2001 CVE Vulnerabilities
1,556 CVEs published in 2001.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2001-1517 | — | — | 2.1% | Dec 31, 2001 | RunAs (runas.exe) in Windows 2000 stores cleartext authentication information in memory, which could allow attackers to ... |
| CVE-2001-1534 | — | — | 0.7% | Dec 31, 2001 | mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's using predictable information including host IP add... |
| CVE-2001-1547 | — | — | 13.7% | Dec 31, 2001 | Outlook Express 6.0, with "Do not allow attachments to be saved or opened that could potentially be a virus" enabled, do... |
| CVE-2001-1554 | — | — | 1.2% | Dec 31, 2001 | IBM AIX 430 does not properly unlock IPPMTU_LOCK, which allows remote attackers to cause a denial of service (hang) via ... |
| CVE-2001-1585 | — | — | 1.9% | Dec 31, 2001 | SSH protocol 2 (aka SSH-2) public key authentication in the development snapshot of OpenSSH 2.3.1, available from 2001-0... |
| CVE-2001-1479 | — | — | 0.4% | Dec 31, 2001 | smcboot in Sun SMC (Sun Management Center) 2.0 in Solaris 8 allows local users to delete arbitrary files via a symlink a... |
| CVE-2001-1480 | — | — | 2.1% | Dec 31, 2001 | Java Runtime Environment (JRE) and SDK 1.2 through 1.3.0_04 allows untrusted applets to access the system clipboard. |
| CVE-2001-1478 | — | — | 0.4% | Dec 31, 2001 | Buffer overflow in xlock in UnixWare 7.1.0 and 7.1.1 and Open Unix 8.0.0 allows local users to execute arbitrary code. |
| CVE-2001-1481 | CRITICAL | 9.8 | 2.9% | Dec 31, 2001 | Xitami 2.4 through 2.5 b4 stores the Administrator password in plaintext in the default.aut file, whose default permissi... |
| CVE-2001-1532 | — | — | 1.3% | Dec 31, 2001 | WebX stores authentication information in the HTTP_REFERER variable, which is included in URL links within bulletin boar... |
| CVE-2001-1482 | — | — | 1.2% | Dec 31, 2001 | SQL injection vulnerability in bb_memberlist.php for phpBB 1.4.2 allows remote attackers to execute arbitrary SQL querie... |
| CVE-2001-1483 | — | — | 3.7% | Dec 31, 2001 | One-Time Passwords In Everything (a.k.a OPIE) 2.32 and 2.4 allows remote attackers to determine the existence of user ac... |
| CVE-2001-1541 | — | — | 0.6% | Dec 31, 2001 | Buffer overflow in Unix-to-Unix Copy Protocol (UUCP) in BSDI BSD/OS 3.0 through 4.2 allows local users to execute arbitr... |
| CVE-2001-1583 | — | — | 83.4% | Dec 31, 2001 | lpd daemon (in.lpd) in Solaris 8 and earlier allows remote attackers to execute arbitrary commands via a job request wit... |
| CVE-2001-1577 | — | — | 1.3% | Dec 31, 2001 | Unknown vulnerability in CDE in Caldera OpenUnix 7.1.0, 7.1.1, and 8.0 allows an xterm session to gain privileges when t... |
| CVE-2001-1548 | — | — | 0.4% | Dec 31, 2001 | ZoneAlarm 2.1 through 2.6 and ZoneAlarm Pro 2.4 and 2.6 allows local users to bypass filtering via non-standard TCP pack... |
| CVE-2001-1578 | — | — | 0.3% | Dec 31, 2001 | Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as cert... |
| CVE-2001-1555 | — | — | 0.4% | Dec 31, 2001 | pt_chmod in Solaris 8 does not call fdetach to reset terminal privileges when users log out of terminals, which allows l... |
| CVE-2001-1561 | — | — | 1.2% | Dec 31, 2001 | Buffer overflow in Xvt 2.1 in Debian Linux 2.2 allows local users to execute arbitrary code via long (1) -name and (2) -... |
| CVE-2001-1574 | — | — | 3.6% | Dec 31, 2001 | Buffer overflow in (1) HttpSaveCVP.dll and (2) HttpSaveCSP.dll in Trend Micro InterScan VirusWall 3.5.1 allows remote at... |
| CVE-2001-1477 | — | — | 0.3% | Dec 31, 2001 | The Domain gateway in BEA Tuxedo 7.1 does not perform authorization checks for imported services and qspaces on remote d... |
| CVE-2001-1575 | — | — | 1.9% | Dec 31, 2001 | Apple Personal Web Sharing (PWS) 1.1, 1.5, and 1.5.5, when Web Sharing authentication is enabled, allows remote attacker... |
| CVE-2001-1505 | — | — | 1.4% | Dec 31, 2001 | tinc 1.0pre3 and 1.0pre4 allows remote attackers to inject data into user sessions by sniffing and replaying packets. |
| CVE-2001-1545 | — | — | 1.4% | Dec 31, 2001 | Macromedia JRun 3.0 and 3.1 appends the jsessionid to URL requests (a.k.a. rewriting) when client browsers have cookies ... |
| CVE-2001-1536 | HIGH | 7.5 | 1.4% | Dec 31, 2001 | Autogalaxy stores usernames and passwords in cleartext in cookies, which makes it easier for remote attackers to obtain ... |
Check if your code is affected by 2001 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now