| OSVDB ID | Disclosure Date | Title |
|---|
|
1752
Description:
(Description Provided by CVE) : Buffer overflow in ximp40 shared library in Solaris 7 and Solaris 8 allows local users to gain privileges via a long "arg0" (process name) argument.
|
2001-01-31
|
Solaris ximp40 Library arg0 Local Overflow
|
|
1756
Description:
(Description Provided by CVE) : Format string vulnerability in man in some Linux distributions allows local users to gain privileges via a malformed -l parameter.
|
2001-01-31
|
Linux man -l Format String
|
|
10560
Description:
(Description Provided by CVE) : Buffer overflow in QuickTime Player plugin 4.1.2 (Japanese) allows remote attackers to execute arbitrary commands via a long HREF parameter in an EMBED tag.
|
2001-01-31
|
Apple QuickTime Player (Japanese) EMBED Tag Handling Overflow
|
|
1755
Description:
(Description Provided by CVE) : Remote Data Protocol (RDP) in Windows 2000 Terminal Service does not properly handle certain malformed packets, which allows remote attackers to cause a denial of service, aka the "Invalid RDP Data" vulnerability.
|
2001-01-31
|
Microsoft Windows 2000 RDP Malformed Packet Handling Remote DoS
|
|
1757
Description:
Cisco WebNS contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker uses specific input, which is not validated, to gain information about the directory structure or to read files.
|
2001-01-31
|
Cisco CSS Directory Structure Information Disclosure
|
|
8814
Description:
(Description Provided by CVE) : Arrowpoint (aka Cisco Content Services, or CSS) allows local users to cause a denial of service via a long argument to the "show script," "clear script," "show archive," "clear archive," "show log," or "clear log" commands.
|
2001-01-31
|
Cisco Content Services Multiple Command Long Argument DoS
|
|
44625
Description:
Unknown / Incomplete
|
2001-01-31
|
Oracle Internet Directory oidmon Local Overflow
|
|
59931
Description:
Unknown / Incomplete
|
2001-01-30
|
perlbot.org Perlbot Multiple Module Unspecified Issues
|
|
11866
Description:
(Description Provided by CVE) : Buffer overflow in qDecoder library 5.08 and earlier, as used in CrazyWWWBoard, CrazySearch, and other CGI programs, allows remote attackers to execute arbitrary commands via a long MIME Content-Type header.
|
2001-01-30
|
qDecoder Library MIME Content-Type Header Remote Overflow
|
|
13126
Description:
(Description Provided by CVE) : Buffer overflow in SlimServe HTTPd 1.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long GET request.
|
2001-01-30
|
SlimServe HTTPd Long GET Request Overflow
|
|
6138
Description:
Trend Micro's Virus Buster contains a flaw that may allow a remote denial of service. The issue is triggered when scanning a received email with "To" headers containing overly long strings, which could result in a crash of the system.
|
2001-01-30
|
Trend Micro Virus Buster 2001 To Address Overflow DoS
|
|
7931
Description:
Unknown / Incomplete
|
2001-01-30
|
Apache HTTP Server mod_ssl X.509 Client Certificate Authentication Bypass
|
|
14795
Description:
(Description Provided by CVE) : Buffer overflow in transaction signature (TSIG) handling code in BIND 8 allows remote attackers to gain root privileges.
|
2001-01-29
|
ISC BIND TSIG Handling Code Remote Overflow
|
|
1753
Description:
FreeBSD contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when inetd incorrectly sets group privileges on child processes, and when an ident request is received, the process is assigned privileges of the wheel (root group), which will disclose the first 16 bytes of any wheel-accessible file resulting in a loss of confidentiality.
|
2001-01-29
|
FreeBSD inetd ident wheel Group Arbitrary Local File Access
|
|
1746
Description:
(Description Provided by CVE) : Buffer overflow in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges.
|
2001-01-29
|
ISC BIND 4 nslookupComplain() Remote Overflow
|
|
1747
Description:
(Description Provided by CVE) : Format string vulnerability in nslookupComplain function in BIND 4 allows remote attackers to gain root privileges.
|
2001-01-29
|
ISC BIND 4 nslookupComplain() Remote Format String
|
|
1751
Description:
(Description Provided by CVE) : BIND 4 and BIND 8 allow remote attackers to access sensitive information such as environment variables.
|
2001-01-29
|
ISC BIND Environment Variable Information Disclosure
|
|
1754
Description:
FreeBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the periodic program uses insecure temporary file names in the /tmp directory. A malicious user could use this vulnerability to create a symbolic link in the /tmp directory to corrupt any file on the system. This flaw may lead to a loss of integrity.
|
2001-01-29
|
FreeBSD periodic /tmp File Race Condition
|
|
2034
Description:
(Description Provided by CVE) : sort in FreeBSD 4.1.1 and earlier, and possibly other operating systems, uses predictable temporary file names and does not properly handle when the temporary file already exists, which causes sort to crash and possibly impacts security-sensitive scripts.
|
2001-01-29
|
sort Insecure Temporary File DoS
|
|
6280
Description:
A remote overflow exists in AT&T WinVNC server. The HTTP component fails to use bounds resulting in a stack overflow. With a specially crafted request, an attacker can execute code remotely resulting in a loss of confidentiality, integrity and availability.
|
2001-01-29
|
AT&T WinVNC Server HTTP GET Overflow
|
|
6281
Description:
A buffer overflow exists in WinVNC. The client fails to validate rfbConnFailed packets resulting in a buffer overflow. With a specially crafted packet, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.
|
2001-01-29
|
AT&T WinVNC Client rfbConnFailed Packet Overflow
|
|
8979
Description:
(Description Provided by CVE) : MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking.
|
2001-01-29
|
MySQL SHOW GRANTS Encrypted Password Disclosure
|
|
13125
Description:
(Description Provided by CVE) : Lars Ellingsen guestserver.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the "email" parameter.
|
2001-01-29
|
Lars Ellingsen guestserver.cgi email Parameter Arbitrary Command Execution
|
|
498
Description:
(Description Provided by CVE) : Directory traversal vulnerability in hsx.cgi program in iWeb Hyperseek 2000 allows remote attackers to read arbitrary files and directories via a .. (dot dot) attack in the show parameter.
|
2001-01-28
|
iWeb Hyperseek 2000 hsx.cgi show Parameter Traversal Arbitrary File Access
|
|
57121
Description:
Unknown / Incomplete
|
2001-01-28
|
bftpd Non-existent User Authentication Remote DoS
|
|
28609
Description:
Unknown / Incomplete
|
2001-01-27
|
vsftpd tunable_chroot_local_user Filesystem Root Access
|
|
5645
Description:
vim contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when vim writes backup and temporary files to /tmp.
|
2001-01-26
|
Vim Backup / Swap File Symlink Arbitrary File Modification
|
|
5844
Description:
(Description Provided by CVE) : NewsDaemon before 0.21b allows remote attackers to execute arbitrary SQL queries and gain privileges via a malformed user_username parameter.
|
2001-01-26
|
NewsDaemon Malformed user_username SQL Injection
|
|
7169
Description:
(Description Provided by CVE) : Format string vulnerability in mars_nwe 0.99.pl19 allows remote attackers to execute arbitrary commands.
|
2001-01-26
|
mars_nwe Format String Arbitrary Remote Command Execution
|
|
13842
Description:
(Description Provided by CVE) : Borderware Firewall Server 6.1.2 allows remote attackers to cause a denial of service via a ping to the broadcast address of the public network on which the server is placed, which causes the server to continuously send pings (echo requests) to the network.
|
2001-01-26
|
Borderware Firewall Server Broadcast Address Ping DoS
|
|
6019
Description:
(Description Provided by CVE) : inetd in Red Hat 6.2 does not properly close sockets for internal services such as chargen, daytime, echo, etc., which allows remote attackers to cause a denial of service via a series of connections to the internal services.
|
2001-01-25
|
Red Hat Linux inetd Internal Service Connections Remote DoS
|
|
6402
Description:
mIRC contains a flaw that may allow a malicious user to bypass lock protection. The issue is triggered by modifying the registry to disable the lock. It is possible that the flaw may allow unauthorized execution of the program resulting in a loss of integrity.
|
2001-01-25
|
mIRC LockOptions Registry Key Local Password Bypass
|
|
9534
Description:
(Description Provided by CVE) : Buffer overflow in www.tol module in America Online (AOL) 5.0 may allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL in a link.
|
2001-01-25
|
AOL Instant Messenger (AIM) www.tol Module Long URL Overflow
|
|
9675
Description:
(Description Provided by CVE) : IBM WebSphere plugin for Netscape Enterprise server allows remote attackers to read source code for JSP files via an HTTP request that contains a host header that references a host that is not in WebSphere's host aliases list, which will bypass WebSphere processing.
|
2001-01-25
|
IBM WebSphere Plugin Host Header Request JSP Source Disclosure
|
|
10892
Description:
(Description Provided by CVE) : The Web Publishing feature in Netscape Enterprise Server 3.x allows remote attackers to cause a denial of service via the REVLOG command.
|
2001-01-25
|
Netscape Enterprise Server Web Publishing Feature REVLOG Command DoS
|
|
12651
Description:
(Description Provided by CVE) : Buffer overflow in pi program in PlanetIntra 2.5 allows remote attackers to execute arbitrary commands.
|
2001-01-25
|
Planet Intra pi Overflow
|
|
19103
Description:
Alpha versions of the AOL Instant Messenger 4.4 version contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the log valid entry for an image upon submission to the AIM log file. This may allow a user to create a specially crafted "image" file by rearranging the HTML code used in the AIM client to send an image that would execute arbitrary Java or Javascript code in a user's browser within the trust relationship between their browser and the server if the user is convinced to click directly on the AIM IMLog.htm file instead of using AOL's internal log viewer.
|
2001-01-24
|
AOL Instant Messenger (AIM) Multiple Tag XSS
|
|
499
Description:
(Description Provided by CVE) : The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control permissions, which allows local users to modify the permissions to "No Access" and disable Winsock network connectivity to cause a denial of service, aka the "Winsock Mutex" vulnerability.
|
2001-01-24
|
Microsoft Windows NT Winsock2ProtocolCatalogMutex Mutex Local DoS
|
|
571
Description:
(Description Provided by CVE) : The Web Publishing feature in Netscape Enterprise Server 4.x and earlier allows remote attackers to list arbitrary directories under the web server root via the INDEX command.
|
2001-01-24
|
Netscape Enterprise Web Publishing INDEX Command Arbitrary Directory Listing
|
|
1743
Description:
FreeBSD and Mac OS X contain a flaw that may allow a malicious user to bypass a firewall. The issue is triggered when TCP packets with the ECE flag set are treated as being part of an already established TCP connection. It is possible that the flaw may allow a malicious user to bypass certain ipfw rules resulting in a loss of integrity.
|
2001-01-23
|
Multiple BSD ipfw / ip6fw ECE Bit Filtering Evasion
|
