Users login

Create an account »

JOIN XATRIX

Users login

Home » CVE vulnerabilities

CVE Vulnerabilities

CVE vulnerabilities is a database of publicly known information security vulnerabilities and exposures.
Page: 12...2738 2739 2740 2741 2742 out of 2890

CVE-2001-0979 | November 30, -0001
Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0978 | November 30, -0001
login in HP-UX 10.26 does not record failed login attempts in /var/adm/btmp, which could allow attackers to conduct brute force password guessing attacks without being detected or observed using the lastb program.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0977 | November 30, -0001
slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0976 | November 30, -0001
Vulnerability in HP Process Resource Manager (PRM) C.01.08.2 and earlier, as used by HP-UX Workload Manager (WLM), allows local users to gain root privileges via modified libraries or environment variables.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0975 | November 30, -0001
Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0974 | November 30, -0001
Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0973 | November 30, -0001
BSCW groupware system 3.3 through 4.0.2 beta allows remote attackers to read or modify arbitrary files by uploading and extracting a tar file with a symlink into the data-bag space.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0972 | November 30, -0001
Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remote attackers to gain administrative privileges by calculating the value of the admin cookie (UserID 1), i.e. "0888888."
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0971 | November 30, -0001
Directory traversal vulnerability in ACI 4d webserver allows remote attackers to read arbitrary files via a .. (dot dot) or drive letter (e.g., C:) in an HTTP request.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0970 | November 30, -0001
Cross-site scripting vulnerability in TDForum 1.2 CGI script (tdforum12.cgi) allows remote attackers to execute arbitrary script on other clients via a forum message that contains the script.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0969 | November 30, -0001
ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw to allow connections from arbitrary remote hosts.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0968 | November 30, -0001
Knox Arkeia server 4.2, and possibly other versions, installs its root user with a null password by default, which allows local and remote users to gain privileges.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0967 | November 30, -0001
Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0966 | November 30, -0001
Directory traversal vulnerability in Nudester 1.10 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the CD (CWD) command.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0965 | November 30, -0001
glFTPD 1.23 allows remote attackers to cause a denial of service (CPU consumption) via a LIST command with an argument that contains a large number of * (asterisk) characters.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0964 | November 30, -0001
Buffer overflow in client for Half-Life 1.1.0.8 and earlier allows malicious remote servers to execute arbitrary code via a long console command.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0963 | November 30, -0001
Directory traversal vulnerability in SpoonFTP 1.1 allows local and sometimes remote attackers to access files outside of the FTP root via a ... (modified dot dot) in the CD (CWD) command.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0962 | November 30, -0001
IBM WebSphere Application Server 3.02 through 3.53 uses predictable session IDs for cookies, which allows remote attackers to gain privileges of WebSphere users via brute force guessing.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0961 | November 30, -0001
Buffer overflow in tab expansion capability of the most program allows local or remote attackers to execute arbitrary code via a malformed file that is viewed with most.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0960 | November 30, -0001
Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 stores the backup agent user name and password in cleartext in the aremote.dmp file in the ARCSERVE$ hidden share, which allows local and remote attackers to gain privileges.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0959 | November 30, -0001
Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 creates a hidden share named ARCSERVE$, which allows remote attackers to obtain sensitive information and overwrite critical files.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0958 | November 30, -0001
Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3.51 and 3.51J allow remote attackers to execute arbitrary code via long arguments to the CGI programs (1) register.dll, (2) ContentFilter.dll, (3) SFNofitication.dll, (4) register.dll, (5) TOP10.dll, (6) SpamExcp.dll, and (7) spamrule.dll.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0956 | November 30, -0001
speechd 0.54 and earlier, with the Festival or rsynth speech synthesis package, allows attackers to execute arbitrary commands via shell metacharacters.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0955 | November 30, -0001
Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly gain privileges via a large number of characters, possibly through the web page search form of KDE Konqueror or from an xterm command with a long title.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

CVE-2001-0954 | November 30, -0001
Lotus Domino 5.0.5 and 5.0.8, and possibly other versions, allows remote attackers to cause a denial of service (block access to databases that have not been previously accessed) via a URL that includes the . (dot) directory.
Severity: Low | Impact score: 0.00 | Exploit score: 0.00

Page: 12...2738 2739 2740 2741 2742 out of 2890

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »