Monthly Archive: July 2000

Dragon telnet server allows remote attackers to cause a denial of service via a long username. Date published : 2000-07-12 http://www.securityfocus.com/bid/1352 http://marc.info/?l=bugtraq&m=96113734714517&w=2

Dragon FTP server allows remote attackers to cause a denial of service via a long USER command. Date published : 2000-07-12 http://www.securityfocus.com/bid/1352 http://marc.info/?l=bugtraq&m=96113734714517&w=2

xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized. Date published : 2000-07-12 http://www.securityfocus.com/bid/1298 http://archives.neohapsis.com/archives/bugtraq/2000-05/0420.html

Buffer overflow in AnalogX SimpleServer 1.05 allows a remote attacker to cause a denial of service via a long GET request for a program in the cgi-bin directory. Date published : 2000-07-12 http://www.securityfocus.com/bid/1349

Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files via the frame, aka the "Frame Domain...

Internet Explorer 4.x and 5.x allows remote attackers to execute arbitrary commands via a buffer overflow in the ActiveX parameter parsing capability, aka the "Malformed Component Attribute" vulnerability. Date published : 2000-07-12 http://www.securityfocus.com/bid/1223 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-033

BeOS 5.0 allows remote attackers to cause a denial of service via fragmented TCP packets. Date published : 2000-07-12 http://www.securityfocus.com/bid/1222 http://archives.neohapsis.com/archives/bugtraq/2000-05/0197.html

ftpd in NetBSD 1.4.2 does not properly parse entries in /etc/ftpchroot and does not chroot the specified users, which allows those users to access other files outside of their home directory. Date published :...

The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call. Date published :...

Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable. Date published : 2000-07-12 http://www.securityfocus.com/bid/1274 http://archives.neohapsis.com/archives/bugtraq/2000-05/0353.html

NetBSD 1.4.2 and earlier allows local users to cause a denial of service by repeatedly running certain system calls in the kernel which do not yield the CPU, aka "cpu-hog". Date published : 2000-07-12...

Buffer overflow in xlockmore xlock program version 4.16 and earlier allows local users to read sensitive data from memory via a long -mode option. Date published : 2000-07-12 http://www.securityfocus.com/bid/1267 http://www.nai.com/nai_labs/asp_set/advisory/41initialized.asp

Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter. Date published : 2000-07-12 http://www.securityfocus.com/bid/1265 http://archives.neohapsis.com/archives/bugtraq/2000-05/0367.html

XFree86 3.3.x and 4.0 allows a user to cause a denial of service via a negative counter value in a malformed TCP packet that is sent to port 6000. Date published : 2000-07-12 http://www.securityfocus.com/bid/1235...