Security Vulnerabilities, CVEs, Published In 2001
CVE-2001-1583
Public exploit
lpd daemon (in.lpd) in Solaris 8 and earlier allows remote attackers to execute arbitrary commands via a job request with a crafted control file that is not properly handled when lpd invokes a mail program. NOTE: this might be the same vulnerability as CVE-2000-1220.
Max CVSS
10.0
EPSS Score
19.96%
Published
2001-12-31
Updated
2022-09-13
CVE-2001-1320
Public exploit
Network Associates PGP Keyserver 7.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via exceptional BER encodings (possibly buffer overflows), as demonstrated by the PROTOS LDAPv3 test suite.
Max CVSS
7.5
EPSS Score
45.91%
Published
2001-07-16
Updated
2017-12-19
CVE-2001-1013
Public exploit
Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, which could allow remote attackers to determine valid usernames on the server.
Max CVSS
5.0
EPSS Score
3.63%
Published
2001-09-12
Updated
2017-12-19
CVE-2001-0803
Public exploit
Buffer overflow in the client connection routine of libDtSvc.so.1 in CDE Subprocess Control Service (dtspcd) allows remote attackers to execute arbitrary commands.
Max CVSS
10.0
EPSS Score
25.93%
Published
2001-12-06
Updated
2017-10-10
CVE-2001-0800
Public exploit
lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
Max CVSS
10.0
EPSS Score
96.55%
Published
2001-12-06
Updated
2008-09-05
CVE-2001-0797
Public exploit
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
Max CVSS
10.0
EPSS Score
97.24%
Published
2001-12-12
Updated
2018-10-30
CVE-2001-0537
Public exploit
HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.
Max CVSS
9.3
EPSS Score
87.68%
Published
2001-07-21
Updated
2017-10-10
CVE-2001-0500
Public exploit
Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red.
Max CVSS
10.0
EPSS Score
96.73%
Published
2001-07-21
Updated
2018-10-12
CVE-2001-0499
Public exploit
Buffer overflow in Transparent Network Substrate (TNS) Listener in Oracle 8i 8.1.7 and earlier allows remote attackers to gain privileges via a long argument to the commands (1) STATUS, (2) PING, (3) SERVICES, (4) TRC_FILE, (5) SAVE_CONFIG, or (6) RELOAD.
Max CVSS
10.0
EPSS Score
7.15%
Published
2001-07-21
Updated
2017-07-11
CVE-2001-0414
Public exploit
Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long readvar argument.
Max CVSS
10.0
EPSS Score
96.76%
Published
2001-06-18
Updated
2017-10-10
CVE-2001-0333
Public exploit
Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.
Max CVSS
7.5
EPSS Score
4.96%
Published
2001-06-27
Updated
2018-10-12
CVE-2001-0311
Public exploit
Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized access to an OmniBack client.
Max CVSS
4.6
EPSS Score
0.10%
Published
2001-06-02
Updated
2017-10-10
CVE-2001-0241
Public exploit
Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long print request that is passed to the extension through IIS 5.0.
Max CVSS
10.0
EPSS Score
95.42%
Published
2001-06-27
Updated
2019-04-30
CVE-2001-0168
Public exploit
Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.
Max CVSS
10.0
EPSS Score
21.19%
Published
2001-05-03
Updated
2017-12-19
CVE-2001-0167
Public exploit
Buffer overflow in AT&T WinVNC (Virtual Network Computing) client 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long rfbConnFailed packet with a long reason string.
Max CVSS
7.6
EPSS Score
9.51%
Published
2001-05-03
Updated
2017-12-19
CVE-2000-1089
Public exploit
Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands, aka the "Phone Book Service Buffer Overflow" vulnerability.
Max CVSS
10.0
EPSS Score
96.97%
Published
2001-01-09
Updated
2018-10-12
16 vulnerabilities found