2001 CVE Vulnerabilities
1,556 CVEs published in 2001.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2001-0008 | — | — | 7.0% | Feb 12, 2001 | Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedur... |
| CVE-2001-0007 | — | — | 7.5% | Feb 12, 2001 | Buffer overflow in NetScreen Firewall WebUI allows remote attackers to cause a denial of service via a long URL request ... |
| CVE-2001-0006 | HIGH | 7.1 | 3.0% | Feb 12, 2001 | The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control permissions, which allo... |
| CVE-2001-0005 | — | — | 1.5% | Feb 12, 2001 | Buffer overflow in the parsing mechanism of the file loader in Microsoft PowerPoint 2000 allows attackers to execute arb... |
| CVE-2001-0004 | — | — | 28.2% | Feb 12, 2001 | IIS 5.0 and 4.0 allows remote attackers to read the source code for executable web server programs by appending "%3F+.ht... |
| CVE-2001-0003 | — | — | 8.1% | Feb 12, 2001 | Web Extender Client (WEC) in Microsoft Office 2000, Windows 2000, and Windows Me does not properly process Internet Expl... |
| CVE-2001-1454 | — | — | 9.6% | Feb 9, 2001 | Buffer overflow in MySQL before 3.23.33 allows remote attackers to execute arbitrary code via a long drop database reque... |
| CVE-2001-1453 | — | — | 11.3% | Feb 9, 2001 | Buffer overflow in libmysqlclient.so in MySQL 3.23.33 and earlier allows remote attackers to execute arbitrary code via ... |
| CVE-2001-1357 | — | — | 1.1% | Feb 7, 2001 | Multiple vulnerabilities in phpMyChat before 0.14.5 exist in (1) input.php3, (2) handle_inputH.php3, or (3) index.lib.ph... |
| CVE-2001-1358 | — | — | 0.7% | Feb 7, 2001 | Vulnerabilities in phpMyChat before 0.14.4 allow local and possibly remote attackers to gain privileges by specifying an... |
| CVE-2001-1468 | — | — | 1.9% | Feb 7, 2001 | PHP remote file inclusion vulnerability in checklogin.php in phpSecurePages 0.24 and earlier allows remote attackers to ... |
| CVE-2001-1422 | — | — | 2.1% | Jan 23, 2001 | WinVNC 3.3.3 and earlier generates the same challenge string for multiple connections, which allows remote attackers to ... |
| CVE-2001-1274 | — | — | 5.4% | Jan 23, 2001 | Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges. |
| CVE-2001-1275 | — | — | 0.5% | Jan 19, 2001 | MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administra... |
| CVE-2001-1470 | — | — | 1.1% | Jan 18, 2001 | The IDEA cipher as implemented by SSH1 does not protect the final block of a message against modification, which allows ... |
| CVE-2001-1469 | — | — | 1.2% | Jan 18, 2001 | The RC4 stream cipher as used by SSH1 allows remote attackers to modify messages without detection by XORing the origina... |
| CVE-2001-1476 | — | — | 1.0% | Jan 18, 2001 | SSH before 2.0, with RC4 encryption and the "disallow NULL passwords" option enabled, makes it easier for remote attacke... |
| CVE-2001-1475 | — | — | 1.5% | Jan 18, 2001 | SSH before 2.0, when using RC4 and password authentication, allows remote attackers to replay messages until a new serve... |
| CVE-2001-1474 | — | — | 1.2% | Jan 18, 2001 | SSH before 2.0 disables host key checking when connecting to the localhost, which allows remote attackers to silently re... |
| CVE-2001-1473 | — | — | 6.3% | Jan 18, 2001 | The SSH-1 protocol allows remote servers to conduct man-in-the-middle attacks and replay a client challenge response to ... |
| CVE-2001-1416 | — | — | 1.6% | Jan 18, 2001 | Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messeng... |
| CVE-2001-1436 | — | — | 0.5% | Jan 18, 2001 | Dallas Semiconductor iButton DS1991 returns predictable values when given an incorrect password, which makes it easier f... |
| CVE-2001-1385 | — | — | 1.6% | Jan 12, 2001 | The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may ... |
| CVE-2001-1044 | — | — | 6.9% | Jan 11, 2001 | Basilix Webmail 0.9.7beta, and possibly other versions, stores *.class and *.inc files under the document root and does ... |
| CVE-2001-1464 | — | — | 4.0% | Jan 10, 2001 | Crystal Reports, when displaying data for a password protected database using HTML pages, embeds the username and passwo... |
Check if your code is affected by 2001 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now