CVE-2001-0136 – ProFTPd 1.2.0 pre10 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2001-0136
Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed. • https://www.exploit-db.com/exploits/244 https://www.exploit-db.com/exploits/241 https://www.exploit-db.com/exploits/20536 http://archives.neohapsis.com/archives/bugtraq/2001-01/0122.html http://archives.neohapsis.com/archives/bugtraq/2001-01/0132.html http://archives.neohapsis.com/archives/bugtraq/2001-02/0267.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000380 http://www.debian.org/security/2001/dsa-029 http://www.linux-mandrake.com/en/security/2001 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVE-2001-0925 – Apache 1.3 - Artificially Long Slash Path Directory Listing
https://notcve.org/view.php?id=CVE-2001-0925
The default installation of Apache before 1.3.19 allows remote attackers to list directories instead of the multiview index.html file via an HTTP request for a path that contains many / (slash) characters, which causes the path to be mishandled by (1) mod_negotiation, (2) mod_dir, or (3) mod_autoindex. • https://www.exploit-db.com/exploits/20692 https://www.exploit-db.com/exploits/20693 https://www.exploit-db.com/exploits/20694 https://www.exploit-db.com/exploits/20695 http://www.apacheweek.com/features/security-13 http://www.debian.org/security/2001/dsa-067 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-077.php3 http://www.linuxsecurity.com/advisories/other_advisory-1452.html http://www.securityfocus.com/archive/1/168497 http://www.securityfocus.com/archive • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVE-2001-0131
https://notcve.org/view.php?id=CVE-2001-0131
htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink attack. • http://marc.info/?l=bugtraq&m=97916374410647&w=2 http://www.debian.org/security/2001/dsa-021 http://www.securityfocus.com/bid/2182 https://exchange.xforce.ibmcloud.com/vulnerabilities/5926 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVE-2001-0112 – splitvt < 1.6.5 - Local Overflow
https://notcve.org/view.php?id=CVE-2001-0112
Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary commands. • https://www.exploit-db.com/exploits/260 http://marc.info/?l=bugtraq&m=97958269320974&w=2 http://www.debian.org/security/2001/dsa-014 http://www.securityfocus.com/bid/2210 •
CVE-2001-0069
https://notcve.org/view.php?id=CVE-2001-0069
dialog before 0.9a-20000118-3bis in Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack. • http://www.debian.org/security/2000/20001225 http://www.securityfocus.com/bid/2151 https://exchange.xforce.ibmcloud.com/vulnerabilities/5809 •