|
344841
|
- |
|
merit
|
aaa_radius_server
|
rlmadmin RADIUS management utility in Merit AAA Server 3.8M, 5.01, and possibly other versions, allows local users to read arbitrary files via a symlink attack on the rlmadmin.help file.
|
NVD-CWE-Other
|
CVE-2001-1000
|
2017-12-19 11:29 |
2001-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344842
|
- |
|
suse
|
suse_linux
|
Vulnerability in screen before 3.9.10, related to a multi-attach error, allows local users to gain root privileges when there is a subdirectory under /tmp/screens/.
|
NVD-CWE-Other
|
CVE-2001-1012
|
2017-12-19 11:29 |
2001-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344843
|
- |
|
redhat
|
linux
|
Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, whic…
|
NVD-CWE-Other
|
CVE-2001-1013
|
2017-12-19 11:29 |
2001-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344844
|
- |
|
michael_boehme
|
webdiscount_e_shop_online_shop_system
|
eshop.pl in WebDiscount(e)shop allows remote attackers to execute arbitrary commands via shell metacharacters in the seite parameter.
|
NVD-CWE-Other
|
CVE-2001-1014
|
2017-12-19 11:29 |
2001-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344845
|
- |
|
lotus
|
domino
|
Lotus Domino web server 5.08 allows remote attackers to determine the internal IP address of the server when NAT is enabled via a GET request that contains a long sequence of / (slash) characters.
|
NVD-CWE-Other
|
CVE-2001-1018
|
2017-12-19 11:29 |
2001-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344846
|
- |
|
seaglass_technologies_inc.
|
sglmerchant
|
Directory traversal vulnerability in view_item CGI program in sglMerchant 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTML_FILE parameter.
|
NVD-CWE-Other
|
CVE-2001-1019
|
2017-12-19 11:29 |
2001-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344847
|
- |
|
xcache_technologies
|
xcache
|
Xcache 2.1 allows remote attackers to determine the absolute path of web server documents by requesting a URL that is not cached by Xcache, which returns the full pathname in the Content-PageName hea…
|
NVD-CWE-Other
|
CVE-2001-1023
|
2017-12-19 11:29 |
2001-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344848
|
- |
|
entrust
|
getaccess
|
login.gas.bat and other CGI scripts in Entrust getAccess allow remote attackers to execute Java programs, and possibly arbitrary commands, by specifying an alternate -classpath argument.
|
NVD-CWE-Other
|
CVE-2001-1024
|
2017-12-19 11:29 |
2001-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344849
|
- |
|
trend_micro
|
interscan_applettrap
|
Trend Micro InterScan AppletTrap 2.0 does not properly filter URLs when they are modified in certain ways such as (1) using a double slash (//) instead of a single slash, (2) URL-encoded characters, …
|
NVD-CWE-Other
|
CVE-2001-1026
|
2017-12-19 11:29 |
2001-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344850
|
- |
|
charles_clark
|
meteor_ftpd
|
Directory traversal vulnerability in Meteor FTP 1.0 allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the ls/LIST command, or (2) a ... in the cd/CWD command.
|
NVD-CWE-Other
|
CVE-2001-1031
|
2017-12-19 11:29 |
2001-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
