Red Hat 6.0 allows local users to gain root access by booting single user and hitting ^C at the password prompt. Date published : 2000-03-22 http://www.securityfocus.com/bid/1005 http://www.securityfocus.com/templates/archive.pike?list=1&msg=200002230248.NAA19185@cairo.anu.edu.au
Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow an attacker to flood a mail system with responses by forging a Read...
FTP Explorer uses weak encryption for storing the username, password, and profile of FTP sites. Date published : 2000-03-22 http://www.securityfocus.com/bid/1003 http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10002242035500.30645-100000@unreal.sekure.org
The Sambar server includes batch files ECHO.BAT and HELLO.BAT in the CGI directory, which allow remote attackers to execute commands via shell metacharacters. Date published : 2000-03-22 http://www.securityfocus.com/bid/1002 http://www.securityfocus.com/templates/archive.pike?list=1&msg=38B3E60A.6A84FEC3@cybcom.net
Trend Micro OfficeScan allows remote attackers to replay administrative commands and modify the configuration of OfficeScan clients. Date published : 2000-03-22 http://www.securityfocus.com/bid/1013 http://archives.neohapsis.com/archives/bugtraq/2000-03/0015.html
The Trend Micro OfficeScan client allows remote attackers to cause a denial of service by making 5 connections to port 12345, which raises CPU utilization to 100%. Date published : 2000-03-22 http://www.securityfocus.com/bid/1013 http://archives.neohapsis.com/archives/bugtraq/2000-02/0340.html
The Trend Micro OfficeScan client tmlisten.exe allows remote attackers to cause a denial of service via malformed data to port 12345. Date published : 2000-03-22 http://www.securityfocus.com/bid/1013 http://www.securityfocus.com/templates/archive.pike?list=1&msg=412FC0AFD62ED31191B40008C7E9A11A0D481D@srvnt04.previnet.it
When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak...
Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service. Date published : 2000-03-22 http://www.securityfocus.com/bid/1051 http://archives.neohapsis.com/archives/bugtraq/current/0137.html
The Windows NT scheduler uses the drive mapping of the interactive user who is currently logged onto the system, which allows the local user to gain privileges by providing a Trojan horse batch file...
AOL Instant Messenger (AIM) client allows remote attackers to cause a denial of service via a message with a malformed ASCII value. Date published : 2000-03-22 http://archives.neohapsis.com/archives/bugtraq/2000-03/0016.html
EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters. Date published : 2000-03-22 http://www.securityfocus.com/bid/1014 http://archives.neohapsis.com/archives/bugtraq/2000-02/0356.html
EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters. Date published : 2000-03-22 http://www.securityfocus.com/bid/1014 http://archives.neohapsis.com/archives/bugtraq/2000-02/0356.html
DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters. Date published : 2000-03-22 http://www.securityfocus.com/bid/1028 http://archives.neohapsis.com/archives/bugtraq/2000-03/0000.html