2001 CVE Vulnerabilities
1,556 CVEs published in 2001.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2001-0997 | — | — | 2.1% | Sep 11, 2001 | Textor Webmasters Ltd listrec.pl CGI program allows remote attackers to execute arbitrary commands via shell metacharact... |
| CVE-2001-0956 | — | — | 1.6% | Sep 11, 2001 | speechd 0.54 and earlier, with the Festival or rsynth speech synthesis package, allows attackers to execute arbitrary co... |
| CVE-2001-1446 | — | — | 3.1% | Sep 11, 2001 | Find-By-Content in Mac OS X 10.0 through 10.0.4 creates world-readable index files named .FBCIndex in every directory, w... |
| CVE-2001-1092 | — | — | 1.1% | Sep 10, 2001 | msgchk in Digital UNIX 4.0G and earlier allows a local user to read the first line of arbitrary files via a symlink atta... |
| CVE-2001-1093 | — | — | 1.3% | Sep 10, 2001 | Buffer overflow in msgchk in Digital UNIX 4.0G and earlier allows local users to execute arbitrary code via a long comma... |
| CVE-2001-1089 | — | — | 1.6% | Sep 10, 2001 | libnss-pgsql in nss-pgsql 0.9.0 and earlier allows remote attackers to execute arbitrary SQL queries by inserting SQL co... |
| CVE-2001-1090 | — | — | 1.6% | Sep 10, 2001 | nss_postgresql 0.6.1 and before allows a remote attacker to execute arbitrary SQL queries by inserting SQL code into an ... |
| CVE-2001-1369 | — | — | 1.6% | Sep 10, 2001 | Leon J Breedt pam-pgsql before 0.5.2 allows remote attackers to execute arbitrary SQL code and bypass authentication or ... |
| CVE-2001-1405 | — | — | 0.3% | Sep 10, 2001 | Bugzilla before 2.14 does not restrict access to sanitycheck.cgi, which allows local users to cause a denial of service ... |
| CVE-2001-1406 | — | — | 0.3% | Sep 10, 2001 | process_bug.cgi in Bugzilla before 2.14 does not set the "groupset" bit when a bug is moved between product groups, whic... |
| CVE-2001-1407 | — | — | 1.2% | Sep 10, 2001 | Bugzilla before 2.14 allows Bugzilla users to bypass group security checks by marking a bug as the duplicate of a restri... |
| CVE-2001-1404 | — | — | 1.1% | Sep 10, 2001 | Bugzilla before 2.14 stores user passwords in plaintext and sends password requests in an email message, which could all... |
| CVE-2001-1403 | — | — | 1.1% | Sep 10, 2001 | Bugzilla before 2.14 includes the username and password in URLs, which could allow attackers to gain privileges by readi... |
| CVE-2001-1401 | — | — | 1.7% | Sep 10, 2001 | Bugzilla before 2.14 does not properly restrict access to confidential bugs, which could allow Bugzilla users to bypass ... |
| CVE-2001-1402 | — | — | 1.9% | Sep 10, 2001 | Bugzilla before 2.14 does not properly escape untrusted parameters, which could allow remote attackers to conduct unauth... |
| CVE-2001-1102 | — | — | 0.3% | Sep 8, 2001 | Check Point FireWall-1 3.0b through 4.1 for Solaris allows local users to overwrite arbitrary files via a symlink attack... |
| CVE-2001-1101 | — | — | 1.5% | Sep 8, 2001 | The Log Viewer function in the Check Point FireWall-1 GUI for Solaris 3.0b through 4.1 SP2 does not check for the existe... |
| CVE-2001-0985 | — | — | 3.9% | Sep 8, 2001 | shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metachar... |
| CVE-2001-1019 | — | — | 2.0% | Sep 8, 2001 | Directory traversal vulnerability in view_item CGI program in sglMerchant 1.0 allows remote attackers to read arbitrary ... |
| CVE-2001-1099 | — | — | 3.2% | Sep 7, 2001 | The default configuration of Norton AntiVirus for Microsoft Exchange 2000 2.x allows remote attackers to identify the re... |
| CVE-2001-1000 | — | — | 0.8% | Sep 7, 2001 | rlmadmin RADIUS management utility in Merit AAA Server 3.8M, 5.01, and possibly other versions, allows local users to re... |
| CVE-2001-1138 | — | — | 10.3% | Sep 7, 2001 | Directory traversal vulnerability in r.pl (aka r.cgi) of Randy Parker Power Up HTML 0.8033beta allows remote attackers t... |
| CVE-2001-1378 | — | — | 0.3% | Sep 6, 2001 | fetchmailconf in fetchmail before 5.7.4 allows local users to overwrite files of other users via a symlink attack on tem... |
| CVE-2001-1137 | — | — | 2.8% | Sep 6, 2001 | D-Link DI-704 Internet Gateway firmware earlier than V2.56b6 allows remote attackers to cause a denial of service (reboo... |
| CVE-2001-1152 | — | — | 2.4% | Sep 5, 2001 | Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist ... |
Check if your code is affected by 2001 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now