Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2001-10-25 | CVE-2001-0923 | Unspecified vulnerability in Redhat Package Manager 4.0.271/4.0.272 RPM Package Manager 4.0.x through 4.0.2.x allows an attacker to execute arbitrary code via corrupted data in the RPM file when the file is queried. | 7.2 |
2001-10-24 | CVE-2001-1462 | Information Disclosure vulnerability in RSA Securid 5.0 WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, which may allow attackers to obtain sensitive information. | 7.5 |
2001-10-22 | CVE-2001-1461 | Directory Traversal vulnerability in RSA Securid 5.0 Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to access restricted resources via URL-encoded (1) /.. | 7.5 |
2001-10-18 | CVE-2001-1384 | Unspecified vulnerability in Linux Kernel ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp. | 7.2 |
2001-10-18 | CVE-2001-1380 | Unspecified vulnerability in Openbsd Openssh OpenSSH before 2.9.9, while using keypairs and multiple keys of different types in the ~/.ssh/authorized_keys2 file, may not properly handle the "from" option associated with a key, which could allow remote attackers to login from unauthorized IP addresses. | 7.5 |
2001-10-18 | CVE-2001-0795 | Improper Handling of Case Sensitivity vulnerability in Cmfperception Liteserve 1.25 Perception LiteServe 1.25 allows remote attackers to obtain source code of CGI scripts via URLs that contain MS-DOS conventions such as (1) upper case letters or (2) 8.3 file names. | 7.5 |
2001-10-18 | CVE-2001-0792 | Remote Security vulnerability in Xchat 1.2.X Format string vulnerability in XChat 1.2.x allows remote attackers to execute arbitrary code via a malformed nickname. | 7.5 |
2001-10-18 | CVE-2001-0782 | Local Security vulnerability in Ktv KDE ktvision 0.1.1-271 and earlier allows local attackers to gain root privileges via a symlink attack on a user configuration file. | 7.2 |
2001-10-18 | CVE-2001-0775 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in Linux allows remote attackers to execute arbitrary code via a FACES format image containing a long (1) Firstname or (2) Lastname field. | 7.5 |
2001-10-18 | CVE-2001-0771 | Permissions, Privileges, and Access Controls vulnerability in Spytech-Web Spyanywhere 1.50 Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator access via a single character in the "loginpass" field. | 7.5 |