Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-07-09 | CVE-2001-1026 | Unspecified vulnerability in Trend Micro Interscan Applettrap 2.0 Trend Micro InterScan AppletTrap 2.0 does not properly filter URLs when they are modified in certain ways such as (1) using a double slash (//) instead of a single slash, (2) URL-encoded characters, (3) requesting the IP address instead of the domain name, or (4) using a leading 0 in an octet of an IP address. | 7.5 |
| 2001-07-07 | CVE-2001-1244 | Denial of Service vulnerability in Multiple Vendor Small TCP MSS Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process. | 5.0 |
| 2001-07-06 | CVE-2001-1081 | Format string vulnerabilities in Livingston/Lucent RADIUS before 2.1.va.1 may allow local or remote attackers to cause a denial of service and possibly execute arbitrary code via format specifiers that are injected into log messages. | 7.5 |
| 2001-07-06 | CVE-2001-1045 | Unspecified vulnerability in Basilix Webmail 1.02Beta/1.03Beta Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and earlier allows remote attackers to read arbitrary files via a .. | 5.0 |
| 2001-07-05 | CVE-2001-1408 | Directory Traversal vulnerability in Cobalt Qube and Webmail Directory traversal vulnerability in readmsg.php in WebMail 2.0.1 in Cobalt Qube 3 allows remote attackers to read arbitrary files via a .. | 5.0 |
| 2001-07-05 | CVE-2001-1087 | Unspecified vulnerability in Network Appliance Netcache The default configuration of the config.http.tunnel.allow_ports option on NetCache devices is set to +all, which allows remote attackers to connect to arbitrary ports on remote systems behind the device. | 7.5 |
| 2001-07-05 | CVE-2001-1085 | Unspecified vulnerability in JON Zeeff Lmail 2.7 Lmail 2.7 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file. | 3.7 |
| 2001-07-05 | CVE-2001-1076 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable. | 7.2 |
| 2001-07-04 | CVE-2001-1243 | Local DoS vulnerability in Microsoft products Scripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers to cause a denial of service (crash) via (1) creating an ASP program that uses Scripting.FileSystemObject to open a file with an MS-DOS device name, or (2) remotely injecting the device name into ASP programs that internally use Scripting.FileSystemObject. | 5.0 |
| 2001-07-04 | CVE-2001-1086 | Unspecified vulnerability in Xfree86 Project X11R6 3.3/3.3.3 XDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote attackers to gain unauthorized access to the X display via a brute force attack. | 7.5 |