Monthly Archive: June 2000

CVE-2000-0384

NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure’s MAC address, which could allow remote attackers to gain root access. Date published : 2000-06-15...

CVE-1999-1011

The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands. Date published : 2000-06-02 https://www.securityfocus.com/bid/529...

CVE-1999-0976

Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail. Date published : 2000-06-02 http://www.securityfocus.com/bid/857

CVE-1999-0856

login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist. Date published : 2000-06-02

CVE-1999-0854

Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file. Date published : 2000-06-02...