LiveActive security incident?Get immediate response
CVE archive

May 2001

Browse CVE records published in May 2001, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 315 matching CVEs · Page 2 of 7.

Unknown · CVSS Not scored

CVE-2001-1244: Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU e...

Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.

Published May 3, 2002 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2001-1243: Scripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers to cau...

Scripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers to cause a denial of service (crash) via (1) creating an ASP program that uses Scripting.FileSystemObject to open a file with an MS-DOS device name, or (2) remotely injecting the device name into ASP programs that internally use Scripting.FileSystemObject.

Published May 3, 2002 · Updated Aug 8, 2024