CVE-2001-1427

Unknown vulnerability in ColdFusion Server 2.0 through 4.5.1 SP2 allows remote attackers to overwrite templates with zero byte files via unknown attack vectors.

Publication date: Wed, 11 Jul 2001 09:00:00 +0000

Cyber News related to CVE-2001-1427

CVE-2021-47146 - In the Linux kernel, the following vulnerability has been resolved: ...
3 months ago

CVE-2001-1427 - Unknown vulnerability in ColdFusion Server 2.0 through 4.5.1 SP2 allows remote attackers to overwrite templates with zero byte files via unknown attack vectors. ...
6 years ago

CVE-2001-1492 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2001-1460. Reason: This candidate is a refinement duplicate of CVE-2001-1460. Notes: All CVE users should reference CVE-2001-1460 instead of this candidate. All references and ...
54 years ago Tenable.com

CVE-2001-1121 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2001-1084. Reason: This candidate is a duplicate of CVE-2001-1084. Notes: All CVE users should reference CVE-2001-1084 instead of this candidate. All references and descriptions in ...
54 years ago Tenable.com

CVE-2001-1167 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2001-0976. Reason: This candidate is a duplicate of CVE-2001-0976. Notes: CVE-2001-0976 should be used instead of this candidate. All references and descriptions in this candidate ...
54 years ago Tenable.com

CVE-2020-1428 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
2 years ago

CVE-2020-1373 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
2 years ago

CVE-2020-1390 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
2 years ago

CVE-2020-1438 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
2 years ago

CVE-2020-1427 - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from ...
2 years ago

CVE-2019-1428 - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1426, ...
3 years ago

CVE-2019-1427 - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1426, ...
3 years ago

CVE-2019-1429 - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1426, CVE-2019-1427, ...
3 years ago

CVE-2019-1426 - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1427, ...
3 years ago

CVE-2010-3930 - Directory traversal vulnerability in MODx Evolution 1.0.4 and earlier allows remote attackers to read arbitrary files via unspecified vectors related to AjaxSearch, a different vulnerability than CVE-2010-1427. ...
13 years ago

CVE-1999-1427 - Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges. ...
15 years ago

CVE-2002-1427 - The print_html_to_file function in edit.cgi for Easy Homepage Creator 1.0 does not check user credentials, which allows remote attackers to modify home pages of other users. ...
15 years ago

CVE-2016-1427 - The System Configuration Protocol (SCP) core messaging interface in Cisco Prime Network Registrar 8.2 before 8.2.3.1 and 8.3 before 8.3.2 allows remote attackers to obtain sensitive information via crafted SCP messages, aka Bug ID CSCuv35694. ...
7 years ago

CVE-2004-1427 - PHP remote file inclusion vulnerability in main.inc in KorWeblog 1.6.2-cvs and earlier allows remote attackers to execute arbitrary PHP code by modifying the G_PATH parameter to reference a URL on a remote web server that contains the code, as ...
6 years ago

CVE-2005-1427 - Uapplication Uphotogallery stores the database under the web document root, which allows remote attackers to obtain sensitive information via a direct request to uphotogallery.mdb. ...
6 years ago

CVE-2006-1427 - Multiple cross-site scripting (XSS) vulnerabilities in WebAPP 0.9.9.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) action, (2) id, (3) num, (4) board, (5) cat, (6) real, (7) viewcat, (8) img, or (9) ...
6 years ago

CVE-2003-1427 - Directory traversal vulnerability in the web configuration interface in Netgear FM114P 1.4 allows remote attackers to read arbitrary files, such as the netgear.cfg configuration file, via a hex-encoded (%2e%2e%2f) ../ (dot dot slash) in the port ...
6 years ago

CVE-2010-1427 - Cross-site scripting (XSS) vulnerability in the SearchHighlight plugin in MODx Evolution before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to AjaxSearch. ...
6 years ago

CVE-2012-1427 - The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Norman Antivirus 6.06.12, and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a POSIX TAR file with a \57\69\6E\5A\69\70 character sequence at a certain ...
6 years ago

CVE-2013-1427 - The configuration file for the FastCGI PHP support for lighttpd before 1.4.28 on Debian GNU/Linux creates a socket file with a predictable name in /tmp, which allows local users to hijack the PHP control socket and perform unauthorized actions such ...
6 years ago

Latest Cyber News

CVE-2024-40605 - 8 hours ago
CVE-2024-40604 - 8 hours ago
CVE-2024-40603 - 8 hours ago
CVE-2024-40602 - 8 hours ago
CVE-2024-40601 - 8 hours ago
CVE-2024-40600 - 8 hours ago
CVE-2024-40599 - 8 hours ago
CVE-2024-40598 - 8 hours ago
CVE-2024-40596 - 8 hours ago
CVE-2024-40597 - 8 hours ago
CVE-2024-6095 - 14 hours ago
CVE-2024-37554 - 15 hours ago
CVE-2024-37553 - 16 hours ago
CVE-2024-37547 - 17 hours ago
CVE-2024-37546 - 17 hours ago
CVE-2024-37542 - 19 hours ago
CVE-2024-37541 - 19 hours ago
CVE-2024-37539 - 19 hours ago
CVE-2024-39486 - 22 hours ago
CVE-2024-37260 - 22 hours ago

Cyber Trends (last 7 days)

Okta - 7 months ago
23andMe - 7 months ago
Kimsuky - 7 months ago
LogoFAIL - 6 months ago
Gh0st rat - 7 months ago

Trending Cyber News (last 7 days)

CVE-2024-40605 - 8 hours ago
CVE-2024-40604 - 8 hours ago
CVE-2024-40603 - 8 hours ago
CVE-2024-40602 - 8 hours ago
CVE-2024-40601 - 8 hours ago
CVE-2024-40600 - 8 hours ago
CVE-2024-40599 - 8 hours ago
CVE-2024-40598 - 8 hours ago
CVE-2024-40596 - 8 hours ago
CVE-2024-40597 - 8 hours ago
CVE-2024-6095 - 14 hours ago
CVE-2024-37553 - 16 hours ago
CVE-2024-37554 - 15 hours ago
CVE-2024-37547 - 17 hours ago
CVE-2024-37546 - 17 hours ago
CVE-2024-37542 - 19 hours ago
CVE-2024-37541 - 19 hours ago
CVE-2024-37539 - 19 hours ago
CVE-2024-39486 - 22 hours ago
CVE-2024-37260 - 22 hours ago