CVE-2001-1320

Public exploit
Network Associates PGP Keyserver 7.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via exceptional BER encodings (possibly buffer overflows), as demonstrated by the PROTOS LDAPv3 test suite.
Max CVSS
7.5
EPSS Score
45.91%
Published
2001-07-16
Updated
2017-12-19
Buffer overflow in the LDAP naming services library (libsldap) in Sun Solaris 8 allows local users to execute arbitrary code via a long LDAP_OPTIONS environment variable to a privileged program that uses libsldap.
Max CVSS
7.2
EPSS Score
0.12%
Published
2001-12-31
Updated
2018-10-30
Buffer overflow in cron in Caldera UnixWare 7 allows local users to execute arbitrary code via a command line argument.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-12-31
Updated
2008-09-05
Buffer overflow in (1) HttpSaveCVP.dll and (2) HttpSaveCSP.dll in Trend Micro InterScan VirusWall 3.5.1 allows remote attackers to execute arbitrary code.
Max CVSS
10.0
EPSS Score
0.40%
Published
2001-12-31
Updated
2008-09-05
Buffer overflow in smtpscan.dll for Trend Micro InterScan VirusWall 3.51 for Windows NT has allows remote attackers to execute arbitrary code via a certain configuration parameter.
Max CVSS
10.0
EPSS Score
0.40%
Published
2001-12-31
Updated
2008-09-05
Format string vulnerability in libvanessa_logger 0.0.1 in Perdition 0.1.8 allows remote attackers to execute arbitrary code via format string specifiers in the __vanessa_logger_log function.
Max CVSS
7.5
EPSS Score
0.58%
Published
2001-12-31
Updated
2008-09-05
Buffer overflow in Xvt 2.1 in Debian Linux 2.2 allows local users to execute arbitrary code via long (1) -name and (2) -T arguments.
Max CVSS
7.2
EPSS Score
0.09%
Published
2001-12-31
Updated
2008-09-05
Buffer overflow in setiathome for SETI@home 3.03, if installed setuid, could allow local users to execute arbitrary code via long command line options (1) socks_server, (2) socks_user, and (3) socks_passwd. NOTE: since the default configuration of setiathome is not setuid, perhaps this issue should not be included in CVE.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-12-31
Updated
2008-09-05
Outlook Express 6.0, with "Do not allow attachments to be saved or opened that could potentially be a virus" enabled, does not block email attachments from forwarded messages, which could allow remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
6.82%
Published
2001-12-31
Updated
2008-09-05
NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in email clients that process the invalid attachments.
Max CVSS
7.5
EPSS Score
0.98%
Published
2001-12-31
Updated
2011-03-08
Buffer overflow in Unix-to-Unix Copy Protocol (UUCP) in BSDI BSD/OS 3.0 through 4.2 allows local users to execute arbitrary code via a long command line argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-12-31
Updated
2008-09-05
Buffer overflow in Claris Emailer 2.0v2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an email attachment with a long filename.
Max CVSS
7.5
EPSS Score
0.99%
Published
2001-12-31
Updated
2008-09-05
Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitrary code as group bin via a long command line argument.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-12-31
Updated
2017-12-19
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Max CVSS
9.8
EPSS Score
7.52%
Published
2001-12-31
Updated
2024-02-08
Buffer overflow in xlock in UnixWare 7.1.0 and 7.1.1 and Open Unix 8.0.0 allows local users to execute arbitrary code.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-12-31
Updated
2017-07-11
Buffer overflow in VanDyke SecureCRT before 3.4.2, when using the SSH-1 protocol, allows remote attackers to execute arbitrary code via a long (1) username or (2) password.
Max CVSS
7.5
EPSS Score
3.34%
Published
2001-12-30
Updated
2017-07-11
Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message.
Max CVSS
7.5
EPSS Score
2.76%
Published
2001-09-04
Updated
2017-07-11
Buffer overflow in MySQL before 3.23.33 allows remote attackers to execute arbitrary code via a long drop database request.
Max CVSS
7.5
EPSS Score
1.02%
Published
2001-02-09
Updated
2019-10-07
Buffer overflow in libmysqlclient.so in MySQL 3.23.33 and earlier allows remote attackers to execute arbitrary code via a long host parameter.
Max CVSS
7.5
EPSS Score
1.02%
Published
2001-02-09
Updated
2019-10-07
Magic eDeveloper Enterprise Edition 8.30-5 and earlier allows local users to overwrite arbitrary files and possibly execute code via a symlink attack on temporary files created by the (1) mkuserproc, (2) mgrnt, and (3) mgdatasrvr.sc scripts.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-12-17
Updated
2017-07-11
Buffer overflow in mcedit in Midnight Commander 4.5.1 allows local users to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a crafted text file.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-11-12
Updated
2017-07-11
Multiple vulnerabilities in xinetd 2.3.0 and earlier, and additional variants until 2.3.3, may allow remote attackers to cause a denial of service or execute arbitrary code, primarily via buffer overflows or improper NULL termination.
Max CVSS
7.5
EPSS Score
5.39%
Published
2001-08-29
Updated
2016-10-18
tcl/tk package (tcltk) 8.3.1 searches for its libraries in the current working directory before other directories, which could allow local users to execute arbitrary code via a Trojan horse library that is under a user-controlled directory.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-07-19
Updated
2008-09-05
Buffer overflows in NetWin Authentication Module (NWAuth) 3.0b and earlier, as implemented in DMail, SurgeFTP, and possibly other packages, could allow attackers to execute arbitrary code via long arguments to (1) the -del command or (2) the -lookup command.
Max CVSS
10.0
EPSS Score
0.78%
Published
2001-07-20
Updated
2017-12-19
ws_mail.cgi in WebStore 400/400CS 4.14 allows remote authenticated WebStore administrators to execute arbitrary code via shell metacharacters in the kill parameter.
Max CVSS
7.5
EPSS Score
2.97%
Published
2001-06-12
Updated
2017-12-19
154 vulnerabilities found
1 2 3 4 5 6 7
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!