National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Keyword (text search): PHP
  • Search Type: Search All
  • Contains Software Flaws (CVE)
There are 26,391 matching records.
Displaying matches 26081 through 26100.
Vuln ID Summary CVSS Severity
CVE-2001-1262

Avaya Argent Office 2.1 compares a user-provided SNMP community string with the correct string only up to the length of the user-provided string, which allows remote attackers to bypass authentication with a 0 length community string.

Published: August 07, 2001; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-2001-1301

rcs2log, as used in Emacs 20.4, xemacs 21.1.10 and other versions before 21.4, and possibly other packages, allows local users to modify files of other users via a symlink attack on a temporary file.

Published: August 07, 2001; 12:00:00 AM -04:00
V2: 1.2 LOW
CVE-2001-1356

NetWin SurgeFTP 2.0f and earlier encrypts passwords using weak hashing, a fixed salt value and modulo 40 calculations, which allows remote attackers to conduct brute force password guessing attacks against the administrator account on port 7021.

Published: August 04, 2001; 12:00:00 AM -04:00
V2: 10.0 HIGH
CVE-2001-1304

Buffer overflow in SHOUTcast Server 1.8.2 allows remote attackers to cause a denial of service (crash) via several HTTP requests with a long (1) user-agent or (2) host HTTP header.

Published: August 03, 2001; 12:00:00 AM -04:00
V2: 5.0 MEDIUM
CVE-2001-1472

SQL injection vulnerability in prefs.php in phpBB 1.4.0 and 1.4.1 allows remote authenticated users to execute arbitrary SQL commands and gain administrative access via the viewemail parameter.

Published: August 03, 2001; 12:00:00 AM -04:00
V2: 4.6 MEDIUM
CVE-2001-1060

phpMyAdmin 2.2.0rc3 and earlier allows remote attackers to execute arbitrary commands by inserting them into (1) the strCopyTableOK argument in tbl_copy.php, or (2) the strRenameTableOK argument in tbl_rename.php.

Published: July 31, 2001; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-2001-1471

prefs.php in phpBB 1.4.0 and earlier allows remote authenticated users to execute arbitrary PHP code via an invalid language value, which prevents the variables (1) $l_statsblock in prefs.php or (2) $l_privnotify in auth.php from being properly initialized, which can be modified by the user and later used in an eval statement.

Published: July 31, 2001; 12:00:00 AM -04:00
V2: 4.6 MEDIUM
CVE-2001-1056

IRC DCC helper in the ip_masq_irc IP masquerading module 2.2 allows remote attackers to bypass intended firewall restrictions by causing the target system to send a "DCC SEND" request to a malicious server which listens on port 6667, which may cause the module to believe that the traffic is a valid request and allow the connection to the port specified in the DCC SEND request.

Published: July 30, 2001; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-2001-1011

index2.php in Mambo Site Server 3.0.0 through 3.0.5 allows remote attackers to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator information in other parameters.

Published: July 25, 2001; 12:00:00 AM -04:00
V2: 10.0 HIGH
CVE-2001-0353

Buffer overflow in the line printer daemon (in.lpd) for Solaris 8 and earlier allows local and remote attackers to gain root privileges via a "transfer job" routine.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 10.0 HIGH
CVE-2001-0497

dnskeygen in BIND 8.2.4 and earlier, and dnssec-keygen in BIND 9.1.2 and earlier, set insecure permissions for a HMAC-MD5 shared secret key file used for DNS Transactional Signatures (TSIG), which allows attackers to obtain the keys and perform dynamic DNS updates.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 4.6 MEDIUM
CVE-2001-0500

Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 10.0 HIGH
CVE-2001-0503

Microsoft NetMeeting 3.01 with Remote Desktop Sharing enabled allows remote attackers to cause a denial of service via a malformed string to the NetMeeting service port, aka a variant of the "NetMeeting Desktop Sharing" vulnerability.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 5.0 MEDIUM
CVE-2001-0513

Oracle listener process on Windows NT redirects connection requests to another port and creates a separate thread to process the request, which allows remote attackers to cause a denial of service by repeatedly connecting to the Oracle listener but not connecting to the redirected port.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 5.0 MEDIUM
CVE-2001-0514

SNMP service in Atmel 802.11b VNET-B Access Point 1.3 and earlier, as used in Netgear ME102 and Linksys WAP11, accepts arbitrary community strings with requested MIB modifications, which allows remote attackers to obtain sensitive information such as WEP keys, cause a denial of service, or gain access to the network.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-2001-0515

Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 5.0 MEDIUM
CVE-2001-0516

Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 5.0 MEDIUM
CVE-2001-0517

Oracle listener in Oracle 8i on Solaris allows remote attackers to cause a denial of service via a malformed connection packet with a maximum transport data size that is set to 0.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 5.0 MEDIUM
CVE-2001-0518

Oracle listener before Oracle 9i allows attackers to cause a denial of service by repeatedly sending the first portion of a fragmented Oracle command without sending the remainder of the command, which causes the listener to hang.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 5.0 MEDIUM
CVE-2001-0534

Multiple buffer overflows in RADIUS daemon radiusd in (1) Merit 3.6b and (2) Lucent 2.1-2 RADIUS allow remote attackers to cause a denial of service or execute arbitrary commands.

Published: July 21, 2001; 12:00:00 AM -04:00
V2: 10.0 HIGH