Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-08-31 | CVE-2001-0967 | Use of Password Hash With Insufficient Computational Effort vulnerability in Arkeia 4.2/4.2.82 Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing. | 9.8 |
| 2001-08-31 | CVE-2001-0966 | Unspecified vulnerability in Nudester.Org Nudester Directory traversal vulnerability in Nudester 1.10 and earlier allows remote attackers to read or write arbitrary files via a .. | 10.0 |
| 2001-08-23 | CVE-2001-1155 | Incorrect Authorization vulnerability in Freebsd 4.1.1/4.2/4.3 TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass intended access restrictions via DNS spoofing. | 9.8 |
| 2001-08-14 | CVE-2001-0629 | Buffer Errors vulnerability in HP Openview Network Node Manager 6.1 HP Event Correlation Service (ecsd) as included with OpenView Network Node Manager 6.1 allows a remote attacker to gain addition privileges via a buffer overflow attack in the '-restore_config' command line parameter. | 10.0 |
| 2001-08-14 | CVE-2001-0555 | Unspecified vulnerability in Screaming Media Siteware ScreamingMedia SITEWare versions 2.5 through 3.1 allows a remote attacker to read world-readable files via a .. | 10.0 |
| 2001-08-14 | CVE-2001-0554 | Classic Buffer Overflow vulnerability in multiple products Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function. | 10.0 |
| 2001-08-14 | CVE-2001-0538 | Unspecified vulnerability in Microsoft Outlook Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers to execute arbitrary commands via a malicious HTML e-mail message or web page. | 10.0 |
| 2001-08-14 | CVE-2001-0527 | Remote Admin Privilege Compromise vulnerability in Dcforum 2000 DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will create an extra entry in the registration database. | 10.0 |
| 2001-08-13 | CVE-2001-1113 | Buffer Overflow vulnerability in TrollFTPD Buffer overflow in TrollFTPD 1.26 and earlier allows local users to execute arbitrary code by creating a series of deeply nested directories with long names, then running the ls -R (recursive) command. | 10.0 |
| 2001-08-07 | CVE-2001-1260 | Denial-Of-Service vulnerability in Argent Office Avaya Argent Office uses weak encryption (trivial encoding) for passwords, which allows remote attackers to gain administrator privileges by sniffing and decrypting the sniffing the passwords during a system reboot. | 10.0 |