NuytsTech Security

Monthly Archive: February 2000

CVE-2000-0047

Buffer overflow in Yahoo Pager/Messenger client allows remote attackers to cause a denial of service via a long URL within a message. Date published : 2000-02-04

CVE-2000-0038

glFtpD includes a default glftpd user account with a default password and a UID of 0. Date published : 2000-02-04

CVE-2000-0028

Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function. Date published : 2000-02-04

CVE-2000-0021

Lotus Domino HTTP server allows remote attackers to determine the real path of the server via a request to a non-existent script in /cgi-bin. Date published : 2000-02-04 http://www.securityfocus.com/bid/881

CVE-2000-0019

IMail POP3 daemon uses weak encryption, which allows local users to read files. Date published : 2000-02-04

CVE-2000-0017

Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter. Date published : 2000-02-04

CVE-2000-0016

Buffer overflow in Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service or execute commands via a long username. Date published : 2000-02-04 http://www.securityfocus.com/bid/730

CVE-2000-0008

FTPPro allows local users to read sensitive information, which is stored in plain text. Date published : 2000-02-04

CVE-2000-0005

HP-UX aserver program allows local users to gain privileges via a symlink attack. Date published : 2000-02-04