Export limit exceeded: 29946 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (29946 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2001-0031 1 Broadvision 1 One-to-one Enterprise Server 2026-04-16 N/A
BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist.
CVE-2001-0040 1 Apc 1 Apcupsd 2026-04-16 N/A
APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to kill an arbitrary process by specifying the target process ID in the apcupsd.pid file.
CVE-2002-1035 1 Omnicron 1 Omnihttpd 2026-04-16 N/A
Omnicron OmniHTTPd 2.09 allows remote attackers to cause a denial of service (crash) via an HTTP request with a long, malformed HTTP 1version number.
CVE-2001-0043 1 Phpgroupware 1 Phpgroupware 2026-04-16 N/A
phpGroupWare before 0.9.7 allows remote attackers to execute arbitrary PHP commands by specifying a malicious include file in the phpgw_info parameter of the phpgw.inc.php program.
CVE-2001-0045 1 Microsoft 1 Windows Nt 2026-04-16 N/A
The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the value to point to a malicious DLL, aka one of the "Registry Permissions" vulnerabilities.
CVE-2001-0062 1 Freebsd 1 Freebsd 2026-04-16 N/A
procfs in FreeBSD and possibly other operating systems allows local users to cause a denial of service by calling mmap on the process' own mem file, which causes the kernel to hang.
CVE-2001-0063 1 Freebsd 1 Freebsd 2026-04-16 N/A
procfs in FreeBSD and possibly other operating systems allows local users to bypass access control restrictions for a jail environment and gain additional privileges.
CVE-2001-0074 1 Technote Inc 1 Technote 2026-04-16 N/A
Directory traversal vulnerability in print.cgi in Technote allows remote attackers to read arbitrary files via a .. (dot dot) attack in the board parameter.
CVE-2001-0076 1 Ikonboard.com 1 Ikonboard 2026-04-16 N/A
register.cgi in Ikonboard 2.1.7b and earlier allows remote attackers to execute arbitrary commands via the SEND_MAIL parameter, which overwrites an internal program variable that references a program to be executed.
CVE-2001-0077 1 Sun 1 Cluster 2026-04-16 N/A
The clustmon service in Sun Cluster 2.x does not require authentication, which allows remote attackers to obtain sensitive information such as system logs and cluster configurations.
CVE-2001-0086 1 Cgi Script Center 1 Subscribe Me Lite 2026-04-16 N/A
CGI Script Center Subscribe Me LITE 2.0 and earlier allows remote attackers to delete arbitrary mailing list users without authentication by directly calling subscribe.pl with the target address as a parameter.
CVE-2001-0087 1 Michael Glickman 1 Itetris 2026-04-16 N/A
itetris/xitetris 1.6.2 and earlier trusts the PATH environmental variable to find and execute the gunzip program, which allows local users to gain root privileges by changing their PATH so that it points to a malicious gunzip program.
CVE-2001-0113 1 Omnicron 1 Omnihttpd 2026-04-16 N/A
statsconfig.pl in OmniHTTPd 2.07 allows remote attackers to execute arbitrary commands via the mostbrowsers parameter, whose value is used as part of a generated Perl script.
CVE-2001-0116 3 Immunix, Mandrakesoft, Redhat 3 Immunix, Mandrake Linux, Linux 2026-04-16 N/A
gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0118 3 Immunix, Mandrakesoft, Redhat 3 Immunix, Mandrake Linux, Linux 2026-04-16 N/A
rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0123 1 Extropia 1 Bbs Forum.cgi 2026-04-16 N/A
Directory traversal vulnerability in eXtropia bbs_forum.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the file parameter.
CVE-2001-0124 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Buffer overflow in exrecover in Solaris 2.6 and earlier possibly allows local users to gain privileges via a long command line argument.
CVE-2002-1037 1 Michael Dean 1 Double Choco Latte 2026-04-16 N/A
Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorities, (3) Severities, (4) Projects, (5) WO# Find, (6) Departments and (7) Users features.
CVE-2001-0127 1 Oliver Debon 1 Flash 2026-04-16 N/A
Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long DefineSound tag.
CVE-2001-0133 1 Trend Micro 1 Interscan Viruswall 2026-04-16 N/A
The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator password via the setpasswd.cgi program or other HTTP GET requests that contain base64 encoded usernames and passwords.