mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands. Date published : 2000-10-13 http://www.securityfocus.com/bid/1559 http://archives.neohapsis.com/archives/bugtraq/2000-08/0064.html
Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name. Date published : 2000-10-13 http://www.securityfocus.com/bid/1558 http://archives.neohapsis.com/archives/bugtraq/2000-08/0064.html
admin.php3 in PHP-Nuke does not properly verify the PHP-Nuke administrator password, which allows remote attackers to gain privileges by requesting a URL that does not specify the aid or pwd parameter. Date published :...
DEPRECATED. This entry has been deprecated. It is a duplicate of CVE-2000-0743. Date published : 2000-10-13
Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value. Date published : 2000-10-13 http://www.securityfocus.com/bid/1569...
The Service Control Manager (SCM) in Windows 2000 creates predictable named pipes, which allows a local user with console access to gain administrator privileges, aka the "Service Control Manager Named Pipe Impersonation" vulnerability. Date...
Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request. Date published...
Vulnerability in newgrp command in HP-UX 11.0 allows local users to gain privileges. Date published : 2000-10-13 http://www.securityfocus.com/bid/1580 http://archives.neohapsis.com/archives/bugtraq/2000-08/0144.html
xpdf PDF viewer client earlier than 0.91 allows local users to overwrite arbitrary files via a symlink attack. Date published : 2000-10-13 http://www.securityfocus.com/bid/1624 http://marc.info/?l=bugtraq&m=96766355023239&w=2
xpdf PDF viewer client earlier than 0.91 does not properly launch a web browser for embedded URL’s, which allows an attacker to execute arbitrary commands via a URL that contains shell metacharacters. Date published...
Zope before 2.2.1 does not properly restrict access to the getRoles method, which allows users who can edit DTML to add or modify roles by modifying the roles list that is included in a...
A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp directory before they are installed. Date published : 2000-10-13 http://www.securityfocus.com/bid/1567 http://archives.neohapsis.com/archives/bugtraq/2000-08/0146.html
Linux Intrusion Detection System (LIDS) 0.9.7 allows local users to gain root privileges when LIDS is disabled via the security=0 boot option. Date published : 2000-10-13 http://www.securityfocus.com/bid/1549 http://archives.neohapsis.com/archives/bugtraq/2000-07/0486.html
Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim’s system via a malicious applet, as demonstrated by...