CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2001-0886
https://notcve.org/view.php?id=CVE-2001-0886
21 Dec 2001 — Buffer overflow in glob function of glibc allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a glob pattern that ends in a brace "{" character. Desbordamiento de buffer en la función glob de glibc para Red Hat Linux 6.2 a 7.2, y otros sistemas operativos, permite a atacantes causar una denegación de servicio (caída) y posiblemente ejecutar código arbitrarios mediante un patrón de glob que acaba en una llave "{" • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000447 •
CVSS: 7.5EPSS: 2%CPEs: 12EXPL: 0CVE-2001-0834
https://notcve.org/view.php?id=CVE-2001-0834
06 Dec 2001 — htsearch CGI program in htdig (ht://Dig) 3.1.5 and earlier allows remote attackers to use the -c option to specify an alternate configuration file, which could be used to (1) cause a denial of service (CPU consumption) by specifying a large file such as /dev/zero, or (2) read arbitrary files by uploading an alternate configuration file that specifies the target file. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000429 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2001-0787 – LPRng 3.6.x - Failure To Drop Supplementary Groups
https://notcve.org/view.php?id=CVE-2001-0787
18 Oct 2001 — LPRng in Red Hat Linux 7.0 and 7.1 does not properly drop memberships in supplemental groups when lowering privileges, which could allow a local user to elevate privileges. LPRng en Red Hat Linux 7.0 y 7.1 no libera miembros en grupos suplementarios cuando se bajan los privilegios, lo que podría permitir a un usuario local elevar sus privilegios. • https://www.exploit-db.com/exploits/20923 •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 1CVE-2001-0736 – University of Washington Pico 3.x/4.x - File Overwrite
https://notcve.org/view.php?id=CVE-2001-0736
12 Oct 2001 — Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack. • https://www.exploit-db.com/exploits/20493 •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 2CVE-2001-0641 – Immunix OS 6.2/7.0 / RedHat 5.2/6.2/7.0 / SuSE Linux 6.x/7.0/7.1 - 'Man -S' Heap Overflow
https://notcve.org/view.php?id=CVE-2001-0641
20 Sep 2001 — Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option. • https://www.exploit-db.com/exploits/20843 •
CVSS: 5.3EPSS: 71%CPEs: 1EXPL: 3CVE-2001-1013 – RedHat Linux 7.0 Apache - Remote Username Enumeration
https://notcve.org/view.php?id=CVE-2001-1013
12 Sep 2001 — Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, which could allow remote attackers to determine valid usernames on the server. Apache with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, which could allow remote attackers to determine valid usernames o... • https://packetstorm.news/files/id/181036 •
CVSS: 9.8EPSS: 4%CPEs: 3EXPL: 1CVE-2001-1002 – RedHat 6.2/7.0/7.1 Lpd - Remote Command Execution via DVI Printfilter Configuration Error
https://notcve.org/view.php?id=CVE-2001-1002
31 Aug 2001 — The default configuration of the DVI print filter (dvips) in Red Hat Linux 7.0 and earlier does not run dvips in secure mode when dvips is executed by lpd, which could allow remote attackers to gain privileges by printing a DVI file that contains malicious commands. • https://www.exploit-db.com/exploits/21095 •
CVSS: 7.8EPSS: 0%CPEs: 40EXPL: 0CVE-2001-1374
https://notcve.org/view.php?id=CVE-2001-1374
19 Jul 2001 — expect before 5.32 searches for its libraries in /var/tmp before other directories, which could allow local users to gain root privileges via a Trojan horse library that is accessed by mkpasswd. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000409 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2001-1375
https://notcve.org/view.php?id=CVE-2001-1375
19 Jul 2001 — tcl/tk package (tcltk) 8.3.1 searches for its libraries in the current working directory before other directories, which could allow local users to execute arbitrary code via a Trojan horse library that is under a user-controlled directory. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000409 •
CVSS: 9.1EPSS: 0%CPEs: 15EXPL: 0CVE-2001-1030
https://notcve.org/view.php?id=CVE-2001-1030
18 Jul 2001 — Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning. • http://archives.neohapsis.com/archives/bugtraq/2001-07/0362.html •