Monthly Archive: February 2000

Denial of service in Qmail by specifying a large number of recipients with the RCPT command. Date published : 2000-02-04 http://www.securityfocus.com/bid/2237 http://marc.info/?l=bugtraq&m=87602558319029&w=2

Denial of service in RAS/PPTP on NT systems. Date published : 2000-02-04

swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access. Date published : 2000-02-04

Race condition in Linux mailx command allows local users to read user files. Date published : 2000-02-04

Buffer overflow in dtaction command gives root access. Date published : 2000-02-04

Windows NT 4.0 beta allows users to read and delete shares. Date published : 2000-02-04

Local users can execute commands as other users, and read other users’ files, through the filter command in the Elm elm-2.4 mail package using a symlink attack. Date published : 2000-02-04

Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters. Date published :...

Finger redirection allows finger bombs. Date published : 2000-02-04

finger allows recursive searches by using a long string of @ symbols. Date published : 2000-02-04

A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2. Date published : 2000-02-04 http://www.securityfocus.com/bid/80175

Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities. Date published : 2000-02-04

Various vulnerabilities in the AIX portmir command allows local users to obtain root access. Date published : 2000-02-04

Buffer overflow in AIX libDtSvc library can allow local users to gain root access. Date published : 2000-02-04