Vulnerabilities (CVE)

Filtered by NVD-CWE-Other
Total 29922 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-0624 1 Qnx 1 Qnx 2026-06-16 2.1 LOW N/A
QNX 2.4 allows a local user to read arbitrary files by directly accessing the mount point for the FAT disk partition, e.g. /fs-dos.
CVE-2001-0623 1 Sendfile 1 Sendfile 2026-06-16 4.6 MEDIUM N/A
sendfiled, as included with Simple Asynchronous File Transfer (SAFT), on various Linux systems does not properly drop privileges when sending notification emails, which allows local attackers to gain privileges.
CVE-2001-0622 1 Cisco 1 Content Services Switch 11000 2026-06-16 7.5 HIGH N/A
The web management service on Cisco Content Service series 11000 switches (CSS) before WebNS 4.01B29s or WebNS 4.10B17s allows a remote attacker to gain additional privileges by directly requesting the web management URL instead of navigating through the interface.
CVE-2001-0621 1 Cisco 1 Content Services Switch 11000 2026-06-16 7.5 HIGH N/A
The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or PUT commands.
CVE-2001-0620 1 Iplanet 1 Calendar Server 2026-06-16 2.1 LOW N/A
iPlanet Calendar Server 5.0p2 and earlier allows a local attacker to gain access to the Netscape Admin Server (NAS) LDAP database and read arbitrary files by obtaining the cleartext administrator username and password from the configuration file, which has insecure permissions.
CVE-2001-0619 1 Lucent 1 Orinoco 2026-06-16 7.5 HIGH N/A
The Lucent Closed Network protocol can allow remote attackers to join Closed Network networks which they do not have access to. The 'Network Name' or SSID, which is used as a shared secret to join the network, is transmitted in the clear.
CVE-2001-0618 1 Lucent 1 Orinoco Rg-1000 2026-06-16 7.5 HIGH N/A
Orinoco RG-1000 wireless Residential Gateway uses the last 5 digits of the 'Network Name' or SSID as the default Wired Equivalent Privacy (WEP) encryption key. Since the SSID occurs in the clear during communications, a remote attacker could determine the WEP key and decrypt RG-1000 traffic.
CVE-2001-0617 1 Alliedtelesyn 1 At-ar220e 2026-06-16 7.5 HIGH N/A
Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual Server' enabled can allow a remote attacker to gain access to mapped services even though the single portmappings may be disabled.
CVE-2001-0616 1 Faust Informatics 1 Freestyle Chat 2026-06-16 5.0 MEDIUM N/A
Faust Informatics Freestyle Chat server prior to 4.1 SR3 allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (e.g., GET /aux HTTP/1.0).
CVE-2001-0615 1 Faust Informatics 1 Freestyle Chat 2026-06-16 5.0 MEDIUM N/A
Directory traversal vulnerability in Faust Informatics Freestyle Chat server prior to 4.1 SR3 allows a remote attacker to read arbitrary files via a specially crafted URL which includes variations of a '..' (dot dot) attack such as '...' or '....'.
CVE-2001-0614 1 Carello 1 E-commerce 2026-06-16 7.5 HIGH N/A
Carello E-Commerce 1.2.1 and earlier allows a remote attacker to gain additional privileges and execute arbitrary commands via a specially constructed URL.
CVE-2001-0613 1 Omnicron 1 Omnihttpd 2026-06-16 5.0 MEDIUM N/A
Omnicron Technologies OmniHTTPD Professional 2.08 and earlier allows a remote attacker to create a denial of service via a long POST URL request.
CVE-2001-0612 1 Mcafee 1 Remote Desktop 32 2026-06-16 5.0 MEDIUM N/A
McAfee Remote Desktop 3.0 and earlier allows remote attackers to cause a denial of service (crash) via a large number of packets to port 5045.
CVE-2001-0611 1 Rimarts Inc. 1 Becky Internet Mail 2026-06-16 7.5 HIGH N/A
Becky! 2.00.05 and earlier can allow a remote attacker to gain additional privileges via a buffer overflow attack on long messages without newline characters.
CVE-2001-0610 2 Kde, Suse 2 Kde, Suse Linux 2026-06-16 4.6 MEDIUM N/A
kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp.
CVE-2001-0608 1 Hp 1 Mpe 2026-06-16 7.5 HIGH N/A
HP architected interface facility (AIF) as includes with MPE/iX 5.5 through 6.5 running on a HP3000 allows an attacker to gain additional privileges and gain access to databases via the AIF - AIFCHANGELOGON program.
CVE-2001-0607 1 Hp 1 Hp-ux 2026-06-16 4.6 MEDIUM N/A
asecure as included with HP-UX 10.01 through 11.00 can allow a local attacker to create a denial of service and gain additional privileges via unsafe permissions on the asecure program, a different vulnerability than CVE-2000-0083.
CVE-2001-0606 2 Hp, Sun 2 Virtualvault, Iplanet Web Server 2026-06-16 5.0 MEDIUM N/A
Vulnerability in iPlanet Web Server 4.X in HP-UX 11.04 (VVOS) with VirtualVault A.04.00 allows a remote attacker to create a denial of service via the HTTPS service.
CVE-2001-0605 1 Headlight Software 1 Mygetright 2026-06-16 7.5 HIGH N/A
Headlight Software MyGetright prior to 1.0b allows a remote attacker to upload and/or overwrite arbitrary files via a malicious .dld (skins-data) file which contains long strings of random data.
CVE-2001-0604 1 Lotus 1 Domino R5 Server 2026-06-16 5.0 MEDIUM N/A
Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via URL requests (>8Kb) containing a large number of '/' characters.