Export limit exceeded: 357102 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 357102 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (357102 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2001-0024 | 1 Leif M. Wright | 1 Simplestmail.cgi | 2026-04-16 | N/A |
| simplestmail.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the MyEmail parameter. | ||||
| CVE-2001-0044 | 1 Lexmark | 1 Markvision | 2026-04-16 | N/A |
| Multiple buffer overflows in Lexmark MarkVision printer driver programs allows local users to gain privileges via long arguments to the cat_network, cat_paraller, and cat_serial commands. | ||||
| CVE-2001-0064 | 1 Alt-n | 1 Mdaemon | 2026-04-16 | N/A |
| Webconfig, IMAP, and other services in MDaemon 3.5.0 and earlier allows remote attackers to cause a denial of service via a long URL terminated by a "\r\n" string. | ||||
| CVE-2001-0152 | 1 Microsoft | 1 Plus | 2026-04-16 | N/A |
| The password protection option for the Compressed Folders feature in Plus! for Windows 98 and Windows Me writes password information to a file, which allows local users to recover the passwords and read the compressed folders. | ||||
| CVE-2001-0142 | 5 Immunix, Mandrakesoft, National Science Foundation and 2 more | 5 Immunix, Mandrake Linux, Squid Web Proxy and 2 more | 2026-04-16 | N/A |
| squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some configurations. | ||||
| CVE-2001-0990 | 1 Inter7 | 1 Vpopmail | 2026-04-16 | N/A |
| Inter7 vpopmail 4.10.35 and earlier, when using the MySQL module, compiles authentication information in cleartext into the libvpopmail.a library, which allows local users to obtain the MySQL username and password by inspecting the vpopmail programs that use the library. | ||||
| CVE-2001-0214 | 1 Way | 1 Way-board | 2026-04-16 | N/A |
| Way-board CGI program allows remote attackers to read arbitrary files by specifying the filename in the db parameter and terminating the filename with a null byte. | ||||
| CVE-2001-0203 | 1 Watchguard | 1 Firebox Ii | 2026-04-16 | N/A |
| Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and administrative privileges, by accessing a file that contains hashed passphrases, and using the hashes during authentication. | ||||
| CVE-2001-0225 | 1 Lenzo | 1 Infobot | 2026-04-16 | N/A |
| fortran math component in Infobot 0.44.5.3 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters. | ||||
| CVE-2001-0193 | 2 Debian, Suse | 2 Debian Linux, Suse Linux | 2026-04-16 | N/A |
| Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter. | ||||
| CVE-2001-0254 | 1 Fastream | 1 Ftp\+\+ Server | 2026-04-16 | N/A |
| FaSTream FTP++ Server 2.0 allows remote attackers to obtain the real pathname of the server via the "pwd" command. | ||||
| CVE-2001-0274 | 1 Kicq | 1 Kicq | 2026-04-16 | N/A |
| kicq IRC client 1.0.0, and possibly later versions, allows remote attackers to execute arbitrary commands via shell metacharacters in a URL. | ||||
| CVE-2001-0344 | 1 Microsoft | 1 Sql Server | 2026-04-16 | N/A |
| An SQL query method in Microsoft SQL Server 2000 Gold and 7.0 using Mixed Mode allows local database users to gain privileges by reusing a cached connection of the sa administrator account. | ||||
| CVE-2001-0421 | 1 Sun | 2 Solaris, Sunos | 2026-04-16 | N/A |
| FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition. | ||||
| CVE-2001-0491 | 1 Team Johnlong | 1 Raidenftpd | 2026-04-16 | N/A |
| Directory traversal vulnerability in RaidenFTPD Server 2.1 before build 952 allows attackers to access files outside the ftp root via dot dot attacks, such as (1) .... in CWD, (2) .. in NLST, or (3) ... in NLST. | ||||
| CVE-2001-0485 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| Unknown vulnerability in netprint in IRIX 6.2, and possibly other versions, allows local users with lp privileges attacker to execute arbitrary commands via the -n option. | ||||
| CVE-2001-0993 | 1 Netbsd | 1 Netbsd | 2026-04-16 | N/A |
| sendmsg function in NetBSD 1.3 through 1.5 allows local users to cause a denial of service (kernel trap or panic) via a msghdr structure with a large msg_controllen length. | ||||
| CVE-2001-0454 | 1 Whitsoft | 1 Slimserve | 2026-04-16 | N/A |
| Directory traversal vulnerability in SlimServe HTTPd 1.1a allows remote attackers to read arbitrary files via a ... (modified dot dot) in the HTTP request. | ||||
| CVE-2001-0475 | 1 Jelsoft | 1 Vbulletin | 2026-04-16 | N/A |
| index.php in Jelsoft vBulletin does not properly initialize a PHP variable that is used to store template information, which allows remote attackers to execute arbitrary PHP code via special characters in the templatecache parameter. | ||||
| CVE-2001-0505 | 1 Microsoft | 1 Services | 2026-04-16 | N/A |
| Multiple memory leaks in Microsoft Services for Unix 2.0 allow remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed requests to (1) the Telnet service, or (2) the NFS service. | ||||