[CLOSE] OSVDB ID : 56525 - Disclosed: 1999-08-31

Description:

(Description Provided by CVE) : Buffer overflow in the Eyedog ActiveX control allows a remote attacker to execute arbitrary commands.

[CLOSE] OSVDB ID : 159 - Disclosed: 1999-08-30

Description:

(Description Provided by CVE) : Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.

[CLOSE] OSVDB ID : 6543 - Disclosed: 1999-08-30

Description:

(Description Provided by CVE) : Buffer overflows in Mars NetWare Emulation (NWE, mars_nwe) package via long directory names.

[CLOSE] OSVDB ID : 6056 - Disclosed: 1999-08-30

Description:

Management information base(MIB) for 3Com SuperStack II hub contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when an object identifier accessible by a read-only community string leads to lists the entire table of community strings, allowing attackers to conduct unauthorized activities resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 6862 - Disclosed: 1999-08-30

Description:

(Description Provided by CVE) : E-mail client in Softarc FirstClass Internet Server 5.506 and earlier stores usernames and passwords in cleartext in the files (1) home.fc for version 5.506, (2) network.fc for version 3.5, or (3) FCCLIENT.LOG when logging is enabled.

[CLOSE] OSVDB ID : 6863 - Disclosed: 1999-08-30

Description:

(Description Provided by CVE) : E-mail client in Softarc FirstClass Internet Server 5.506 and earlier stores usernames and passwords in cleartext in the files (1) home.fc for version 5.506, (2) network.fc for version 3.5, or (3) FCCLIENT.LOG when logging is enabled.

[CLOSE] OSVDB ID : 6864 - Disclosed: 1999-08-30

Description:

(Description Provided by CVE) : E-mail client in Softarc FirstClass Internet Server 5.506 and earlier stores usernames and passwords in cleartext in the files (1) home.fc for version 5.506, (2) network.fc for version 3.5, or (3) FCCLIENT.LOG when logging is enabled.

[CLOSE] OSVDB ID : 7550 - Disclosed: 1999-08-30

Description:

cron contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when an attacker manipulates the MAILTO environment variable, which is executed by the root user. This flaw may lead to a loss of integrity.

[CLOSE] OSVDB ID : 144 - Disclosed: 1999-08-27

Description:

(Description Provided by CVE) : Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.

[CLOSE] OSVDB ID : 1066 - Disclosed: 1999-08-27

Description:

(Description Provided by CVE) : FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers.

[CLOSE] OSVDB ID : 8210 - Disclosed: 1999-08-27

Description:

(Description Provided by CVE) : Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell.

[CLOSE] OSVDB ID : 8717 - Disclosed: 1999-08-27

Description:

wu-ftpd contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when an attacker sends a specially formed rnfr command. It is possible that the flaw may allow the attacker to overwrite any file on the system as root resulting in a loss of integrity.

[CLOSE] OSVDB ID : 79358 - Disclosed: 1999-08-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 1055 - Disclosed: 1999-08-26

Description:

Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR.

[CLOSE] OSVDB ID : 1058 - Disclosed: 1999-08-25

Description:

(Description Provided by CVE) : Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.

[CLOSE] OSVDB ID : 1061 - Disclosed: 1999-08-25

Description:

(Description Provided by CVE) : Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.

[CLOSE] OSVDB ID : 1059 - Disclosed: 1999-08-24

Description:

(Description Provided by CVE) : Windows NT 4.0 generates predictable random TCP initial sequence numbers (ISN), which allows remote attackers to perform spoofing and session hijacking.

[CLOSE] OSVDB ID : 1060 - Disclosed: 1999-08-24

Description:

(Description Provided by CVE) : Denial of service in Debian IRC Epic/epic4 client via a long string.

[CLOSE] OSVDB ID : 1053 - Disclosed: 1999-08-23

Description:

(Description Provided by CVE) : The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users.

[CLOSE] OSVDB ID : 9664 - Disclosed: 1999-08-23

Description:

(Description Provided by CVE) : IBM GINA, when used for OS/2 domain authentication of Windows NT users, allows local users to gain administrator privileges by changing the GroupMapping registry key.

[CLOSE] OSVDB ID : 1057 - Disclosed: 1999-08-23

Description:

Lotus Notes Domino Server LDAP Service contains a flaw that may allow a remote denial of service. The issue is triggered when a very long string is submitted to ldap_search occurs, and will result in loss of availability for the Notes Server.

[CLOSE] OSVDB ID : 1453 - Disclosed: 1999-08-23

Description:

(Description Provided by CVE) : The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.

[CLOSE] OSVDB ID : 3501 - Disclosed: 1999-08-23

Description:

Microsoft FrontPage contains a flaw that may lead to an unauthorized information disclosure. The issue is due to "form_results.[txt|htm|html]" being accessable to anyone via the web. This file contains user supplied input and may contain logins, passwords or other sensitive information.

[CLOSE] OSVDB ID : 9832 - Disclosed: 1999-08-22

Description:

(Description Provided by CVE) : Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of service and possibly execute arbitrary commands by executing WindowMaker with a long program name (argv[0]).

[CLOSE] OSVDB ID : 1054 - Disclosed: 1999-08-21

Description:

(Description Provided by CVE) : The scriptlet.typelib ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy.

[CLOSE] OSVDB ID : 10977 - Disclosed: 1999-08-21

Description:

(Description Provided by CVE) : The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy.

[CLOSE] OSVDB ID : 59322 - Disclosed: 1999-08-20

Description:

Jet Database contains a flaw that may allow an attacker to execute arbitrary commands. The issue is triggered when a malicious user submits a specially crafted database query.

[CLOSE] OSVDB ID : 7428 - Disclosed: 1999-08-20

Description:

MHonArc contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the .mhonarc.db file is publically accessible, which will disclose address information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 13563 - Disclosed: 1999-08-20

Description:

SHOUTcast contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when viewing the sc_serv.conf or viewing the log file occurs, which will disclose the administrator password information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 1048 - Disclosed: 1999-08-19

Description:

(Description Provided by CVE) : Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler.

[CLOSE] OSVDB ID : 6205 - Disclosed: 1999-08-19

Description:

(Description Provided by CVE) : Trn allows local users to overwrite other users' files via symlinks.

[CLOSE] OSVDB ID : 6541 - Disclosed: 1999-08-19

Description:

(Description Provided by CVE) : The logging facilitity of the Debian smtp-refuser package allows local users to delete arbitrary files using symbolic links.

[CLOSE] OSVDB ID : 7675 - Disclosed: 1999-08-19

Description:

CiscoSecure Access Control Server (CiscoSecure ACS) for UNIX contains a flaw that may allow a remote attacker to modify the database. The issue is due to the database access protocol not properly authenticating clients. Without authenticating, an attacker can read and write to the server database, including modification of access policies.

[CLOSE] OSVDB ID : 9766 - Disclosed: 1999-08-19

Description:

(Description Provided by CVE) : QMS CrownNet Unix Utilities for 2060 allows root to log on without a password.

[CLOSE] OSVDB ID : 59826 - Disclosed: 1999-08-19

Description:

(Description Provided by CVE) : Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.

[CLOSE] OSVDB ID : 59827 - Disclosed: 1999-08-19

Description:

(Description Provided by CVE) : Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.

[CLOSE] OSVDB ID : 59828 - Disclosed: 1999-08-19

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 1051 - Disclosed: 1999-08-18

Description:

(Description Provided by CVE) : Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable.

[CLOSE] OSVDB ID : 1049 - Disclosed: 1999-08-18

Description:

(Description Provided by CVE) : The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories.

[CLOSE] OSVDB ID : 61158 - Disclosed: 1999-08-18

Description:

Unknown / Incomplete