Export limit exceeded: 346095 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (346095 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2000-1222 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program. | ||||
| CVE-2001-0006 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | 7.1 High |
| The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control permissions, which allows local users to modify the permissions to "No Access" and disable Winsock network connectivity to cause a denial of service, aka the "Winsock Mutex" vulnerability. | ||||
| CVE-2001-0007 | 1 Netscreen | 1 Screen Os | 2026-04-16 | N/A |
| Buffer overflow in NetScreen Firewall WebUI allows remote attackers to cause a denial of service via a long URL request to the web administration interface. | ||||
| CVE-2001-0008 | 2 Borland Software, Firebirdsql | 2 Interbase, Firebird | 2026-04-16 | N/A |
| Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures. | ||||
| CVE-2001-0010 | 2 Isc, Redhat | 2 Bind, Linux | 2026-04-16 | N/A |
| Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges. | ||||
| CVE-2001-0012 | 2 Isc, Redhat | 2 Bind, Linux | 2026-04-16 | N/A |
| BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variables. | ||||
| CVE-2001-0016 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | N/A |
| NTLM Security Support Provider (NTLMSSP) service does not properly check the function number in an LPC request, which could allow local users to gain administrator level access. | ||||
| CVE-2001-0019 | 1 Cisco | 2 Arrowpoint, Content Services Switch | 2026-04-16 | N/A |
| Arrowpoint (aka Cisco Content Services, or CSS) allows local users to cause a denial of service via a long argument to the "show script," "clear script," "show archive," "clear archive," "show log," or "clear log" commands. | ||||
| CVE-2001-0025 | 1 Leif M. Wright | 1 Ad.cgi | 2026-04-16 | N/A |
| ad.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter. | ||||
| CVE-2001-0026 | 1 Roaring Penguin | 1 Pppoe | 2026-04-16 | N/A |
| rp-pppoe PPPoE client allows remote attackers to cause a denial of service via the Clamp MSS option and a TCP packet with a zero-length TCP option. | ||||
| CVE-2001-0029 | 1 Igor Khasilev | 1 Oops Proxy Server | 2026-04-16 | N/A |
| Buffer overflow in oops WWW proxy server 1.4.6 (and possibly other versions) allows remote attackers to execute arbitrary commands via a long host or domain name that is obtained from a reverse DNS lookup. | ||||
| CVE-2001-0030 | 1 Smartstuff | 1 Foolproof Security | 2026-04-16 | N/A |
| FoolProof 3.9 allows local users to bypass program execution restrictions by downloading the restricted executables from another source and renaming them. | ||||
| CVE-2001-0031 | 1 Broadvision | 1 One-to-one Enterprise Server | 2026-04-16 | N/A |
| BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist. | ||||
| CVE-2001-0032 | 1 Eric Rescorla | 1 Ssldump | 2026-04-16 | N/A |
| Format string vulnerability in ssldump possibly allows remote attackers to cause a denial of service and possibly gain root privileges via malicious format string specifiers in a URL. | ||||
| CVE-2001-0034 | 1 Kth | 1 Kth Kerberos | 2026-04-16 | N/A |
| KTH Kerberos IV allows local users to specify an alternate proxy using the krb4_proxy variable, which allows the user to generate false proxy responses and possibly gain privileges. | ||||
| CVE-2001-0036 | 2 Kth, Redhat | 2 Kth Kerberos, Linux | 2026-04-16 | N/A |
| KTH Kerberos IV allows local users to overwrite arbitrary files via a symlink attack on a ticket file. | ||||
| CVE-2001-0038 | 1 Metaproducts | 1 Offline Explorer | 2026-04-16 | N/A |
| Offline Explorer 1.4 before Service Release 2 allows remote attackers to read arbitrary files by specifying the drive letter (e.g. C:) in the requested URL. | ||||
| CVE-2001-0039 | 1 Ipswitch | 1 Imail | 2026-04-16 | N/A |
| IPSwitch IMail 6.0.5 allows remote attackers to cause a denial of service using the SMTP AUTH command by sending a base64-encoded user password whose length is between 80 and 136 bytes. | ||||
| CVE-2001-0042 | 1 Apache | 1 Http Server | 2026-04-16 | N/A |
| PHP 3.x (PHP3) on Apache 1.3.6 allows remote attackers to read arbitrary files via a modified .. (dot dot) attack containing "%5c" (encoded backslash) sequences. | ||||
| CVE-2001-0043 | 1 Phpgroupware | 1 Phpgroupware | 2026-04-16 | N/A |
| phpGroupWare before 0.9.7 allows remote attackers to execute arbitrary PHP commands by specifying a malicious include file in the phpgw_info parameter of the phpgw.inc.php program. | ||||