Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2001-05-03 CVE-2001-0200 Path Disclosure vulnerability in Heat-On Software Hsweb 2.0
HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled.
network
low complexity
heat-on-software
5.0
5.0
2001-05-03 CVE-2001-0199 Directory Traversal vulnerability in Guido Frassetto Sedum 2.0
Directory traversal vulnerability in SEDUM HTTP Server 2.0 allows remote attackers to read arbitrary files via a ..
network
low complexity
guido-frassetto
5.0
5.0
2001-05-03 CVE-2001-0198 Remote Overflow vulnerability in Apple Quicktime 4.1.2
Buffer overflow in QuickTime Player plugin 4.1.2 (Japanese) allows remote attackers to execute arbitrary commands via a long HREF parameter in an EMBED tag.
network
high complexity
apple
7.6
7.6
2001-05-03 CVE-2001-0196 Unspecified vulnerability in Freebsd
inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group.
network
low complexity
freebsd
5.0
5.0
2001-05-03 CVE-2001-0194 Remote Security vulnerability in CUPS
Buffer overflow in httpGets function in CUPS 1.1.5 allows remote attackers to execute arbitrary commands via a long input line.
network
low complexity
easy-software-products
critical
 10.0
10
2001-05-03 CVE-2001-0193 Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter.
local
low complexity
debian suse
7.2
7.2
2001-05-03 CVE-2001-0192 Remote Security vulnerability in XMail
Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfileget or domaindel functions.
network
low complexity
davide-libenzi
critical
 10.0
10
2001-05-03 CVE-2001-0186 Directory Traversal vulnerability in Free Java web Server Free Java web Server 1.0
Directory traversal vulnerability in Free Java Web Server 1.0 allows remote attackers to read arbitrary files via a ..
network
low complexity
free-java-web-server
5.0
5.0
2001-05-03 CVE-2001-0180 Remote Security vulnerability in Guestserver
Lars Ellingsen guestserver.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the "email" parameter.
network
low complexity
lars-ellingsen
critical
 10.0
10
2001-05-03 CVE-2001-0179 Unspecified vulnerability in Macromedia Jrun 3.0
Allaire JRun 3.0 allows remote attackers to list contents of the WEB-INF directory, and the web.xml file in the WEB-INF directory, via a malformed URL that contains a "."
network
low complexity
macromedia
5.0
5.0