Security Vulnerabilities, CVEs, Published In November 2001 (Code Execution)
Buffer overflow in mcedit in Midnight Commander 4.5.1 allows local users to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a crafted text file.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-11-12
Updated
2017-07-11
Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.
Max CVSS
7.5
EPSS Score
1.17%
Published
2001-11-18
Updated
2008-09-10
Format string vulnerabilities in (1) _probuild, (2) _dbutil, (3) _mprosrv, (4) _mprshut, (5) _proapsv, (6) _progres, (7) _proutil, (8) _rfutil and (9) prolib in Progress database 9.1C allows a local user to execute arbitrary code via format string specifiers in the file used by the PROMSGS environment variable.
Max CVSS
7.2
EPSS Score
0.05%
Published
2001-11-02
Updated
2017-12-19
Buffer overflow in dbsnmp in Oracle 8.0.6 through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable.
Max CVSS
4.6
EPSS Score
0.05%
Published
2001-11-30
Updated
2017-07-11
Buffer overflow in Cooolsoft PowerFTP Server 2.03 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long command.
Max CVSS
7.5
EPSS Score
3.11%
Published
2001-11-28
Updated
2017-12-19
Buffer overflow in the permitted function of GNOME gtop daemon (libgtop_daemon) in libgtop 1.0.13 and earlier may allow remote attackers to execute arbitrary code via long authentication data.
Max CVSS
7.5
EPSS Score
5.98%
Published
2001-11-28
Updated
2016-10-18
Format string vulnerability in the permitted function of GNOME libgtop_daemon in libgtop 1.0.12 and earlier allows remote attackers to execute arbitrary code via an argument that contains format specifiers that are passed into the (1) syslog_message and (2) syslog_io_message functions.
Max CVSS
7.5
EPSS Score
2.69%
Published
2001-11-27
Updated
2016-10-18
Format string vulnerability in auto nice daemon (AND) 1.0.4 and earlier allows a local user to possibly execute arbitrary code via a process name containing a format string.
Max CVSS
6.2
EPSS Score
0.05%
Published
2001-11-26
Updated
2017-10-10
Format string vulnerability in Network Solutions Rwhoisd 1.5.7.2 and earlier, when using syslog, allows remote attackers to corrupt memory and possibly execute arbitrary code via a rwhois request that contains format specifiers.
Max CVSS
7.5
EPSS Score
0.89%
Published
2001-11-22
Updated
2016-10-18
Buffer overflow in helpctr.exe program in Microsoft Help Center for Windows XP allows remote attackers to execute arbitrary code via a long hcp: URL.
Max CVSS
7.5
EPSS Score
8.69%
Published
2001-11-21
Updated
2017-10-10
10 vulnerabilities found