Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-06-02 | CVE-2001-0157 | Unspecified vulnerability in Palm OS 3.5.2 Debugging utility in the backdoor mode of Palm OS 3.5.2 and earlier allows attackers with physical access to a Palm device to bypass access restrictions and obtain passwords, even if the system lockout mechanism is enabled. | 4.6 |
| 2001-06-02 | CVE-2001-0156 | Unspecified vulnerability in VAN Dyke Technologies Vshell 1.0.1 VShell SSH gateway 1.0.1 and earlier has a default port forwarding rule of 0.0.0.0/0.0.0.0, which could allow local users to conduct arbitrary port forwarding to other systems. | 2.1 |
| 2001-06-02 | CVE-2001-0155 | Unspecified vulnerability in VAN Dyke Technologies Vshell Format string vulnerability in VShell SSH gateway 1.0.1 and earlier allows remote attackers to execute arbitrary commands via a user name that contains format string specifiers. | 7.5 |
| 2001-06-02 | CVE-2001-0151 | Unspecified vulnerability in Microsoft Internet Information Services 5.0 IIS 5.0 allows remote attackers to cause a denial of service via a series of malformed WebDAV requests. | 5.0 |
| 2001-06-02 | CVE-2001-0149 | Unspecified vulnerability in Microsoft Internet Explorer Windows Scripting Host in Internet Explorer 5.5 and earlier allows remote attackers to read arbitrary files via the GetObject Javascript function and the htmlfile ActiveX object. | 5.0 |
| 2001-06-02 | CVE-2001-0148 | Unspecified vulnerability in Microsoft Windows Media Player 7 The WMP ActiveX Control in Windows Media Player 7 allows remote attackers to execute commands in Internet Explorer via javascript URLs, a variant of the "Frame Domain Verification" vulnerability. | 7.5 |
| 2001-06-02 | CVE-2001-0146 | Invalid URL Request DoS vulnerability in Microsoft IIS IIS 5.0 and Microsoft Exchange 2000 allow remote attackers to cause a denial of service (memory allocation error) by repeatedly sending a series of specially formatted URL's. | 5.0 |
| 2001-06-02 | CVE-2001-0001 | Unspecified vulnerability in Francisco Burzi PHP-Nuke 4.4 cookiedecode function in PHP-Nuke 4.4 allows users to bypass authentication and gain access to other user accounts by extracting the authentication information from a cookie. | 7.5 |
| 2001-05-30 | CVE-2001-0781 | Improper Access Control vulnerability in Pi-Soft Spoonftp 1.0.0.12 Buffer overflow in SpoonFTP 1.0.0.12 allows remote attackers to execute arbitrary code via a long argument to the commands (1) CWD or (2) LIST. | 7.5 |
| 2001-05-29 | CVE-2001-1326 | Unspecified vulnerability in Qualcomm Eudora 5.1 Eudora 5.1 allows remote attackers to execute arbitrary code when the "Use Microsoft Viewer" option is enabled and the "allow executables in HTML content" option is disabled, via an HTML email with a form that is activated from an image that the attacker spoofs as a link, which causes the user to execute the form and access embedded attachments. | 7.5 |