Search Results (29946 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2002-1087 1 Visualshapers 1 Ezcontents 2026-04-16 N/A
The scripts (1) createdir.php, (2) removedir.php and (3) uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request.
CVE-2001-0184 1 Eeye Digital Security 1 Iris 2026-04-16 N/A
eEye Iris 1.01 beta allows remote attackers to cause a denial of service via a malformed packet, which causes Iris to crash when a user views the packet.
CVE-2002-0701 2 Freebsd, Openbsd 2 Freebsd, Openbsd 2026-04-16 N/A
ktrace in BSD-based operating systems allows the owner of a process with special privileges to trace the process after its privileges have been lowered, which may allow the owner to obtain sensitive information that the process obtained while it was running with the extra privileges.
CVE-2001-1276 2 Itcorp, Redhat 2 Ispell, Linux 2026-04-16 N/A
ispell before 3.1.20 allows local users to overwrite files of other users via a symlink attack on a temporary file.
CVE-2002-0702 1 Isc 1 Dhcpd 2026-04-16 N/A
Format string vulnerabilities in the logging routines for dynamic DNS code (print.c) of ISC DHCP daemon (DHCPD) 3 to 3.0.1rc8, with the NSUPDATE option enabled, allow remote malicious DNS servers to execute arbitrary code via format strings in a DNS server response.
CVE-2001-0188 1 Goodtech 2 Ftp Server 95 98, Ftp Server Nt 2000 2026-04-16 N/A
GoodTech FTP server 3.0.1.2.1.0 and earlier allows remote attackers to cause a denial of service via a flood of connections to the server, which causes it to crash.
CVE-2001-1308 1 Sun 1 Iplanet Directory Server 2026-04-16 N/A
Format string vulnerabilities in iPlanet Directory Server 4.1.4 and earlier (LDAP) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
CVE-2001-0194 1 Easy Software Products 1 Cups 2026-04-16 N/A
Buffer overflow in httpGets function in CUPS 1.1.5 allows remote attackers to execute arbitrary commands via a long input line.
CVE-2001-1316 1 Teamware 1 Teamware Office 2026-04-16 N/A
Buffer overflows in Teamware Office Enterprise Directory allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
CVE-2001-1219 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
Microsoft Internet Explorer 6.0 and earlier allows malicious website operators to cause a denial of service (client crash) via JavaScript that continually refreshes the window via self.location.
CVE-2001-0200 1 Heat-on Software 1 Hsweb 2026-04-16 N/A
HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled.
CVE-2001-0207 1 Pierre Beyssac 1 Bing 2026-04-16 N/A
Buffer overflow in bing allows remote attackers to execute arbitrary commands via a long hostname, which is copied to a small buffer after a reverse DNS lookup using the gethostbyaddr function.
CVE-2001-0209 1 Shoutcast 1 Dnas 2026-04-16 N/A
Buffer overflow in Shoutcast Distributed Network Audio Server (DNAS) 1.7.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long description.
CVE-2001-1221 1 D-link 1 Dwl-1000ap 2026-04-16 N/A
D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point uses a default SNMP community string of 'public' which allows remote attackers to gain sensitive information.
CVE-2002-0706 1 Surfcontrol 2 Superscout Web Filter, Web Filter 2026-04-16 N/A
UserManager.js in the Web Reports Server for SurfControl SuperScout WebFilter uses weak encryption for administrator functions, which allows remote attackers to decrypt the administrative password using a hard-coded key in a Javascript function.
CVE-2001-0210 1 Carey Internet Service 1 Commerce.cgi 2026-04-16 N/A
Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the page parameter.
CVE-2001-1362 1 Horsburgh 1 Npulse 2026-04-16 N/A
Vulnerability in the server for nPULSE before 0.53p4.
CVE-2006-3671 1 Hyper Estraier 1 Hyper Estraier 2026-04-16 N/A
Cross-site request forgery (CSRF) vulnerability in the communicate function in estmaster.c for Hyper Estraier before 1.3.3 allows remote attackers to perform unauthorized actions as other users via unknown vectors.
CVE-2006-3700 1 Oracle 1 Database Server 2026-04-16 N/A
Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 for Web Distributed Authoring and Versioning (DAV) and (2) DB23 for XMLDB.
CVE-2001-0215 1 Martin Hamilton 1 Roads 2026-04-16 N/A
ROADS search.pl program allows remote attackers to read arbitrary files by specifying the file name in the form parameter and terminating the filename with a null byte.