Export limit exceeded: 345280 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (345280 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-1989 | 1 Clam Anti-virus | 1 Clamav | 2026-04-16 | N/A |
| Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers. | ||||
| CVE-2001-1470 | 1 Ssh | 1 Ssh | 2026-04-16 | N/A |
| The IDEA cipher as implemented by SSH1 does not protect the final block of a message against modification, which allows remote attackers to modify the block without detection by changing its cyclic redundancy check (CRC) to match the modifications to the message. | ||||
| CVE-2001-1474 | 1 Ssh | 1 Ssh | 2026-04-16 | N/A |
| SSH before 2.0 disables host key checking when connecting to the localhost, which allows remote attackers to silently redirect connections to the localhost by poisoning the client's DNS cache. | ||||
| CVE-2001-1475 | 1 Ssh | 1 Ssh | 2026-04-16 | N/A |
| SSH before 2.0, when using RC4 and password authentication, allows remote attackers to replay messages until a new server key (VK) is generated. | ||||
| CVE-2001-1476 | 1 Ssh | 1 Ssh | 2026-04-16 | N/A |
| SSH before 2.0, with RC4 encryption and the "disallow NULL passwords" option enabled, makes it easier for remote attackers to guess portions of user passwords by replaying user sessions with certain modifications, which trigger different messages depending on whether the guess is correct or not. | ||||
| CVE-2001-1480 | 2 Apple, Sun | 4 Mac Os Runtime For Java, Jdk, Jre and 1 more | 2026-04-16 | N/A |
| Java Runtime Environment (JRE) and SDK 1.2 through 1.3.0_04 allows untrusted applets to access the system clipboard. | ||||
| CVE-2001-1482 | 1 Phpbb Group | 1 Phpbb | 2026-04-16 | N/A |
| SQL injection vulnerability in bb_memberlist.php for phpBB 1.4.2 allows remote attackers to execute arbitrary SQL queries via the $sortby variable. | ||||
| CVE-2001-1483 | 1 Nrl.navy | 1 One-time Passwords In Everything | 2026-04-16 | N/A |
| One-Time Passwords In Everything (a.k.a OPIE) 2.32 and 2.4 allows remote attackers to determine the existence of user accounts by printing random passphrases if the user account does not exist and static passphrases if the user account does exist. | ||||
| CVE-2001-1487 | 1 Qualcomm | 1 Qpopper | 2026-04-16 | N/A |
| popauth utility in Qualcomm Qpopper 4.0 and earlier allows local users to overwrite arbitrary files and execute commands as the pop user via a symlink attack on the -trace file option. | ||||
| CVE-2001-1557 | 1 Ibm | 1 Aix | 2026-04-16 | N/A |
| Buffer overflow in ftpd in IBM AIX 4.3 and 5.1 allows attackers to gain privileges. | ||||
| CVE-2001-1501 | 1 Proftpd Project | 1 Proftpd | 2026-04-16 | N/A |
| The glob functionality in ProFTPD 1.2.1, and possibly other versions allows remote attackers to cause a denial of service (CPU and memory consumption) via commands with large numbers of wildcard and other special characters, as demonstrated using an ls command with multiple (1) "*/..", (2) "*/.*", or (3) ".*./*?/" sequences in the argument. | ||||
| CVE-2001-1502 | 1 Mountain Network Systems | 1 Webcart | 2026-04-16 | N/A |
| webcart.cgi in Mountain Network Systems WebCart 8.4 allows remote attackers to execute arbitrary commands via shell metacharacters in the NEXTPAGE parameter. | ||||
| CVE-2001-1503 | 1 Sun | 2 Solaris, Sunos | 2026-04-16 | N/A |
| The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host. | ||||
| CVE-2001-1504 | 1 Ibm | 1 Lotus Notes | 2026-04-16 | N/A |
| Lotus Notes R5 Client 4.6 allows remote attackers to execute arbitrary commands via a Lotus Notes object with code in an event, which is automatically executed when the user processes the e-mail message. | ||||
| CVE-2001-1505 | 1 Tinc | 1 Tinc | 2026-04-16 | N/A |
| tinc 1.0pre3 and 1.0pre4 allows remote attackers to inject data into user sessions by sniffing and replaying packets. | ||||
| CVE-2001-1506 | 1 Hp | 1 Secure Os | 2026-04-16 | N/A |
| Unknown vulnerability in the file system protection subsystem in HP Secure OS Software for Linux 1.0 allows additional user privileges on some files beyond what is specified in the file system protection rules, which allows local users to conduct unauthorized operations on restricted files. | ||||
| CVE-2001-1507 | 1 Openbsd | 1 Openssh | 2026-04-16 | N/A |
| OpenSSH before 3.0.1 with Kerberos V enabled does not properly authenticate users, which could allow remote attackers to login unchallenged. | ||||
| CVE-2001-1509 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user's effective user id, which could allow local users to gain privileges. | ||||
| CVE-2001-1511 | 1 Macromedia | 1 Jrun | 2026-04-16 | N/A |
| JRun 3.0 and 3.1 running on JRun Web Server (JWS) and IIS allows remote attackers to read arbitrary JavaServer Pages (JSP) source code via a request URL containing the source filename ending in (1) "jsp%00" or (2) "js%2570". | ||||
| CVE-2001-1512 | 1 Macromedia | 1 Jrun | 2026-04-16 | N/A |
| Unknown vulnerability in Allaire JRun 3.1 allows remote attackers to directly access the WEB-INF and META-INF directories and execute arbitrary JavaServer Pages (JSP), a variant of CVE-2000-1050. | ||||