|
344741
|
- |
|
mandrakesoft
redhat
|
mandrake_linux
linux
|
kdesu in kdelibs package creates world readable temporary files containing authentication info, which can allow local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2001-0496
|
2017-12-19 11:29 |
2001-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344742
|
- |
|
aladdin_knowledge_systems
|
esafe_gateway
|
Aladdin eSafe Gateway versions 2.x allows a remote attacker to circumvent HTML SCRIPT filtering via a special arrangement of HTML tags which includes SCRIPT tags embedded within other SCRIPT tags.
|
NVD-CWE-Other
|
CVE-2001-0519
|
2017-12-19 11:29 |
2001-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344743
|
- |
|
aladdin_knowledge_systems
|
esafe_gateway
|
Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent filtering of SCRIPT tags by embedding the scripts within certain HTML tags including (1) onload in the BODY tag, …
|
NVD-CWE-Other
|
CVE-2001-0520
|
2017-12-19 11:29 |
2001-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344744
|
- |
|
aladdin_knowledge_systems
|
esafe_gateway
|
Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent HTML SCRIPT filtering via the UNICODE encoding of SCRIPT tags within the HTML document.
|
NVD-CWE-Other
|
CVE-2001-0521
|
2017-12-19 11:29 |
2001-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344745
|
- |
|
eeye_digital_security
|
secureiis
securells
|
eEye SecureIIS versions 1.0.3 and earlier allows a remote attacker to bypass filtering of requests made to SecureIIS by escaping HTML characters within the request, which could allow a remote attacke…
|
NVD-CWE-Other
|
CVE-2001-0523
|
2017-12-19 11:29 |
2001-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344746
|
- |
|
eeye_digital_security
|
securells
|
eEye SecureIIS versions 1.0.3 and earlier does not perform length checking on individual HTTP headers, which allows a remote attacker to send arbitrary length strings to IIS, contrary to an advertise…
|
NVD-CWE-Other
|
CVE-2001-0524
|
2017-12-19 11:29 |
2001-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344747
|
- |
|
t._hauck
|
jana_web_server
|
T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e).
|
NVD-CWE-Other
|
CVE-2001-0557
|
2017-12-19 11:29 |
2001-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344748
|
- |
|
drummond_miles
|
a1stats
|
Directory traversal vulnerability in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in (1) a1disp2.cgi, (2) a1disp3.cgi, or (3) a1dis…
|
NVD-CWE-Other
|
CVE-2001-0561
|
2017-12-19 11:29 |
2001-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344749
|
- |
|
drummond_miles
|
a1stats
|
a1disp.cgi program in Drummond Miles A1Stats prior to 1.6 allows a remote attacker to execute commands via a specially crafted URL which includes shell metacharacters.
|
NVD-CWE-Other
|
CVE-2001-0562
|
2017-12-19 11:29 |
2001-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344750
|
- |
|
cisco
|
catalyst_2900
|
Cisco Catalyst 2900XL switch allows a remote attacker to create a denial of service via an empty UDP packet sent to port 161 (SNMP) when SNMP is disabled.
|
CWE-20
Improper Input Validation
|
CVE-2001-0566
|
2017-12-19 11:29 |
2001-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
