Export limit exceeded: 367180 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (367180 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2001-0021 1 Endymion 1 Mailman Webmail 2026-04-16 N/A
MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate_template parameter.
CVE-2004-2749 1 2wire 1 Homeportal 2026-04-16 N/A
Directory traversal vulnerability in wra/public/wralogin in 2Wire Gateway, possibly as used in HomePortal and other product lines, allows remote attackers to read arbitrary files via a .. (dot dot) in the return parameter. NOTE: this issue was reported as XSS, but this might be a terminology error.
CVE-2001-0024 1 Leif M. Wright 1 Simplestmail.cgi 2026-04-16 N/A
simplestmail.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the MyEmail parameter.
CVE-2001-0025 1 Leif M. Wright 1 Ad.cgi 2026-04-16 N/A
ad.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter.
CVE-2001-0026 1 Roaring Penguin 1 Pppoe 2026-04-16 N/A
rp-pppoe PPPoE client allows remote attackers to cause a denial of service via the Clamp MSS option and a TCP packet with a zero-length TCP option.
CVE-2001-0027 1 Proftpd Project 1 Proftpd 2026-04-16 N/A
mod_sqlpw module in ProFTPD does not reset a cached password when a user uses the "user" command to change accounts, which allows authenticated attackers to gain privileges of other users.
CVE-2001-0028 1 Igor Khasilev 1 Oops Proxy Server 2026-04-16 N/A
Buffer overflow in the HTML parsing code in oops WWW proxy server 1.5.2 and earlier allows remote attackers to execute arbitrary commands via a large number of " (quotation) characters.
CVE-2001-0029 1 Igor Khasilev 1 Oops Proxy Server 2026-04-16 N/A
Buffer overflow in oops WWW proxy server 1.4.6 (and possibly other versions) allows remote attackers to execute arbitrary commands via a long host or domain name that is obtained from a reverse DNS lookup.
CVE-2001-0030 1 Smartstuff 1 Foolproof Security 2026-04-16 N/A
FoolProof 3.9 allows local users to bypass program execution restrictions by downloading the restricted executables from another source and renaming them.
CVE-1999-0957 1 Great Circle Associates 1 Majorcool 2026-04-16 N/A
MajorCool mj_key_cache program allows local users to modify files via a symlink attack.
CVE-2001-0033 2 Kth, Netbsd 2 Kth Kerberos, Netbsd 2026-04-16 N/A
KTH Kerberos IV allows local users to change the configuration of a Kerberos server running at an elevated privilege by specifying an alternate directory using with the KRBCONFDIR environmental variable, which allows the user to gain additional privileges.
CVE-2001-0034 1 Kth 1 Kth Kerberos 2026-04-16 N/A
KTH Kerberos IV allows local users to specify an alternate proxy using the krb4_proxy variable, which allows the user to generate false proxy responses and possibly gain privileges.
CVE-2001-0035 1 Kth 1 Kth Kerberos 2026-04-16 N/A
Buffer overflow in the kdc_reply_cipher function in KTH Kerberos IV allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long authentication request.
CVE-2001-0036 2 Kth, Redhat 2 Kth Kerberos, Linux 2026-04-16 N/A
KTH Kerberos IV allows local users to overwrite arbitrary files via a symlink attack on a ticket file.
CVE-2001-0037 1 Keware Technologies 1 Homeseer 2026-04-16 N/A
Directory traversal vulnerability in HomeSeer before 1.4.29 allows remote attackers to read arbitrary files via a URL containing .. (dot dot) specifiers.
CVE-2001-0039 1 Ipswitch 1 Imail 2026-04-16 N/A
IPSwitch IMail 6.0.5 allows remote attackers to cause a denial of service using the SMTP AUTH command by sending a base64-encoded user password whose length is between 80 and 136 bytes.
CVE-2001-0042 1 Apache 1 Http Server 2026-04-16 N/A
PHP 3.x (PHP3) on Apache 1.3.6 allows remote attackers to read arbitrary files via a modified .. (dot dot) attack containing "%5c" (encoded backslash) sequences.
CVE-2001-0043 1 Phpgroupware 1 Phpgroupware 2026-04-16 N/A
phpGroupWare before 0.9.7 allows remote attackers to execute arbitrary PHP commands by specifying a malicious include file in the phpgw_info parameter of the phpgw.inc.php program.
CVE-2001-0044 1 Lexmark 1 Markvision 2026-04-16 N/A
Multiple buffer overflows in Lexmark MarkVision printer driver programs allows local users to gain privileges via long arguments to the cat_network, cat_paraller, and cat_serial commands.
CVE-2001-0045 1 Microsoft 1 Windows Nt 2026-04-16 N/A
The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the value to point to a malicious DLL, aka one of the "Registry Permissions" vulnerabilities.