Vulnerabilities (CVE)

Total 187221 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-0127 1 Oliver Debon 1 Flash 2008-09-05 7.6 HIGH N/A
Buffer overflow in Olivier Debon Flash plugin (not the Macromedia plugin) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long DefineSound tag.
CVE-2001-0132 1 Trend Micro 1 Interscan Viruswall 2008-09-05 1.2 LOW N/A
Interscan VirusWall 3.6.x and earlier follows symbolic links when uninstalling the product, which allows local users to overwrite arbitrary files via a symlink attack.
CVE-2001-0133 1 Trend Micro 1 Interscan Viruswall 2008-09-05 10.0 HIGH N/A
The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator password via the setpasswd.cgi program or other HTTP GET requests that contain base64 encoded usernames and passwords.
CVE-2001-0155 1 Van Dyke Technologies 1 Vshell 2008-09-05 7.5 HIGH N/A
Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execute arbitrary commands via a user name that contains format string specifiers.
CVE-2001-0160 2 Lucent, Orinoco 2 Wavelan, Orinoco Wavelan 2008-09-05 5.0 MEDIUM N/A
Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will let them decrypt messages.
CVE-2001-0161 1 Cisco 1 Aironet 2008-09-05 5.0 MEDIUM N/A
Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks.
CVE-2001-0162 1 Microsoft 1 Windows Ce 2008-09-05 7.5 HIGH N/A
WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
CVE-2001-0163 1 Cisco 1 Aironet Ap340 2008-09-05 4.6 MEDIUM N/A
Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
CVE-2001-0186 1 Free Java Web Server 1 Free Java Web Server 2008-09-05 5.0 MEDIUM N/A
Directory traversal vulnerability in Free Java Web Server 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVE-2001-0192 1 Davide Libenzi 1 Xmail 2008-09-05 10.0 HIGH N/A
Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfileget or domaindel functions.
CVE-2001-0200 1 Heat-on Software 1 Hsweb 2008-09-05 5.0 MEDIUM N/A
HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled.
CVE-2001-0202 1 Informs 1 Picserver 2008-09-05 5.0 MEDIUM N/A
Picserver web server allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTP GET request.
CVE-2001-0206 1 Soft Lite 1 Serverworx 2008-09-05 5.0 MEDIUM N/A
Directory traversal vulnerability in Soft Lite ServerWorx 3.00 allows remote attackers to read arbitrary files by inserting a .. (dot dot) or ... into the requested pathname of an HTTP GET request.
CVE-2001-0208 1 Microfocus 1 Cobol 2008-09-05 4.6 MEDIUM N/A
MicroFocus Cobol 4.1, with the AppTrack feature enabled, installs the mfaslmf directory and the nolicense file with insecure permissions, which allows local users to gain privileges by modifying files.
CVE-2001-0210 1 Carey Internet Service 1 Commerce.cgi 2008-09-05 5.0 MEDIUM N/A
Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the page parameter.
CVE-2001-0211 1 Silverplatter 1 Webspirs 2008-09-05 5.0 MEDIUM N/A
Directory traversal vulnerability in WebSPIRS 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the sp.nextform parameter.
CVE-2001-0212 1 His 1 Auktion 2008-09-05 7.5 HIGH N/A
Directory traversal vulnerability in HIS Auktion 1.62 allows remote attackers to read arbitrary files via a .. (dot dot) in the menue parameter, and possibly execute commands via shell metacharacters.
CVE-2001-0214 1 Way 1 Way-board 2008-09-05 5.0 MEDIUM N/A
Way-board CGI program allows remote attackers to read arbitrary files by specifying the filename in the db parameter and terminating the filename with a null byte.
CVE-2001-0220 2 Ja-elvis, Ko-helvis 2 Ja-elvis, Ko-helvis 2008-09-05 7.2 HIGH N/A
Buffer overflow in ja-elvis and ko-helvis ports of elvis allow local users to gain root privileges.
CVE-2001-0225 1 Lenzo 1 Infobot 2008-09-05 10.0 HIGH N/A
fortran math component in Infobot 0.44.5.3 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.