2001 CVE Vulnerabilities
1,556 CVEs published in 2001.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2001-1546 | HIGH | 7.8 | 0.4% | Dec 31, 2001 | Pathways Homecare 6.5 uses weak encryption for user names and passwords, which allows local users to gain privileges by ... |
| CVE-2001-1537 | HIGH | 7.5 | 1.1% | Dec 31, 2001 | The default "basic" security setting' in config.php for TWIG webmail 2.7.4 and earlier stores cleartext usernames and pa... |
| CVE-2001-1515 | HIGH | 7.5 | 4.0% | Dec 31, 2001 | Macintosh clients, when using NT file system volumes on Windows 2000 SP1, create subdirectories and automatically modify... |
| CVE-2001-1536 | HIGH | 7.5 | 1.4% | Dec 31, 2001 | Autogalaxy stores usernames and passwords in cleartext in cookies, which makes it easier for remote attackers to obtain ... |
| CVE-2001-0827 | HIGH | 7.5 | 1.3% | Dec 6, 2001 | Cerberus FTP server 1.0 - 1.5 allows remote attackers to cause a denial of service (crash) via a large number of "PASV" ... |
| CVE-2001-0830 | HIGH | 7.5 | 5.7% | Dec 6, 2001 | 6tunnel 0.08 and earlier does not properly close sockets that were initiated by a client, which allows remote attackers ... |
| CVE-2001-0950 | HIGH | 7.5 | 1.6% | Dec 4, 2001 | ValiCert Enterprise Validation Authority (EVA) Administration Server 3.3 through 4.2.1 uses insufficiently random data t... |
| CVE-2001-0667 | HIGH | 7.3 | 14.7% | Oct 30, 2001 | Internet Explorer 6 and earlier, when used with the Telnet client in Services for Unix (SFU) 2.0, allows remote attacker... |
| CVE-2001-0795 | HIGH | 7.5 | 2.0% | Oct 18, 2001 | Perception LiteServe 1.25 allows remote attackers to obtain source code of CGI scripts via URLs that contain MS-DOS conv... |
| CVE-2001-1452 | HIGH | 7.5 | 9.4% | Aug 31, 2001 | By default, DNS servers on Windows NT 4.0 and Windows 2000 Server cache glue records received from non-delegated name se... |
| CVE-2001-1471 | HIGH | 8.8 | 7.7% | Jul 31, 2001 | prefs.php in phpBB 1.4.0 and earlier allows remote authenticated users to execute arbitrary PHP code via an invalid lang... |
| CVE-2001-0497 | HIGH | 7.8 | 0.4% | Jul 21, 2001 | dnskeygen in BIND 8.2.4 and earlier, and dnssec-keygen in BIND 9.1.2 and earlier, set insecure permissions for a HMAC-MD... |
| CVE-2001-1238 | HIGH | 7.8 | 1.3% | Jul 16, 2001 | Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, ... |
| CVE-2001-1042 | HIGH | 7.5 | 3.3% | Jul 2, 2001 | Transsoft Broker 5.9.5.0 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file... |
| CVE-2001-1386 | HIGH | 7.5 | 3.0% | Jul 1, 2001 | WFTPD 3.00 allows remote attackers to read arbitrary files by uploading a (link) file that ends in a ".lnk." extension, ... |
| CVE-2001-1043 | HIGH | 7.5 | 3.3% | Jul 1, 2001 | ArGoSoft FTP Server 1.2.2.2 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) f... |
| CVE-2001-0334 | HIGH | 7.5 | 14.7% | Jun 27, 2001 | FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a wildcard sequence that gen... |
| CVE-2001-0195 | HIGH | 7.8 | 0.3% | Mar 26, 2001 | sash before 3.4-4 in Debian GNU/Linux does not properly clone /etc/shadow, which makes it world-readable and could allow... |
| CVE-2001-0006 | HIGH | 7.1 | 3.0% | Feb 12, 2001 | The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control permissions, which allo... |
Check if your code is affected by 2001 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now