2001 CVE Vulnerabilities
1,556 CVEs published in 2001.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2001-1112 | — | — | 10.6% | Sep 12, 2001 | Buffer overflow in EFTP 2.0.7.337 allows remote attackers to execute arbitrary code by uploading a .lnk file containing ... |
| CVE-2001-1109 | — | — | 8.0% | Sep 12, 2001 | Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a... |
| CVE-2001-1110 | — | — | 1.3% | Sep 12, 2001 | EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a ne... |
| CVE-2001-1111 | — | — | 0.3% | Sep 12, 2001 | EFTP 2.0.7.337 stores user passwords in plaintext in the eftp2users.dat file. |
| CVE-2001-1105 | — | — | 2.6% | Sep 12, 2001 | RSA BSAFE SSL-J 3.0, 3.0.1 and 3.1, as used in Cisco iCND 2.0, caches session IDs from failed login attempts, which coul... |
| CVE-2001-0958 | — | — | 5.0% | Sep 12, 2001 | Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3.51 and 3.51J allow remote attackers to ... |
| CVE-2001-1013 | — | — | 65.6% | Sep 12, 2001 | Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes when a username exists a... |
| CVE-2001-0999 | — | — | 12.3% | Sep 12, 2001 | Outlook Express 6.00 allows remote attackers to execute arbitrary script by embedding SCRIPT tags in a message whose MIM... |
| CVE-2001-1094 | — | — | 0.3% | Sep 11, 2001 | NetOp School 1.5 allows local users to bypass access restrictions on the administration version by logging into the stud... |
| CVE-2001-1446 | — | — | 3.1% | Sep 11, 2001 | Find-By-Content in Mac OS X 10.0 through 10.0.4 creates world-readable index files named .FBCIndex in every directory, w... |
| CVE-2001-0997 | — | — | 2.1% | Sep 11, 2001 | Textor Webmasters Ltd listrec.pl CGI program allows remote attackers to execute arbitrary commands via shell metacharact... |
| CVE-2001-0956 | — | — | 1.6% | Sep 11, 2001 | speechd 0.54 and earlier, with the Festival or rsynth speech synthesis package, allows attackers to execute arbitrary co... |
| CVE-2001-1090 | — | — | 1.6% | Sep 10, 2001 | nss_postgresql 0.6.1 and before allows a remote attacker to execute arbitrary SQL queries by inserting SQL code into an ... |
| CVE-2001-1093 | — | — | 1.3% | Sep 10, 2001 | Buffer overflow in msgchk in Digital UNIX 4.0G and earlier allows local users to execute arbitrary code via a long comma... |
| CVE-2001-1089 | — | — | 1.6% | Sep 10, 2001 | libnss-pgsql in nss-pgsql 0.9.0 and earlier allows remote attackers to execute arbitrary SQL queries by inserting SQL co... |
| CVE-2001-1092 | — | — | 1.1% | Sep 10, 2001 | msgchk in Digital UNIX 4.0G and earlier allows a local user to read the first line of arbitrary files via a symlink atta... |
| CVE-2001-1404 | — | — | 1.1% | Sep 10, 2001 | Bugzilla before 2.14 stores user passwords in plaintext and sends password requests in an email message, which could all... |
| CVE-2001-1405 | — | — | 0.3% | Sep 10, 2001 | Bugzilla before 2.14 does not restrict access to sanitycheck.cgi, which allows local users to cause a denial of service ... |
| CVE-2001-1406 | — | — | 0.3% | Sep 10, 2001 | process_bug.cgi in Bugzilla before 2.14 does not set the "groupset" bit when a bug is moved between product groups, whic... |
| CVE-2001-1407 | — | — | 1.2% | Sep 10, 2001 | Bugzilla before 2.14 allows Bugzilla users to bypass group security checks by marking a bug as the duplicate of a restri... |
| CVE-2001-1401 | — | — | 1.7% | Sep 10, 2001 | Bugzilla before 2.14 does not properly restrict access to confidential bugs, which could allow Bugzilla users to bypass ... |
| CVE-2001-1402 | — | — | 1.9% | Sep 10, 2001 | Bugzilla before 2.14 does not properly escape untrusted parameters, which could allow remote attackers to conduct unauth... |
| CVE-2001-1369 | — | — | 1.6% | Sep 10, 2001 | Leon J Breedt pam-pgsql before 0.5.2 allows remote attackers to execute arbitrary SQL code and bypass authentication or ... |
| CVE-2001-1403 | — | — | 1.1% | Sep 10, 2001 | Bugzilla before 2.14 includes the username and password in URLs, which could allow attackers to gain privileges by readi... |
| CVE-2001-0985 | — | — | 3.9% | Sep 8, 2001 | shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metachar... |
Check if your code is affected by 2001 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now