[CLOSE] OSVDB ID : 1769 - Disclosed: 2001-02-28

Description:

(Description Provided by CVE) : NetWin SurgeFTP prior to 1.1h allows a remote attacker to cause a denial of service (crash) via an 'ls ..' command.

[CLOSE] OSVDB ID : 7705 - Disclosed: 2001-02-28

Description:

(Description Provided by CVE) : Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitrary files via a .. (dot dot) in the GET command.

[CLOSE] OSVDB ID : 570 - Disclosed: 2001-02-28

Description:

(Description Provided by CVE) : Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.

[CLOSE] OSVDB ID : 6018 - Disclosed: 2001-02-28

Description:

HP OpenView OmniBack contains a flaw that may allow a remote attacker to gain unauthorized access. The issue is triggered due to an unspecified flaw in the OmniBack client, which may allow a remote attacker to gain administrative access to the system and execute arbitrary commands resulting in a loss of confidentiality and/or integrity.

[CLOSE] OSVDB ID : 6033 - Disclosed: 2001-02-28

Description:

Software Distributor SD-UX in HP-UX contains a flaw that may allow a malicious user to gain access to unauthorized privileges. This flaw may lead to a loss of confidentiality and integrity. No further details have been provided.

[CLOSE] OSVDB ID : 6799 - Disclosed: 2001-02-28

Description:

(Description Provided by CVE) : Directory traversal vulnerability in TYPSoft FTP Server 0.85 allows remote attackers to read arbitrary files via (1) a .. (dot dot) in a GET command, or (2) a ... in a CWD command.

[CLOSE] OSVDB ID : 88578 - Disclosed: 2001-02-28

Description:

Mailx contains an overflow condition in /usr/bin/mail that is triggered as user-supplied input is not properly validated . This may allow a local attacker to cause a buffer overflow, resulting in a denial of service or potentially execution of arbitrary code.

[CLOSE] OSVDB ID : 1857 - Disclosed: 2001-02-27

Description:

(Description Provided by CVE) : Thibault Godouet FCron prior to 1.1.1 allows a local user to corrupt another user's crontab file via a symlink attack on the fcrontab temporary file.

[CLOSE] OSVDB ID : 6665 - Disclosed: 2001-02-27

Description:

(Description Provided by CVE) : Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via an HTTP GET request that does not include the HTTP version.

[CLOSE] OSVDB ID : 8817 - Disclosed: 2001-02-27

Description:

(Description Provided by CVE) : Crosscom/Olicom XLT-F running XL 80 IM Version 5.5 Build Level 2 allows a remote attacker SNMP read and write access via a default, undocumented community string 'ILMI'.

[CLOSE] OSVDB ID : 8820 - Disclosed: 2001-02-27

Description:

By default, Cisco IOS versions that support ATM install with a default SNMP string of ILMI enabled. The ILMI SNMP string is publicly known and documented, though not documented by Cisco with the rest of the release. This allows attackers to trivially access the program or system, and to cause denial of service conditions at will.

[CLOSE] OSVDB ID : 13860 - Disclosed: 2001-02-27

Description:

(Description Provided by CVE) : Buffer overflow in WebReflex 1.55 HTTPd allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request.

[CLOSE] OSVDB ID : 523 - Disclosed: 2001-02-27

Description:

Lotus Domino contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the default installation sets the default ACL of the administration databases to 'Designer', which will disclose configuration information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 1766 - Disclosed: 2001-02-27

Description:

(Description Provided by CVE) : Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local attacker to gain additional privileges and create a denial of service.

[CLOSE] OSVDB ID : 1768 - Disclosed: 2001-02-26

Description:

(Description Provided by CVE) : APC Web/SNMP Management Card prior to Firmware 310 only supports one telnet connection, which allows a remote attacker to create a denial of service via repeated failed logon attempts which temporarily locks the card.

[CLOSE] OSVDB ID : 6022 - Disclosed: 2001-02-26

Description:

(Description Provided by CVE) : Joe text editor 2.8 searches the current working directory (CWD) for the .joerc configuration file, which could allow local users to gain privileges of other users by placing a Trojan Horse .joerc file into a directory, then waiting for users to execute joe from that directory.

[CLOSE] OSVDB ID : 6761 - Disclosed: 2001-02-26

Description:

A1 Server contains a flaw that allows a remote attacker to arbitrary access files outside of the web path. The issue is due to the program not properly sanitizing user input, specifically traversal style attacks (../../).

[CLOSE] OSVDB ID : 6762 - Disclosed: 2001-02-26

Description:

A1 Server contains a flaw that may allow a remote denial of service. The issue is triggered when sending an overly long string containing 1,000 or more characters via telnet, which would cause the application to crash, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 7179 - Disclosed: 2001-02-26

Description:

(Description Provided by CVE) : Buffer overflow in Windows 2000 event viewer snap-in allows attackers to execute arbitrary commands via a malformed field that is improperly handled during the detailed view of event records.

[CLOSE] OSVDB ID : 13898 - Disclosed: 2001-02-26

Description:

MyGetright accepts custom 'skins' from remote websites. A *.dld file is used to specify paths to various resources, including graphics, file permissions, etc. If the maliciously-composed *.dld file lists pathnames which contain long sequences of extraneous data, the programs skin data can be mis-parsed, causing the programs user interface to freeze while the program itself continues to operate. *.dld files can specify download paths via a field called filepath. If a file is specified for download, and the file already exists on the users system, the frozen UI will fail to notify the user, and the file will be overwritten without user prompting or confirmation. If this field contains values including /../ sequences, the filepath specified can extend beyond the normal directory structure used by My Getright, to the entire filesystem. As a result, arbitrary files on the target may be overwritten.

[CLOSE] OSVDB ID : 13910 - Disclosed: 2001-02-26

Description:

(Description Provided by CVE) : Memory leak in Netscape Collabra Server 3.5.4 and earlier allows a remote attacker to cause a denial of service (memory exhaustion) by repeatedly sending approximately 5K of data to TCP port 5238.

[CLOSE] OSVDB ID : 13911 - Disclosed: 2001-02-26

Description:

Netscape Collabra Server contains a flaw that may allow a remote denial of service. The issue is triggered when a null character is sent to port 5239 followed by at least seven characters, and will result in loss of availability for the platform due to 100% CPU consumption.

[CLOSE] OSVDB ID : 18175 - Disclosed: 2001-02-23

Description:

(Description Provided by CVE) : inetd in Compaq Tru64 UNIX 5.1 allows attackers to cause a denial of service (network connection loss) by causing one of the services handled by inetd to core dump during startup, which causes inetd to stop accepting connections to all of its services.

[CLOSE] OSVDB ID : 6027 - Disclosed: 2001-02-23

Description:

A remote overflow exists in MERCUR SMTP Server. By sending a EXPN command containing a overly long string of random characters, an attacker can cause arbitrary code execution with LocalSystem privileges resulting in a loss of integrity.

[CLOSE] OSVDB ID : 524 - Disclosed: 2001-02-23

Description:

PHP-Nuke contains a flaw that allows a remote attacker to read arbitrary files or execute arbitrary commands. The issue is due to the bb_smilies.php not sanitizing input passed to the $user variable. By altering values for this variable, an attacker could execute SQL queries to change user settings and gain administrative privileges.

[CLOSE] OSVDB ID : 3412 - Disclosed: 2001-02-23

Description:

PHP-Nuke contains a flaw that allows a remote attacker to read arbitrary files or execute arbitrary commands. The issue is due to the bbcode_ref.php not sanitizing input passed to the $user variable. By altering values for this variable, an attacker could execute SQL queries to change user settings and gain administrative privileges.

[CLOSE] OSVDB ID : 5582 - Disclosed: 2001-02-23

Description:

AIX contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the command lsfs is installed with the SUID bit and calls commands modified by an attacker. This flaw may lead to a loss of confidentiality and/or integrity.

[CLOSE] OSVDB ID : 6286 - Disclosed: 2001-02-23

Description:

Digital Creations Zope contains a flaw that may allow a malicious user to alter the method return values for affected classes. The issue is triggered because of a vulnerability in the handling of the method return values for the ObjectManager, PropertyManager, and PropertySheet classes. It is possible that the flaw may allow data manipulation in the classes resulting in a loss of integrity.

[CLOSE] OSVDB ID : 7700 - Disclosed: 2001-02-23

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Simple Server HTTPd 1.0 (originally Free Java Server) allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.

[CLOSE] OSVDB ID : 11637 - Disclosed: 2001-02-23

Description:

(Description Provided by CVE) : SEDUM 2.1 HTTP server allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP request.

[CLOSE] OSVDB ID : 5688 - Disclosed: 2001-02-22

Description:

A local overflow exists in sudo utility. The sudo version prior to 1.63p6 fails to split a log entry into smaller pieces resulting in a buffer overflow. By sending a specially crafted long command to sudo, an attacker can overflow a buffer and execute arbitrary commands with root privileges resulting in a loss of confidentiality, integrity, and confidentiality.

[CLOSE] OSVDB ID : 5601 - Disclosed: 2001-02-21

Description:

A remote overflow exists in licq. The logging function fails to validate input resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of confidentiality, integrity, and/or availability.

[CLOSE] OSVDB ID : 1767 - Disclosed: 2001-02-21

Description:

(Description Provided by CVE) : Centrinity First Class Internet Services 5.50 allows for the circumventing of the default 'spam' filters via the presence of '<@>' in the 'From:' field, which allows remote attackers to send spoofed email with the identity of local users.

[CLOSE] OSVDB ID : 6203 - Disclosed: 2001-02-21

Description:

Ultimate Bulletin Board contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the [IMG] tags upon submission to any cgi script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server, allowing an attacker to craft a URL that uses image tags to access cookies.

[CLOSE] OSVDB ID : 13857 - Disclosed: 2001-02-21

Description:

(Description Provided by CVE) : Format string vulnerability in DbgPrint function, used in debug messages for some Windows NT drivers (possibly when called through DebugMessage), may allow local users to gain privileges.

[CLOSE] OSVDB ID : 1764 - Disclosed: 2001-02-20

Description:

(Description Provided by CVE) : Windows 2000 domain controller in Windows 2000 Server, Advanced Server, or Datacenter Server allows remote attackers to cause a denial of service via a flood of malformed service requests.

[CLOSE] OSVDB ID : 6028 - Disclosed: 2001-02-20

Description:

(Description Provided by CVE) : Vulnerability in linkeditor in HP MPE/iX 6.5 and earlier allows local users to gain privileges.

[CLOSE] OSVDB ID : 6032 - Disclosed: 2001-02-20

Description:

The NM debug program contains a flaw that may allow a malicious user to gain access to unauthorized privileges. This flaw may lead to a loss of confidentiality and integrity. No further details have been provided.

[CLOSE] OSVDB ID : 7747 - Disclosed: 2001-02-20

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a '..' (dot dot) attack in the sample script 'codebrws.asp'.

[CLOSE] OSVDB ID : 8009 - Disclosed: 2001-02-20

Description:

(Description Provided by CVE) : Sun Chili!Soft 3.5.2 on Linux and 3.6 on AIX creates a default admin username and password in the default installation, which can allow a remote attacker to gain additional privileges.