| OSVDB ID | Disclosure Date | Title |
|---|
|
83383
Description:
Red Hat and Slackware Linux is prone to an overflow condition. This issue is triggered when klogd fails to properly sanitize user-supplied input resulting in a buffer overflow. When handling kernel messages, a local attacker can potentially cause a denial of service and gain escalated privileges.
|
1999-02-26
|
Multiple Linux klogd Local Overflow Privilege Escalation
|
|
5888
Description:
A local overflow exists in Debian Supper. The Debian fails to a uncheck buffer when a syslog option is enabled resulting in a steak overflow. With a specially crafted request, an attacker can gain root privilage resulting in a loss of confidentiality, integrity, and/or availability.
|
1999-02-25
|
super Syslog Utility Local Overflow
|
|
980
Description:
(Description Provided by CVE) : Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server.
|
1999-02-25
|
Cobalt RaQ .bash_history Remote Disclosure
|
|
1018
Description:
(Description Provided by CVE) : SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service (RAS) is enabled by setting a user's Finger File to point to the target file, then running finger on the user.
|
1999-02-25
|
SLMail RAS NTFS Permission Bypass
|
|
6129
Description:
OpenBSD contains a flaw that may allow a local denial of service. The issue is triggered due to a flaw in the FFS and EXT2FS link(2) library function when an unbounded increment is made on the nlink value, which may allow a malicious user to crash the system.
|
1999-02-25
|
OpenBSD FFS and EXT2FS Filesystems nlink DoS
|
|
59260
Description:
(Description Provided by CVE) : Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries.
|
1999-02-25
|
Microsoft Windows NT SNMP Agent Query Saturation Remote DoS
|
|
9603
Description:
(Description Provided by CVE) : Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privileges.
|
1999-02-24
|
HP-UX HP DCE/9000 Camera Component Local Privilege Escalation
|
|
6130
Description:
A local overflow exists in OpenBSD. The ping command fails to handle oversized ICMP packets resulting in a buffer overflow. With a specially crafted request, an attacker could cause unauthorized access resulting in a loss of confidentiality and/or integrity. No further details have been provided.
|
1999-02-23
|
OpenBSD ping Local Overflow
|
|
13583
Description:
(Description Provided by CVE) : Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command.
|
1999-02-23
|
NcFTPd FTP Server Long PORT Command DoS
|
|
83382
Description:
WinGate contains a flaw that allows an attacker to traverse outside of a restricted path. The issue is due to the log service not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../). This directory traversal attack would allow the attacker to gain access to arbitrary files.
|
1999-02-22
|
WinGate Log Service Traversal Arbitrary File Access
|
|
1019
Description:
(Description Provided by CVE) : Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting.
|
1999-02-22
|
Microsoft Taskpads Feature Arbitrary Script Injection
|
|
11488
Description:
(Description Provided by CVE) : Process table attack in Unix systems allows a remote attacker to perform a denial of service by filling a machine's process tables through multiple connections to network services.
|
1999-02-22
|
Unix Network Process Table DoS
|
|
6167
Description:
InterScan VirusWall for Solaris / HP-UX contains a flaw that may allow viruses to be downloaded via the Web without being scanned. This issue is triggered when the software is passed an HTTP request containing two GET statements.
|
1999-02-21
|
Trend Micro InterScan VirusWall Double GET Scan Bypass
|
|
7673
Description:
Unknown / Incomplete
|
1999-02-21
|
ht://Dig (htdig) Dot Slash Config File Issue
|
|
10083
Description:
(Description Provided by CVE) : ARCserve NT agents use weak encryption (XOR) for passwords, which allows remote attackers to sniff the authentication request to port 6050 and decrypt the password.
|
1999-02-21
|
CA ARCserve NT Agents Weak Password Encryption
|
|
7906
Description:
(Description Provided by CVE) : Internet Explorer 4 allows remote attackers (malicious web site operators) to read the contents of the clipboard via the Internet WebBrowser ActiveX object.
|
1999-02-20
|
Microsoft IE WebBrowser ActiveX Object Clipboard Content Disclosure
|
|
3149
Description:
Internet Security Systems' Internet Security Scanner contains a flaw that allows a local attacker to cause a denial of service, truncate arbitrary files and potentially gain elevated priveleges. The issue is due to the installation script and calls to the /tmp directory, which are not properly checked. If an attacker is aware of an administrator's plans to install ISS on a system, they can prepare their own custom files in the /tmp directory to exploit these conditions.
|
1999-02-20
|
ISS Security Scanner Installer Temporary File Symlink
|
|
11426
Description:
(Description Provided by CVE) : wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself.
|
1999-02-20
|
GNU wget symlink Target Permission Modification
|
|
5933
Description:
A local overflow exists in Digital NetWorker. The nsralist program fails to perform proper boundary checking resulting in a buffer overflow. With a specially crafted request, a malicious user could gain root privileges, resulting in a loss of integrity.
|
1999-02-19
|
Digital Unix NetWorker nsralist Local Overflow
|
|
1020
Description:
(Description Provided by CVE) : In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension.
|
1999-02-19
|
Microsoft IIS ISAPI GetExtensionVersion() Privilege Escalation
|
|
7558
Description:
OpenBSD contains a flaw related to the ipintr() function in its IP ipq handling that may allow an attacker to cause a remote denial of service. No further details have been provided.
|
1999-02-19
|
OpenBSD ipq ipintr() Remote DoS
|
|
9897
Description:
(Description Provided by CVE) : Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords and gain privileges.
|
1999-02-19
|
Kabsoftware Lydia Utility lydia.ini Weak Encryption
|
|
11224
Description:
(Description Provided by CVE) : SVGAlib zgv 3.0-7 and earlier allows local users to gain root access via a privilege leak of the iopl(3) privileges to child processes.
|
1999-02-19
|
SVGAlib zgv iopl Leak Privilege Escalation
|
|
12976
Description:
(Description Provided by CVE) : Hyperseek allows remote attackers to modify the hyperseek configuration by directly calling the admin.cgi program with an edit_file action parameter.
|
1999-02-19
|
Hyperseek admin.cgi Unauthorized Configuration Modification
|
|
13505
Description:
(Description Provided by CVE) : Triactive Remote Manager with Basic authentication enabled stores the username and password in cleartext in registry keys, which could allow local users to gain privileges.
|
1999-02-19
|
Triactive Remote Manager Basic Authentication Registry Cleartext Password Disclosure
|
|
946
Description:
(Description Provided by CVE) : Local users in Windows NT can obtain administrator privileges by changing the KnownDLLs list to reference malicious programs.
|
1999-02-18
|
Windows NT KnownDLLs Modification Privilege Escalation
|
|
5919
Description:
(Description Provided by CVE) : Buffer overflow in Linux autofs module through long directory names allows local users to perform a denial of service.
|
1999-02-18
|
Linux autofs Directory Name DoS
|
|
8047
Description:
(Description Provided by CVE) : Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.
|
1999-02-18
|
Debian eterm Unspecified Local Privilege Escalation
|
|
13540
Description:
(Description Provided by CVE) : xtvscreen in SuSE Linux 6.0 allows local users to overwrite arbitrary files via a symlink attack on the pic000.pnm file.
|
1999-02-18
|
SuSE Linux xtvscreen pic000.pnm Symlink Arbitrary File Overwrite
|
|
9833
Description:
A remote overflow exists in Tetrix TetriNet. The daemon fails to perform proper bounds checking resulting in a buffer overflow. By connecting to port 31457 with a hostname containing 122 characters or more, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.
|
1999-02-17
|
Tetrix TetriNet Long DNS Hostname Remote Overflow
|
|
3163
Description:
A local overflow exists in lsof (LiSt Open Files). Details on the function and exploitation were not provided. If exploited, root privileges could be gained.
|
1999-02-17
|
lsof Unspecified Local Overflow
|
|
7572
Description:
(Description Provided by CVE) : A race condition between the select() and accept() calls in NetBSD TCP servers allows remote attackers to cause a denial of service.
|
1999-02-17
|
Multiple BSD select() / accept() Race Local DoS
|
|
8017
Description:
(Description Provided by CVE) : snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a.
|
1999-02-17
|
IBM AIX snap /tmp/ibmsupt Shadowed Password File Disclosure
|
|
7539
Description:
OpenBSD contains a flaw that may allow a remote denial of service. The issue is triggered when a malicious user sends specially crafted, fragmented IP packets to a victim system, and will result in loss of availability for the platform.
|
1999-02-17
|
OpenBSD IP Fragment Assembly DoS
|
|
11489
Description:
(Description Provided by CVE) : Buffer overflow in webd in Network Flight Recorder (NFR) 2.0.2-Research allows remote attackers to execute commands.
|
1999-02-16
|
Network Flight Recorder (NFR) webd Overflow
|
|
12962
Description:
WebSite Pro contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is triggered due to the 'args.cmd' script not properly sanitizing user-supplied input. It is possible that the flaw may allow a remote attacker to execute arbitrary commands resulting in a loss of integrity.
|
1999-02-16
|
O'Reilly WebSite Pro args.cmd Arbitrary Command Execution
|
|
12963
Description:
WebSite Pro contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is triggered due to the 'args.bat' script not properly sanitizing user-supplied input. It is possible that the flaw may allow a remote attacker to execute arbitrary commands resulting in a loss of integrity.
|
1999-02-16
|
O'Reilly WebSite Pro args.bat Arbitrary Command Execution
|
|
969
Description:
(Description Provided by CVE) : Debian GNU/Linux cfengine package is susceptible to a symlink attack.
|
1999-02-15
|
Cfengine on Debian Linux Tidy Action Insecure Temporary File Handling
|
|
982
Description:
(Description Provided by CVE) : Buffer overflow in the "Super" utility in Debian GNU/Linux, and other operating systems, allows local users to execute commands as root.
|
1999-02-15
|
Debian super Local Overflow
|
|
7407
Description:
(Description Provided by CVE) : Vulnerability in Compaq Tru64 UNIX edauth command.
|
1999-02-15
|
Compaq Tru64 UNIX edauth Security Information Disclosure
|
