Monthly Archive: January 2000

The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privileges. Date published : 2000-01-04 http://www.ciac.org/ciac/bulletins/j-052.shtml

Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name. Date published : 2000-01-04 http://www.securityfocus.com/bid/635

HP CDE program includes the current directory in root’s PATH variable. Date published : 2000-01-04 http://www.ciac.org/ciac/bulletins/j-053.shtml http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9907-100

The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack. Date published : 2000-01-04 http://www.securityfocus.com/bid/636

Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x. Date published : 2000-01-04 http://www.securityfocus.com/bid/545 http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9907-101

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. Date published : 2000-01-04 http://www.securityfocus.com/bid/637

Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL. Date published : 2000-01-04

Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option. Date published : 2000-01-04 http://www.securityfocus.com/bid/618

Microsoft Exchange 5.5 allows a remote attacker to relay email (i.e. spam) using encapsulated SMTP addresses, even if the anti-relaying features are enabled. Date published : 2000-01-04 http://www.securityfocus.com/bid/567 http://www.ciac.org/ciac/bulletins/j-056.shtml

Windows NT Terminal Server performs extra work when a client opens a new connection but before it is authenticated, allowing for a denial of service. Date published : 2000-01-04 http://www.securityfocus.com/bid/571 http://www.ciac.org/ciac/bulletins/j-057.shtml

The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve. Date published : 2000-01-04 http://www.securityfocus.com/bid/570

A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted. Date published : 2000-01-04 http://www.securityfocus.com/bid/482

Buffer overflow in procmail before version 3.12 allows remote or local attackers to execute commands via expansions in the procmailrc configuration file. Date published : 2000-01-04

OpenSSL and SSLeay allow remote attackers to reuse SSL sessions and bypass access controls. Date published : 2000-01-04 http://www.osvdb.org/3936