CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In 2001(Overflow)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2001-1582 119 Exec Code Overflow 2001-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in the LDAP naming services library (libsldap) in Sun Solaris 8 allows local users to execute arbitrary code via a long LDAP_OPTIONS environment variable to a privileged program that uses libsldap.
2 CVE-2001-1576 Exec Code Overflow 2001-12-31 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in cron in Caldera UnixWare 7 allows local users to execute arbitrary code via a command line argument.
3 CVE-2001-1575 DoS Overflow 2001-12-31 2008-09-10
5.0
None Remote Low Not required None None Partial
Apple Personal Web Sharing (PWS) 1.1, 1.5, and 1.5.5, when Web Sharing authentication is enabled, allows remote attackers to cause a denial of service via a long password, possibly due to a buffer overflow.
4 CVE-2001-1574 Exec Code Overflow 2001-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in (1) HttpSaveCVP.dll and (2) HttpSaveCSP.dll in Trend Micro InterScan VirusWall 3.5.1 allows remote attackers to execute arbitrary code.
5 CVE-2001-1573 Exec Code Overflow 2001-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in smtpscan.dll for Trend Micro InterScan VirusWall 3.51 for Windows NT has allows remote attackers to execute arbitrary code via a certain configuration parameter.
6 CVE-2001-1561 Exec Code Overflow 2001-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Xvt 2.1 in Debian Linux 2.2 allows local users to execute arbitrary code via long (1) -name and (2) -T arguments.
7 CVE-2001-1557 Overflow +Priv 2001-12-31 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in ftpd in IBM AIX 4.3 and 5.1 allows attackers to gain privileges.
8 CVE-2001-1553 Exec Code Overflow 2001-12-31 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in setiathome for SETI@home 3.03, if installed setuid, could allow local users to execute arbitrary code via long command line options (1) socks_server, (2) socks_user, and (3) socks_passwd. NOTE: since the default configuration of setiathome is not setuid, perhaps this issue should not be included in CVE.
9 CVE-2001-1541 Exec Code Overflow 2001-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Unix-to-Unix Copy Protocol (UUCP) in BSDI BSD/OS 3.0 through 4.2 allows local users to execute arbitrary code via a long command line argument.
10 CVE-2001-1539 119 DoS Overflow 2001-12-31 2010-01-08
5.0
None Remote Low Not required None None Partial
Stack consumption vulnerability in Internet Explorer The JavaScript settimeout function in Internet Explorer allows remote attackers to cause a denial of service (crash) via the JavaScript settimeout function. NOTE: the vendor could not reproduce the problem.
11 CVE-2001-1531 DoS Exec Code Overflow 2001-12-31 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in Claris Emailer 2.0v2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an email attachment with a long filename.
12 CVE-2001-1529 Overflow 2001-12-31 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in rpc.yppasswdd (yppasswd server) in AIX allows attackers to gain unauthorized access via a long string. NOTE: due to lack of details in the vendor advisory, it is not clear if this is the same issue as CVE-2001-0779.
13 CVE-2001-1508 Exec Code Overflow 2001-12-31 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitrary code as group bin via a long command line argument.
14 CVE-2001-1498 Exec Code Overflow 2001-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in mod_bf 0.2 allows local users execute arbitrary commands via a long script.
15 CVE-2001-1496 DoS Exec Code Overflow 2001-12-31 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
16 CVE-2001-1478 Exec Code Overflow 2001-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in xlock in UnixWare 7.1.0 and 7.1.1 and Open Unix 8.0.0 allows local users to execute arbitrary code.
17 CVE-2001-1466 Exec Code Overflow 2001-12-30 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in VanDyke SecureCRT before 3.4.2, when using the SSH-1 protocol, allows remote attackers to execute arbitrary code via a long (1) username or (2) password.
18 CVE-2001-1456 119 Exec Code Overflow 2001-09-04 2008-09-10
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message.
19 CVE-2001-1454 Exec Code Overflow 2001-02-09 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in MySQL before 3.23.33 allows remote attackers to execute arbitrary code via a long drop database request.
20 CVE-2001-1453 Exec Code Overflow 2001-02-09 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in libmysqlclient.so in MySQL 3.23.33 and earlier allows remote attackers to execute arbitrary code via a long host parameter.
21 CVE-2001-1442 Overflow +Priv 2001-04-21 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in innfeed for ISC InterNetNews (INN) before 2.3.0 allows local users in the "news" group to gain privileges via a long -c command line argument.
22 CVE-2001-1439 DoS Overflow 2001-02-16 2008-09-05
2.1
None Local Low Not required None None Partial
Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series 700 and Series 800 allows local users to cause a denial of service ("system availability") via text editors such as (1) e, (2) ex, (3) vi, (4) edit, (5) view, and (6) vedit.
23 CVE-2001-1429 DoS Exec Code Overflow 2001-11-12 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in mcedit in Midnight Commander 4.5.1 allows local users to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a crafted text file.
24 CVE-2001-1389 DoS Exec Code Overflow 2001-08-29 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Multiple vulnerabilities in xinetd 2.3.0 and earlier, and additional variants until 2.3.3, may allow remote attackers to cause a denial of service or execute arbitrary code, primarily via buffer overflows or improper NULL termination.
25 CVE-2001-1355 Exec Code Overflow 2001-07-20 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflows in NetWin Authentication Module (NWAuth) 3.0b and earlier, as implemented in DMail, SurgeFTP, and possibly other packages, could allow attackers to execute arbitrary code via long arguments to (1) the -del command or (2) the -lookup command.
26 CVE-2001-1332 Exec Code Overflow 2001-05-10 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in Linux CUPS before 1.1.6 may allow remote attackers to execute arbitrary code.
27 CVE-2001-1330 Overflow +Priv 2001-06-11 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root privileges via a long command line argument.
28 CVE-2001-1329 Overflow 2001-06-11 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in rsh on AIX 4.2.0.0 may allow local users to gain root priveleges via a long command line argument.
29 CVE-2001-1328 Exec Code Overflow 2001-06-22 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code.
30 CVE-2001-1323 DoS Exec Code Overflow 2001-05-16 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in MIT Kerberos 5 (krb5) 1.2.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via base-64 encoded data, which is not properly handled when the radix_encode function processes file glob output from the ftpglob function.
31 CVE-2001-1320 DoS Exec Code Overflow 2001-07-16 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Network Associates PGP Keyserver 7.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via exceptional BER encodings (possibly buffer overflows), as demonstrated by the PROTOS LDAPv3 test suite.
32 CVE-2001-1316 DoS Exec Code Overflow 2001-07-16 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in Teamware Office Enterprise Directory allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
33 CVE-2001-1314 DoS Exec Code Overflow 2001-07-16 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
34 CVE-2001-1311 DoS Exec Code Overflow 2001-07-16 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in Lotus Domino R5 before R5.0.7a allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
35 CVE-2001-1309 DoS Exec Code Overflow 2001-07-16 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in IBM SecureWay 3.2.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
36 CVE-2001-1307 DoS Exec Code Overflow 2001-07-16 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in iPlanet Directory Server 4.1.4 and earlier (LDAP) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
37 CVE-2001-1304 DoS Overflow 2001-08-03 2008-09-05
5.0
None Remote Low Not required None None Partial
Buffer overflow in SHOUTcast Server 1.8.2 allows remote attackers to cause a denial of service (crash) via several HTTP requests with a long (1) user-agent or (2) host HTTP header.
38 CVE-2001-1294 DoS Overflow 2001-08-22 2008-09-10
5.0
None Remote Low Not required None None Partial
Buffer overflow in A-V Tronics Inetserv 3.2.1 and earlier allows remote attackers to cause a denial of service (crash) in the Webmail interface via a long username and password.
39 CVE-2001-1293 DoS Overflow 2001-09-26 2008-09-10
5.0
None Remote Low Not required None None Partial
Buffer overflow in web server of 3com HomeConnect Cable Modem External with USB (#3CR29223) allows remote attackers to cause a denial of service (crash) via a long HTTP request.
40 CVE-2001-1287 Exec Code Overflow 2001-10-12 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in Web Calendar in Ipswitch IMail 7.04 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.
41 CVE-2001-1283 DoS Exec Code Overflow 2001-10-12 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
The webmail interface for Ipswitch IMail 7.04 and earlier allows remote authenticated users to cause a denial of service (crash) via a mailbox name that contains a large number of . (dot) or other characters to programs such as (1) readmail.cgi or (2) printmail.cgi, possibly due to a buffer overflow that may allow execution of arbitrary code.
42 CVE-2001-1279 DoS Exec Code Overflow 2001-07-17 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in print-rx.c of tcpdump 3.x (probably 3.6x) allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that trigger an integer signedness error, a different vulnerability than CVE-2000-1026.
43 CVE-2001-1274 DoS Overflow +Priv 2001-01-23 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges.
44 CVE-2001-1263 DoS Overflow 2001-06-06 2008-09-10
5.0
None Remote Low Not required None None Partial
telnet95.exe in Pragma InterAccess 4.0 build 5 allows remote attackers to cause a denial of service (crash) via a large number of characters to port 23, possibly due to a buffer overflow.
45 CVE-2001-1250 DoS Overflow 2001-06-29 2008-09-10
5.0
None Remote Low Not required None None Partial
vWebServer 1.2.0 allows remote attackers to cause a denial of service (hang) via a small number of long URL requests, possibly due to a buffer overflow.
46 CVE-2001-1230 DoS Exec Code Overflow 2001-03-13 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in Icecast before 1.3.10 allow remote attackers to cause a denial of service (crash) and execute arbitrary code.
47 CVE-2001-1229 DoS Exec Code Overflow 2001-03-12 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in (1) Icecast before 1.3.9 and (2) libshout before 1.0.4 allow remote attackers to cause a denial of service (crash) and execute arbitrary code.
48 CVE-2001-1228 Exec Code Overflow 2001-11-18 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.
49 CVE-2001-1216 Exec Code Overflow 2001-12-21 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in PL/SQL Apache module in Oracle 9i Application Server allows remote attackers to execute arbitrary code via a long request for a help page.
50 CVE-2001-1207 Exec Code Overflow 2001-12-30 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflows in DayDream BBS 2.9 through 2.13 allow remote attackers to possibly execute arbitrary code via the control codes (1) ~#MC, (2) ~#TF, or (3) ~#RA.
Total number of vulnerabilities : 297   Page : 1 (This Page)2 3 4 5 6
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.