Monthly Archive: March 2000

The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration...

Buffer overflow in the conversion utilities for Japanese, Korean and Chinese Word 5 documents allows an attacker to execute commands, aka the "Malformed Conversion Data" vulnerability. Date published : 2000-03-22 http://www.securityfocus.com/bid/946 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-002

Macintosh systems generate large ICMP datagrams in response to malformed datagrams, allowing them to be used as amplifiers in a flood attack. Date published : 2000-03-22 http://www.securityfocus.com/bid/890

glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command. Date published : 2000-03-22

AltaVista search engine allows remote attackers to read files above the document root via a .. (dot dot) in the query.cgi CGI program. Date published : 2000-03-22 http://www.securityfocus.com/bid/896

Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file. Date published : 2000-03-22 http://www.securityfocus.com/bid/903

Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability. Date published : 2000-03-22 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-060 http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q249082

The initscripts package in Red Hat Linux allows local users to gain privileges via a symlink attack. Date published : 2000-03-22

UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack. Date published : 2000-03-22 http://www.securityfocus.com/bid/901

Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string. Date published : 2000-03-22 http://www.securityfocus.com/bid/876

IIS 4.0 and Site Server 3.0 allow remote attackers to read source code for ASP files if the file is in a virtual directory whose name includes extensions such as .com, .exe, .sh, .cgi,...

Buffer overflow in Lotus Domino HTTP server allows remote attackers to cause a denial of service via a long URL. Date published : 2000-03-22 http://www.securityfocus.com/bid/881

Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory. Date published : 2000-03-22 http://www.securityfocus.com/bid/881

Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable. Date published : 2000-03-22 http://marc.info/?l=bugtraq&m=94908470928258&w=2