Monthly Archive: April 2000

Internet Explorer 5.01 allows remote attackers to bypass the cross frame security policy via a malicious applet that interacts with the Java JSObject to modify the DOM properties to set the IFRAME to an...

The default permissions for the CryptographyOffload registry key used by the OffloadModExpo in Windows NT 4.0 allows local users to obtain compromise the cryptographic keys of other users. Date published : 2000-04-26 http://www.securityfocus.com/bid/1105 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-024

Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise available through the web site, aka the "Server-Side Image Map Components"...

The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords. Date published : 2000-04-26 http://www.securityfocus.com/bid/1114 http://archives.neohapsis.com/archives/bugtraq/2000-04/0072.html

The web GUI for the Linux Virtual Server (LVS) software in the Red Hat Linux Piranha package has a backdoor password that allows remote attackers to execute arbitrary commands. Date published : 2000-04-26 http://xforce.iss.net/alerts/advise46.php3

An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy. Date published : 2000-04-25 http://marc.info/?l=bugtraq&m=94519142415338&w=2

Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo file. Date published : 2000-04-25 http://www.securityfocus.com/bid/872 http://marc.info/?l=bugtraq&m=94512259331599&w=2

Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter. Date published : 2000-04-25 http://www.securityfocus.com/bid/879 http://marc.info/?l=bugtraq&m=94571433731824&w=2

wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress. Date...

MajorCool mj_key_cache program allows local users to modify files via a symlink attack. Date published : 2000-04-25

Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories. Date published : 2000-04-25 http://www.securityfocus.com/bid/747

iChat ROOMS Webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack. Date published : 2000-04-25 http://marc.info/?l=bugtraq&m=90538488231977&w=2

Firewall-1 does not properly restrict access to LDAP attributes. Date published : 2000-04-25 http://www.securityfocus.com/bid/725 http://www.securityfocus.com/templates/archive.pike?list=1&[email protected]

Cisco 675 routers running CBOS allow remote attackers to establish telnet sessions if an exec or superuser password has not been set. Date published : 2000-04-25 http://www.osvdb.org/39