|
347221
|
- |
|
phpslash
|
phpslash
|
Block_render_url.class in PHPSlash 0.6.1 allows remote attackers with PHPSlash administrator privileges to read arbitrary files by creating a block and specifying the target file as the source URL.
|
NVD-CWE-Other
|
CVE-2001-1334
|
2016-10-18 11:14 |
2002-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347222
|
- |
|
namazu
|
namazu
|
Cross-site scripting vulnerability in namazu.cgi for Namazu 2.0.7 and earlier allows remote attackers to execute arbitrary Javascript as other web users via the lang parameter.
|
NVD-CWE-Other
|
CVE-2001-1350
|
2016-10-18 11:14 |
2001-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347223
|
- |
|
aladdin_enterprises
|
ghostscript
|
ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled.
|
NVD-CWE-Other
|
CVE-2001-1353
|
2016-10-18 11:14 |
2001-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347224
|
- |
|
phplib_team
|
phplib
|
prepend.php3 in PHPLib before 7.2d, when register_globals is enabled for PHP, allows remote attackers to execute arbitrary scripts via an HTTP request that modifies $_PHPLIB[libdir] to point to malic…
|
NVD-CWE-Other
|
CVE-2001-1370
|
2016-10-18 11:14 |
2001-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347225
|
- |
|
oracle
|
application_server
|
The default configuration of Oracle Application Server 9iAS 1.0.2.2 enables SOAP and allows anonymous users to deploy applications by default via urn:soap-service-manager and urn:soap-provider-manage…
|
NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2001-1371
|
2016-10-18 11:14 |
2002-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347226
|
- |
|
linux
|
linux_kernel
|
ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, su…
|
NVD-CWE-Other
|
CVE-2001-1384
|
2016-10-18 11:14 |
2001-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347227
|
- |
|
php
mandrakesoft
|
php
mandrake_linux
|
The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the sour…
|
NVD-CWE-Other
|
CVE-2001-1385
|
2016-10-18 11:14 |
2001-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347228
|
- |
|
xinetd
|
xinetd
|
Multiple vulnerabilities in xinetd 2.3.0 and earlier, and additional variants until 2.3.3, may allow remote attackers to cause a denial of service or execute arbitrary code, primarily via buffer over…
|
NVD-CWE-Other
|
CVE-2001-1389
|
2016-10-18 11:14 |
2001-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347229
|
- |
|
intel
|
high-bandwidth_digital_content_protection
|
Linear key exchange process in High-bandwidth Digital Content Protection (HDCP) System allows remote attackers to access data as plaintext, avoid device blacklists, clone devices, and create new devi…
|
NVD-CWE-Other
|
CVE-2001-0903
|
2016-10-18 11:13 |
2001-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347230
|
- |
|
network_solutions
|
rwhoisd
|
Format string vulnerability in Network Solutions Rwhoisd 1.5.7.2 and earlier, when using syslog, allows remote attackers to corrupt memory and possibly execute arbitrary code via a rwhois request tha…
|
NVD-CWE-Other
|
CVE-2001-0913
|
2016-10-18 11:13 |
2001-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
