CVE-2001-1057 1 Wolfram Research 1 Mathematica 2026-06-16 5.0 MEDIUM N/A
The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by connecting to port 16286 and not disconnecting, which prevents users from making license requests.
CVE-2001-1056 1 Linux 1 Linux Kernel 2026-06-16 7.5 HIGH N/A
IRC DCC helper in the ip_masq_irc IP masquerading module 2.2 allows remote attackers to bypass intended firewall restrictions by causing the target system to send a "DCC SEND" request to a malicious server which listens on port 6667, which may cause the module to believe that the traffic is a valid request and allow the connection to the port specified in the DCC SEND request.
CVE-2001-1055 1 Microsoft 2 Windows 98, Windows 98se 2026-06-16 5.0 MEDIUM N/A
The Microsoft Windows network stack allows remote attackers to cause a denial of service (CPU consumption) via a flood of malformed ARP request packets with random source IP and MAC addresses, as demonstrated by ARPNuke.
CVE-2001-1054 1 Phpadsnew 1 Phpadsnew 2026-06-16 7.5 HIGH N/A
PHPAdsNew PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
CVE-2001-1053 1 Adcycle 1 Adcycle 2026-06-16 10.0 HIGH N/A
AdLogin.pm in AdCycle 1.15 and earlier allows remote attackers to bypass authentication and gain privileges by injecting SQL code in the $password argument.
CVE-2001-1052 1 Emergenices Personnel Information System 1 Empris 2026-06-16 7.5 HIGH N/A
Empris PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
CVE-2001-1051 1 Dark Hart Portal 1 Darkportal-unix 2026-06-16 7.5 HIGH N/A
Dark Hart Portal (darkportal) PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
CVE-2001-1050 1 Cccsoftware 1 Ccc 2026-06-16 7.5 HIGH N/A
CCCSoftware CCC PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
CVE-2001-1049 1 Paul M. Jones 1 Phorecast 2026-06-16 7.5 HIGH N/A
Phorecast PHP script before 0.40 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
CVE-2001-1048 1 Topher1kenobe 1 Awol 2026-06-16 7.5 HIGH N/A
AWOL PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
CVE-2001-1047 1 Openbsd 1 Openbsd 2026-06-16 1.2 LOW N/A
Race condition in OpenBSD VFS allows local users to cause a denial of service (kernel panic) by (1) creating a pipe in one thread and causing another thread to set one of the file descriptors to NULL via a close, or (2) calling dup2 on a file descriptor in one process, then setting the descriptor to NULL via a close in another process that is created via rfork.
CVE-2001-1046 1 Qualcomm 1 Qpopper 2026-06-16 10.0 HIGH N/A
Buffer overflow in qpopper (aka qpop or popper) 4.0 through 4.0.2 allows remote attackers to gain privileges via a long username.
CVE-2001-1045 1 Basilix 1 Basilix Webmail 2026-06-16 5.0 MEDIUM N/A
Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the request_id[DUMMY] parameter.
CVE-2001-1044 1 Basilix 1 Basilix Webmail 2026-06-16 7.5 HIGH N/A
Basilix Webmail 0.9.7beta, and possibly other versions, stores *.class and *.inc files under the document root and does not restrict access, which could allows remote attackers to obtain sensitive information such as MySQL passwords and usernames from the mysql.class file.
CVE-2001-1041 1 Oracle 1 Database Server 2026-06-16 2.1 LOW N/A
oracle program in Oracle 8.0.x, 8.1.x and 9.0.1 allows local users to overwrite arbitrary files via a symlink attack on an Oracle log trace (.trc) file that is created in an alternate home directory identified by the ORACLE_HOME environment variable.
CVE-2001-1040 1 Hp 1 Jetadmin 2026-06-16 6.4 MEDIUM N/A
HP LaserJet, and possibly other JetDirect devices, resets the admin password when the device is turned off, which could allow remote attackers to access the device without the password.
CVE-2001-1039 1 Hp 1 Jetadmin 2026-06-16 7.5 HIGH N/A
The JetAdmin web interface for HP JetDirect does not set a password for the telnet interface when the admin password is changed, which allows remote attackers to gain access to the printer.
CVE-2001-1038 1 Cisco 1 Sn 5420 Storage Router Firmware 2026-06-16 5.0 MEDIUM N/A
Cisco SN 5420 Storage Router 1.1(3) and earlier allows remote attackers to cause a denial of service (reboot) via a series of connections to TCP port 8023.
CVE-2001-1037 1 Cisco 1 Sn 5420 Storage Router Firmware 2026-06-16 4.6 MEDIUM N/A
Cisco SN 5420 Storage Router 1.1(3) and earlier allows local users to access a developer's shell without a password and execute certain restricted commands without being logged.