CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In 2001

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1651 CVE-2000-0314 2001-03-12 2016-10-18
5.0
None Remote Low Not required None None Partial
traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.
1652 CVE-2000-0313 2001-03-12 2008-09-10
4.6
None Local Low Not required Partial Partial Partial
Vulnerability in OpenBSD 2.6 allows a local user to change interface media configurations.
1653 CVE-2000-0312 +Priv 2001-03-12 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
cron in OpenBSD 2.5 allows local users to gain root privileges via an argv[] that is not NULL terminated, which is passed to cron's fake popen function.
1654 CVE-2000-0310 DoS 2001-03-12 2008-09-10
5.0
None Remote Low Not required None None Partial
IP fragment assembly in OpenBSD 2.4 allows a remote attacker to cause a denial of service by sending a large number of fragmented packets.
1655 CVE-2000-0309 DoS 2001-03-12 2008-09-10
2.1
None Local Low Not required None None Partial
The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service.
1656 CVE-2000-0308 +Priv 2001-03-12 2008-09-05
10.0
None Remote Low Not required Complete Complete Complete
Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges.
1657 CVE-2000-0307 DoS 2001-03-12 2008-09-05
5.0
None Remote Low Not required None None Partial
Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.
1658 CVE-2000-0306 Overflow 2001-03-12 2008-09-05
10.0
None Remote Low Not required Complete Complete Complete
Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.
1659 CVE-1999-1569 DoS 2001-07-17 2017-12-19
5.0
None Remote Low Not required None None Partial
Quake 1 and NetQuake servers allow remote attackers to cause a denial of service (resource exhaustion or forced disconnection) via a flood of spoofed UDP connection packets, which exceeds the server's player limit.
1660 CVE-1999-1514 DoS Exec Code Overflow 2001-11-28 2017-12-19
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Celtech ExpressFS FTP server 2.x allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long USER command.
1661 CVE-1999-1174 Bypass 2001-12-21 2008-09-10
4.6
None Local Low Not required Partial Partial Partial
ZIP drive for Iomega ZIP-100 disks allows attackers with physical access to the drive to bypass password protection by inserting a known disk with a known password, waiting for the ZIP drive to power down, manually replacing the known disk with the target disk, and using the known password to access the target disk.
1662 CVE-1999-1024 DoS 2001-11-28 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
ip_print procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet.
1663 CVE-1999-0945 120 DoS Overflow 2001-03-12 2020-04-02
5.0
None Remote Low Not required None None Partial
Buffer overflow in Internet Mail Service (IMS) for Microsoft Exchange 5.5 and 5.0 allows remote attackers to conduct a denial of service via AUTH or AUTHINFO commands.
1664 CVE-1999-0924 DoS 2001-03-12 2017-10-10
5.0
None Remote Low Not required None None Partial
The Syntax Checker in ColdFusion Server 4.0 allows remote attackers to conduct a denial of service.
1665 CVE-1999-0923 DoS 2001-03-12 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls.
1666 CVE-1999-0922 2001-03-12 2008-09-09
5.0
None Remote Low Not required Partial None None
An example application in ColdFusion Server 4.0 allows remote attackers to view source code via the sourcewindow.cfm file.
1667 CVE-1999-0805 DoS 2001-03-12 2017-12-19
5.0
None Remote Low Not required None None Partial
Novell NetWare Transaction Tracking System (TTS) in Novell 4.11 and earlier allows remote attackers to cause a denial of service via a large number of requests.
1668 CVE-1999-0800 2001-03-12 2017-10-10
5.0
None Remote Low Not required Partial None None
The GetFile.cfm file in Allaire Forums allows remote attackers to read files through a parameter to GetFile.cfm.
1669 CVE-1999-0784 DoS 2001-03-12 2008-09-05
5.0
None Remote Low Not required None None Partial
Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP.
1670 CVE-1999-0760 +Priv 2001-03-12 2017-10-10
10.0
None Remote Low Not required Complete Complete Complete
Undocumented ColdFusion Markup Language (CFML) tags and functions in the ColdFusion Administrator allow users to gain additional privileges.
1671 CVE-1999-0758 2001-03-12 2008-09-09
5.0
None Remote Low Not required Partial None None
Netscape Enterprise 3.5.1 and FastTrack 3.01 servers allow a remote attacker to view source code to scripts by appending a %20 to the script's URL.
1672 CVE-1999-0757 2001-03-12 2017-12-19
2.1
None Local Low Not required Partial None None
The ColdFusion CFCRYPT program for encrypting CFML templates has weak encryption, allowing attackers to decrypt the templates.
1673 CVE-1999-0756 2001-03-12 2017-10-10
5.0
None Remote Low Not required None None Partial
ColdFusion Administrator with Advanced Security enabled allows remote users to stop the ColdFusion server via the Start/Stop utility.
1674 CVE-1999-0729 DoS Overflow 2001-03-12 2008-09-09
5.0
None Remote Low Not required None None Partial
Buffer overflow in Lotus Notes LDAP (NLDAP) allows an attacker to conduct a denial of service through the ldap_search request.
1675 CVE-1999-0718 +Priv 2001-03-12 2017-10-10
6.2
None Local High Not required Complete Complete Complete
IBM GINA, when used for OS/2 domain authentication of Windows NT users, allows local users to gain administrator privileges by changing the GroupMapping registry key.
1676 CVE-1999-0681 DoS Overflow 2001-03-12 2017-10-10
5.0
None Remote Low Not required None None Partial
Buffer overflow in Microsoft FrontPage Server Extensions (PWS) 3.0.2.926 on Windows 95, and possibly other versions, allows remote attackers to cause a denial of service via a long URL.
1677 CVE-1999-0359 DoS 2001-03-12 2008-09-09
7.5
None Remote Low Not required Partial Partial Partial
ptylogin in Unix systems allows users to perform a denial of service by locking out modems, dial out with that modem, or obtain passwords.
Total number of vulnerabilities : 1677   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.