Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-12-31 | CVE-2001-1500 | Unspecified vulnerability in Proftpd Project Proftpd ProFTPD 1.2.2rc2, and possibly other versions, does not properly verify reverse-resolved hostnames by performing forward resolution, which allows remote attackers to bypass ACLs or cause an incorrect client hostname to be logged. | 7.5 |
| 2001-12-31 | CVE-2001-1498 | Buffer Overflow vulnerability in Markus Kliegl MOD BF 0.2 Buffer overflow in mod_bf 0.2 allows local users to execute arbitrary commands via a long script. | 7.2 |
| 2001-12-31 | CVE-2001-1495 | Remote Command Execution vulnerability in Network Query Tool network_query.php in Network Query Tool 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the target parameter. | 7.5 |
| 2001-12-31 | CVE-2001-1484 | Remote Security vulnerability in Adsl Modem 1000 Alcatel ADSL modems allow remote attackers to access the Trivial File Transfer Protocol (TFTP) to modify firmware and configuration via a bounce attack from a system on the local area network (LAN) side, which is allowed to access TFTP without authentication. | 7.5 |
| 2001-12-31 | CVE-2001-1482 | Remote SQL Query Manipulation vulnerability in PHPbb Group PHPbb 1.4.2 SQL injection vulnerability in bb_memberlist.php for phpBB 1.4.2 allows remote attackers to execute arbitrary SQL queries via the $sortby variable. | 7.5 |
| 2001-12-31 | CVE-2001-1480 | Java Runtime Environment (JRE) and SDK 1.2 through 1.3.0_04 allows untrusted applets to access the system clipboard. | 7.5 |
| 2001-12-31 | CVE-2001-1478 | Buffer Overflow vulnerability in Caldera Openunix and Unixware Buffer overflow in xlock in UnixWare 7.1.0 and 7.1.1 and Open Unix 8.0.0 allows local users to execute arbitrary code. | 7.2 |
| 2001-12-31 | CVE-2001-1211 | Privilege Escalation vulnerability in Ipswitch IMail Domain Administration Ipswitch IMail 7.0.4 and earlier allows attackers with administrator privileges to read and modify user alias and mailing list information for other domains hosted by the same server via the (1) aliasadmin or (2) listadm1 CGI programs, which do not properly verify that an administrator is the administrator for the target domain. | 7.5 |
| 2001-12-31 | CVE-2001-1208 | Remote Security vulnerability in DayDream BBS Format string vulnerability in DayDream BBS allows remote attackers to execute arbitrary code via format string specifiers in a file containing a ~#RA control code. | 7.5 |
| 2001-12-30 | CVE-2001-1466 | Remote Security vulnerability in SecureCRT Buffer overflow in VanDyke SecureCRT before 3.4.2, when using the SSH-1 protocol, allows remote attackers to execute arbitrary code via a long (1) username or (2) password. | 7.5 |