Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-06-18 | CVE-2001-0402 | IPFilter 3.4.16 and earlier does not include sufficient session information in its cache, which allows remote attackers to bypass access restrictions by sending fragmented packets to a restricted port after sending unfragmented packets to an unrestricted port. | 7.5 |
| 2001-06-18 | CVE-2001-0401 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable. | 7.2 |
| 2001-06-18 | CVE-2001-0398 | Unspecified vulnerability in Ritlabs the BAT The BAT! mail client allows remote attackers to bypass user warnings of an executable attachment and execute arbitrary commands via an attachment whose file name contains many spaces, which also causes the BAT! to misrepresent the attachment's type with a different icon. | 7.5 |
| 2001-06-18 | CVE-2001-0397 | Denial-Of-Service vulnerability in Silent Runner Silent Runner Collector SRC 1.6.1 Buffer overflow in Silent Runner Collector (SRC) 1.6.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long SMTP HELO command. | 7.5 |
| 2001-06-18 | CVE-2001-0382 | Unspecified vulnerability in Broadcom CCC Harvest 5.0 Computer Associates CCC\Harvest 5.0 for Windows NT/2000 uses weak encryption for passwords, which allows a remote attacker to gain privileges on the application. | 7.5 |
| 2001-06-18 | CVE-2001-0376 | Remote Security vulnerability in Tele2 SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 firmware using IPSEC with IKE pre-shared keys do not allow for the use of full 128 byte IKE pre-shared keys, which is the intended design of the IKE pre-shared key, and only support 48 byte keys. | 7.5 |
| 2001-06-18 | CVE-2001-0374 | Security Bypass vulnerability in Web-Enabled Management The HTTP server in Compaq web-enabled management software for (1) Foundation Agents, (2) Survey, (3) Power Manager, (4) Availability Agents, (5) Intelligent Cluster Administrator, and (6) Insight Manager can be used as a generic proxy server, which allows remote attackers to bypass access restrictions via the management port, 2301. | 7.5 |
| 2001-06-18 | CVE-2001-0263 | Unspecified vulnerability in Gene6 G6 FTP Server 2.0 Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows attackers to read file attributes outside of the web root via the (1) SIZE and (2) MDTM commands when the "show relative paths" option is not enabled. | 7.5 |
| 2001-06-12 | CVE-2001-1344 | Authentication Bypass vulnerability in Cgicentral Webstore 400 and Webstore 400Cs WSSecurity.pl in WebStore allows remote attackers to bypass authentication by providing the program with a filename that exists, which is made easier by (1) inserting a null character or (2) .. | 7.5 |
| 2001-06-12 | CVE-2001-1343 | Unspecified vulnerability in Cgicentral Webstore 400 and Webstore 400Cs ws_mail.cgi in WebStore 400/400CS 4.14 allows remote authenticated WebStore administrators to execute arbitrary code via shell metacharacters in the kill parameter. | 7.5 |