CVE-2001-1583

Public exploit
lpd daemon (in.lpd) in Solaris 8 and earlier allows remote attackers to execute arbitrary commands via a job request with a crafted control file that is not properly handled when lpd invokes a mail program. NOTE: this might be the same vulnerability as CVE-2000-1220.
Max CVSS
10.0
EPSS Score
19.96%
Published
2001-12-31
Updated
2022-09-13
Buffer overflow in (1) HttpSaveCVP.dll and (2) HttpSaveCSP.dll in Trend Micro InterScan VirusWall 3.5.1 allows remote attackers to execute arbitrary code.
Max CVSS
10.0
EPSS Score
0.40%
Published
2001-12-31
Updated
2008-09-05
Buffer overflow in smtpscan.dll for Trend Micro InterScan VirusWall 3.51 for Windows NT has allows remote attackers to execute arbitrary code via a certain configuration parameter.
Max CVSS
10.0
EPSS Score
0.40%
Published
2001-12-31
Updated
2008-09-05
ColdFusion 4.5 and 5, when running on Windows with the advanced security sandbox type set to "operating system," does not properly pass security context to (1) child processes created with <CFEXECUTE> and (2) child processes that call the CreateProcess function and are executed with <CFOBJECT> or end with the CFX extension, which allows attackers to execute programs with the permissions of the System account.
Max CVSS
10.0
EPSS Score
0.19%
Published
2001-12-31
Updated
2008-09-05
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Max CVSS
9.8
EPSS Score
7.52%
Published
2001-12-31
Updated
2024-02-08
Xitami 2.4 through 2.5 b4 stores the Administrator password in plaintext in the default.aut file, whose default permissions are world-readable, which allows remote attackers to gain privileges.
Max CVSS
10.0
EPSS Score
0.95%
Published
2001-12-31
Updated
2024-02-13
prefs.php in phpBB 1.4.0 and earlier allows remote authenticated users to execute arbitrary PHP code via an invalid language value, which prevents the variables (1) $l_statsblock in prefs.php or (2) $l_privnotify in auth.php from being properly initialized, which can be modified by the user and later used in an eval statement.
Max CVSS
8.8
EPSS Score
1.57%
Published
2001-07-31
Updated
2024-02-15
Unknown vulnerability in login for AIX 5.1L, when using loadable authentication modules, allows remote attackers to gain access to the system.
Max CVSS
10.0
EPSS Score
1.74%
Published
2001-12-21
Updated
2017-07-11
prepend.php3 in PHPLib before 7.2d, when register_globals is enabled for PHP, allows remote attackers to execute arbitrary scripts via an HTTP request that modifies $_PHPLIB[libdir] to point to malicious code on another server, as seen in Horde 1.2.5 and earlier, IMP before 2.2.6, and other packages that use PHPLib.
Max CVSS
10.0
EPSS Score
25.45%
Published
2001-07-21
Updated
2016-10-18
The checkAccess function in PHPSlice 0.1.4, and all other versions between 0.1.1 and 0.1.6, does not properly verify the administrative access level, which could allow remote attackers to gain privileges.
Max CVSS
10.0
EPSS Score
1.01%
Published
2001-07-19
Updated
2017-10-10
Vulnerability in phpWebSite before 0.7.9 related to running multiple instances in the same domain, which may allow attackers to gain administrative privileges.
Max CVSS
10.0
EPSS Score
0.25%
Published
2001-07-19
Updated
2008-09-05
Volution clients 1.0.7 and earlier attempt to contact the computer creation daemon (CCD) when an LDAP authentication failure occurs, which allows remote attackers to fully control clients via a Trojan horse Volution server.
Max CVSS
10.0
EPSS Score
0.75%
Published
2001-06-08
Updated
2017-10-10
NetWin SurgeFTP 2.0f and earlier encrypts passwords using weak hashing, a fixed salt value and modulo 40 calculations, which allows remote attackers to conduct brute force password guessing attacks against the administrator account on port 7021.
Max CVSS
10.0
EPSS Score
1.01%
Published
2001-08-04
Updated
2008-09-05
Buffer overflows in NetWin Authentication Module (NWAuth) 3.0b and earlier, as implemented in DMail, SurgeFTP, and possibly other packages, could allow attackers to execute arbitrary code via long arguments to (1) the -del command or (2) the -lookup command.
Max CVSS
10.0
EPSS Score
0.78%
Published
2001-07-20
Updated
2017-12-19
Beck IPC GmbH IPC@CHIP telnet service does not delay or disconnect users from the service when bad passwords are entered, which makes it easier for remote attackers to conduct brute force password guessing attacks.
Max CVSS
9.8
EPSS Score
2.33%
Published
2001-05-24
Updated
2024-02-09
The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the server via brute force password guessing.
Max CVSS
10.0
EPSS Score
1.65%
Published
2001-07-12
Updated
2024-02-09
Vulnerability in mkacct in HP-UX 11.04 running Virtualvault Operating System (VVOS) 4.0 and 4.5 allows attackers to elevate privileges.
Max CVSS
10.0
EPSS Score
1.36%
Published
2001-07-19
Updated
2017-12-19
Avaya Argent Office uses weak encryption (trivial encoding) for passwords, which allows remote attackers to gain administrator privileges by sniffing and decrypting the sniffing the passwords during a system reboot.
Max CVSS
10.0
EPSS Score
0.41%
Published
2001-08-07
Updated
2008-09-05
Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin for the programs (1) console, (2) cs, (3) multi_config and (4) directory.
Max CVSS
10.0
EPSS Score
0.49%
Published
2001-09-28
Updated
2008-09-10
The default configuration of sudo in Engarde Secure Linux 1.0.1 allows any user in the admin group to run certain commands that could be leveraged to gain full root access.
Max CVSS
10.0
EPSS Score
0.16%
Published
2001-07-11
Updated
2008-09-05
The web administration server for ELSA Lancom 1100 Office does not require authentication, which allows arbitrary remote attackers to gain administrative privileges by connecting to the server.
Max CVSS
10.0
EPSS Score
0.75%
Published
2001-12-26
Updated
2008-09-05
D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point stores the administrative password in plaintext in the default Management Information Base (MIB), which allows remote attackers to gain administrative privileges.
Max CVSS
10.0
EPSS Score
0.90%
Published
2001-12-21
Updated
2008-09-05
Directory traversal vulnerability in edit_action.cgi of Webmin Directory 0.91 allows attackers to gain privileges via a '..' (dot dot) in the argument.
Max CVSS
10.0
EPSS Score
0.93%
Published
2001-12-17
Updated
2016-10-18
Buffer overflow in Munica Corporation NetSQL 1.0 allows remote attackers to execute arbitrary code via a long CONNECT argument to port 6500.
Max CVSS
10.0
EPSS Score
1.04%
Published
2001-06-16
Updated
2008-09-05
Directory traversal vulnerability in the %m macro in the smb.conf configuration file in Samba before 2.2.0a allows remote attackers to overwrite certain files via a .. in a NETBIOS name, which is used as the name for a .log file.
Max CVSS
10.0
EPSS Score
1.93%
Published
2001-06-23
Updated
2017-10-10
158 vulnerabilities found
1 2 3 4 5 6 7
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!