Monthly Archive: October 2000
18/10/2000
by
Fred
· Published 18/10/2000
Intel Express 500 series switches allow a remote attacker to cause a denial of service via a malformed ICMP packet, which causes the CPU to crash. Date published : 2000-10-18 http://www.securityfocus.com/bid/1647 http://archives.neohapsis.com/archives/bugtraq/2000-08/0533.html
18/10/2000
by
Fred
· Published 18/10/2000
The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files. Date...
18/10/2000
by
Fred
· Published 18/10/2000
LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was...
18/10/2000
by
Fred
· Published 18/10/2000
LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to start and stop various LPD services. Date published : 2000-10-18 http://www.securityfocus.com/bid/1643 http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.html
18/10/2000
by
Fred
· Published 18/10/2000
explorer.php in PhotoAlbum 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack. Date published : 2000-10-18 http://www.securityfocus.com/bid/1650 http://archives.neohapsis.com/archives/bugtraq/2000-09/0015.html
18/10/2000
by
Fred
· Published 18/10/2000
Interbase 6 SuperServer for Linux allows an attacker to cause a denial of service via a query containing 0 bytes. Date published : 2000-10-18 http://www.securityfocus.com/bid/1654 http://archives.neohapsis.com/archives/bugtraq/2000-09/0027.html
18/10/2000
by
Fred
· Published 18/10/2000
The logging capability in muh 2.05d IRC server does not properly cleanse user-injected format strings, which allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed nickname. Date...
18/10/2000
by
Fred
· Published 18/10/2000
SunFTP build 9(1) allows remote attackers to cause a denial of service by connecting to the server and disconnecting before sending a newline. Date published : 2000-10-18 http://www.securityfocus.com/bid/1637 http://archives.neohapsis.com/archives/bugtraq/2000-08/0408.html
18/10/2000
by
Fred
· Published 18/10/2000
kdebug daemon (kdebugd) in Digital Unix 4.0F allows remote attackers to read arbitrary files by specifying the full file name in the initialization packet. Date published : 2000-10-18 http://archives.neohapsis.com/archives/bugtraq/2000-09/0204.html
18/10/2000
by
Fred
· Published 18/10/2000
Buffer overflow in pam_smb and pam_ntdom pluggable authentication modules (PAM) allow remote attackers to execute arbitrary commands via a login with a long user name. Date published : 2000-10-18 http://www.securityfocus.com/bid/1666 http://archives.neohapsis.com/archives/bugtraq/2000-09/0073.html
18/10/2000
by
Fred
· Published 18/10/2000
The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack. Date published : 2000-10-18 http://www.securityfocus.com/bid/1663 http://archives.neohapsis.com/archives/bugtraq/2000-09/0086.html
18/10/2000
by
Fred
· Published 18/10/2000
Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long APOP command. Date published : 2000-10-18 http://www.securityfocus.com/bid/1652 http://archives.neohapsis.com/archives/bugtraq/2000-09/0001.html
18/10/2000
by
Fred
· Published 18/10/2000
Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long USER command. Date published : 2000-10-18 http://www.securityfocus.com/bid/1652 http://archives.neohapsis.com/archives/bugtraq/2000-09/0001.html
18/10/2000
by
Fred
· Published 18/10/2000
Buffer overflow in CamShot WebCam Trial2.6 allows remote attackers to execute arbitrary commands via a long Authorization header. Date published : 2000-10-18 http://www.securityfocus.com/bid/1685 http://archives.neohapsis.com/archives/bugtraq/2000-09/0176.html