Total
29918 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2001-0423 | 1 Sun | 1 Solaris | 2026-06-16 | 7.2 HIGH | N/A |
| Buffer overflow in ipcs in Solaris 7 x86 allows local users to execute arbitrary code via a long TZ (timezone) environmental variable, a different vulnerability than CAN-2002-0093. | |||||
| CVE-2001-0422 | 1 Sun | 2 Solaris, Sunos | 2026-06-16 | 7.2 HIGH | N/A |
| Buffer overflow in Xsun in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable. | |||||
| CVE-2001-0421 | 1 Sun | 2 Solaris, Sunos | 2026-06-16 | 6.4 MEDIUM | N/A |
| FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition. | |||||
| CVE-2001-0420 | 1 Way To The Web | 1 Talkback | 2026-06-16 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in talkback.cgi program allows remote attackers to read arbitrary files via a .. (dot dot) in the article parameter. | |||||
| CVE-2001-0419 | 1 Oracle | 1 Application Server | 2026-06-16 | 7.5 HIGH | N/A |
| Buffer overflow in shared library ndwfn4.so for iPlanet Web Server (iWS) 4.1, when used as a web listener for Oracle application server 4.0.8.2, allows remote attackers to execute arbitrary commands via a long HTTP request that is passed to the application server, such as /jsp/. | |||||
| CVE-2001-0418 | 1 Ncm | 1 Ncm Content Management System | 2026-06-16 | 5.0 MEDIUM | N/A |
| content.pl script in NCM Content Management System allows remote attackers to read arbitrary contents of the content database by inserting SQL characters into the id parameter. | |||||
| CVE-2001-0417 | 1 Mit | 2 Kerberos, Kerberos 5 | 2026-06-16 | 2.1 LOW | N/A |
| Kerberos 4 (aka krb4) allows local users to overwrite arbitrary files via a symlink attack on new ticket files. | |||||
| CVE-2001-0416 | 3 Debian, Immunix, Mandrakesoft | 3 Sgml-tools, Immunix, Mandrake Linux | 2026-06-16 | 2.1 LOW | N/A |
| sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which allows other users to read files that are being processed by sgml-tools. | |||||
| CVE-2001-0415 | 1 Redi | 1 Rediplus | 2026-06-16 | 4.6 MEDIUM | N/A |
| REDIPlus program, REDI.exe, stores passwords and user names in cleartext in the StartLog.txt log file, which allows local users to gain access to other accounts. | |||||
| CVE-2001-0414 | 1 Dave Mills | 2 Ntpd, Xntp3 | 2026-06-16 | 10.0 HIGH | N/A |
| Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long readvar argument. | |||||
| CVE-2001-0413 | 1 Bintec | 3 X1000, X1200, X4000 | 2026-06-16 | 5.0 MEDIUM | N/A |
| BinTec X4000 Access router, and possibly other versions, allows remote attackers to cause a denial of service via a SYN port scan, which causes the router to hang. | |||||
| CVE-2001-0412 | 1 Cisco | 3 Content Services Switch 11050, Content Services Switch 11150, Content Services Switch 11800 | 2026-06-16 | 7.2 HIGH | N/A |
| Cisco Content Services (CSS) switch products 11800 and earlier, aka Arrowpoint, allows local users to gain privileges by entering debug mode. | |||||
| CVE-2001-0411 | 1 Siemens | 1 Reliant Unix | 2026-06-16 | 5.0 MEDIUM | N/A |
| Reliant Unix 5.44 and earlier allows remote attackers to cause a denial of service via an ICMP port unreachable packet, which causes Reliant to drop all connections to the source address of the packet. | |||||
| CVE-2001-0410 | 1 Trend Micro | 1 Virus Buster 2001 | 2026-06-16 | 7.5 HIGH | N/A |
| Buffer overflow in Trend Micro Virus Buster 2001 8.02 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long "From" header. | |||||
| CVE-2001-0409 | 1 Vim Development Group | 1 Vim | 2026-06-16 | 2.1 LOW | N/A |
| vim (aka gvim) allows local users to modify files being edited by other users via a symlink attack on the backup and swap files, when the victim is editing the file in a world writable directory. | |||||
| CVE-2001-0408 | 1 Vim Development Group | 1 Vim | 2026-06-16 | 5.1 MEDIUM | N/A |
| vim (aka gvim) processes VIM control codes that are embedded in a file, which could allow attackers to execute arbitrary commands when another user opens a file containing malicious VIM control codes. | |||||
| CVE-2001-0407 | 1 Oracle | 1 Mysql | 2026-06-16 | 4.6 MEDIUM | N/A |
| Directory traversal vulnerability in MySQL before 3.23.36 allows local users to modify arbitrary files and gain privileges by creating a database whose name starts with .. (dot dot). | |||||
| CVE-2001-0406 | 1 Samba | 1 Samba | 2026-06-16 | 2.1 LOW | N/A |
| Samba before 2.2.0 allows local attackers to overwrite arbitrary files via a symlink attack using (1) a printer queue query, (2) the more command in smbclient, or (3) the mput command in smbclient. | |||||
| CVE-2001-0405 | 1 Linux | 1 Linux Kernel | 2026-06-16 | 7.5 HIGH | N/A |
| ip_conntrack_ftp in the IPTables firewall for Linux 2.4 allows remote attackers to bypass access restrictions for an FTP server via a PORT command that lists an arbitrary IP address and port number, which is added to the RELATED table and allowed by the firewall. | |||||
| CVE-2001-0404 | 1 Sun | 1 Javaserver Web Dev Kit | 2026-06-16 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in JavaServer Web Dev Kit (JSWDK) 1.0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP request to the WEB-INF directory. | |||||
