Unrated severityNVD Advisory· Published Jun 27, 2001· Updated Apr 16, 2026

CVE-2001-0476

Description

Multiple buffer overflows in s.cgi program in Aspseek search engine 1.03 and earlier allow remote attackers to execute arbitrary commands via (1) a long HTTP query string, or (2) a long tmpl parameter.

Affected products

Swsoft/Aspseek2 versions
cpe:2.3:a:swsoft:aspseek:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:swsoft:aspseek:*:*:*:*:*:*:*:*range: <=1.0.3
- cpe:2.3:a:swsoft:aspseek:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.aspseek.org/changes.htmlnvdPatch
archives.neohapsis.com/archives/bugtraq/2001-03/0233.htmlnvdExploitVendor Advisory
www.securityfocus.com/bid/2492nvdExploitVendor Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/6248nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000