Search
14,626 CVEs · Low severity
CVEs (14,626, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 426–450 of 14,626 (capped at 500)
| CVE ID ↑ | Severity | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2001-1397 | LOW | Patched | 2.1 | 2001-04-17 | The System V (SYS5) shared memory implementation for Linux kernel before 2.2.19 could allow attackers to modify recently freed memory. |
| CVE-2001-1399 | LOW | Patched | 2.1 | 2001-04-17 | Certain operations in Linux kernel before 2.2.19 on the x86 architecture copy the wrong number of bytes, which might allow attackers to modify memory, aka "User access asm … |
| CVE-2001-1400 | LOW | Patched | 2.1 | 2001-04-17 | Unknown vulnerabilities in the UDP port allocation for Linux kernel before 2.2.19 could allow local users to cause a denial of service (deadlock). |
| CVE-2001-1405 | LOW | Patched | 2.1 | 2001-09-10 | Bugzilla before 2.14 does not restrict access to sanitycheck.cgi, which allows local users to cause a denial of service (CPU consumption) via a flood of requests to sanityc… |
| CVE-2001-1406 | LOW | Patched | 2.1 | 2001-09-10 | process_bug.cgi in Bugzilla before 2.14 does not set the "groupset" bit when a bug is moved between product groups, which will cause the bug to have the old group's restric… |
| CVE-2001-1409 | LOW | Patched | 3.6 | 2003-07-24 | dexconf in XFree86 Xserver 4.1.0-2 creates the /dev/dri directory with insecure permissions (666), which allows local users to replace or create files in the root file system. |
| CVE-2001-1412 | LOW | Patched | 2.1 | 2003-11-17 | nidump on MacOS X before 10.3 allows local users to read the encrypted passwords from the password file by specifying passwd as a command line argument. |
| CVE-2001-1439 | LOW | 2.1 | 2001-02-16 | Buffer overflow in the text editor functionality in HP-UX 10.01 through 11.04 on HP9000 Series 700 and Series 800 allows local users to cause a denial of service ("system a… | |
| CVE-2001-1450 | LOW | 2.6 | 2001-05-11 | Microsoft Internet Explorer 5.0 through 6.0 allows attackers to cause a denial of service (browser crash) via a crafted FTP URL such as "/.#./". | |
| CVE-2001-1479 | LOW | 2.1 | 2001-12-31 | smcboot in Sun SMC (Sun Management Center) 2.0 in Solaris 8 allows local users to delete arbitrary files via a symlink attack on /tmp/smc$SMC_PORT. | |
| CVE-2001-1497 | LOW | 2.1 | 2001-12-31 | Microsoft Internet Explorer 4.0 through 6.0 could allow local users to differentiate between alphanumeric and non-alphanumeric characters used in a password by pressing cer… | |
| CVE-2001-1503 | LOW | 2.1 | 2001-12-31 | The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g… | |
| CVE-2001-1517 | LOW | 2.1 | 2001-12-31 | RunAs (runas.exe) in Windows 2000 stores cleartext authentication information in memory, which could allow attackers to obtain usernames and passwords by executing a proces… | |
| CVE-2001-1518 | LOW | 2.1 | 2001-12-31 | RunAs (runas.exe) in Windows 2000 only creates one session instance at a time, which allows local users to cause a denial of service (RunAs hang) by creating a named pipe s… | |
| CVE-2001-1519 | LOW | 3.6 | 2001-12-31 | RunAs (runas.exe) in Windows 2000 allows local users to create a spoofed named pipe when the service is stopped, then capture cleartext usernames and passwords when clients… | |
| CVE-2001-1520 | LOW | 2.1 | 2001-12-31 | Xircom REX 6000 allows local users to obtain the 10 digit PIN by starting a serial monitor, connecting to the personal digital assistant (PDA) via Rextools, and capturing t… | |
| CVE-2001-1521 | LOW | 2.6 | 2001-12-31 | Cross-site scripting (XSS) vulnerability in user.php in PostNuke 0.64 allows remote attackers to inject arbitrary web script or HTML via the uname parameter. | |
| CVE-2001-1527 | LOW | 2.1 | 2001-12-31 | easyNews 1.5 and earlier stores administration passwords in cleartext in settings.php, which allows local users to obtain the passwords and gain access. | |
| CVE-2001-1534 | LOW | Patched | 2.1 | 2001-12-31 | mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's using predictable information including host IP address, system time and server process ID, which allow… |
| CVE-2001-1548 | LOW | 2.1 | 2001-12-31 | ZoneAlarm 2.1 through 2.6 and ZoneAlarm Pro 2.4 and 2.6 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters. | |
| CVE-2001-1549 | LOW | 2.1 | 2001-12-31 | Tiny Personal Firewall 1.0 and 2.0 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters. | |
| CVE-2001-1550 | LOW | 2.1 | 2001-12-31 | CentraOne 5.2 and Centra ASP with basic authentication enabled creates world-writable base64 encoded log files, which allows local users to obtain cleartext passwords from … | |
| CVE-2001-1551 | LOW | 2.1 | 2001-12-31 | Linux kernel 2.2.19 enables CAP_SYS_RESOURCE for setuid processes, which allows local users to exceed disk quota restrictions during execution of setuid programs. | |
| CVE-2001-1560 | LOW | 2.1 | 2001-12-31 | Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function af… | |
| CVE-2001-1564 | LOW | 2.1 | 2001-12-31 | setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropped, w… |