Buffer overflow in Pragma Systems TelnetServer 2000 version 4.0 allows remote attackers to cause a denial of service via a long series of null characters to the rexec port. Date published : 2000-10-13 http://www.securityfocus.com/bid/1605...
PCCS MySQLDatabase Admin Tool Manager 1.2.4 and earlier installs the file dbconnect.inc within the web root, which allows remote attackers to obtain sensitive information such as the administrative password. Date published : 2000-10-13 http://www.securityfocus.com/bid/1557...
Buffer overflows in ntop running in web mode allows remote attackers to execute arbitrary commands. Date published : 2000-10-13 http://www.securityfocus.com/bid/1576 http://www.debian.org/security/2000/20000830
ntop running in web mode allows remote attackers to read arbitrary files via a .. (dot dot) attack. Date published : 2000-10-13 http://www.securityfocus.com/bid/1550 http://archives.neohapsis.com/archives/bugtraq/2000-07/0459.html
suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling...
Cisco Gigabit Switch Routers (GSR) with Fast Ethernet / Gigabit Ethernet cards, from IOS versions 11.2(15)GS1A up to 11.2(19)GS0.2 and some versions of 12.0, do not properly handle line card failures, which allows remote...
BEA WebLogic 5.1.x does not properly restrict access to the PageCompileServlet, which could allow remote attackers to compile and execute Java JHTML code by directly invoking the servlet on any source file. Date published...
BEA WebLogic 5.1.x does not properly restrict access to the JSPServlet, which could allow remote attackers to compile and execute Java JSP code by directly invoking the servlet on any source file. Date published...
BEA WebLogic 5.1.x allows remote attackers to read source code for parsed pages by inserting /*.shtml/ into the URL, which invokes the SSIServlet. Date published : 2000-10-13 http://www.securityfocus.com/bid/1517 http://archives.neohapsis.com/archives/bugtraq/2000-07/0410.html
BEA WebLogic 5.1.x allows remote attackers to read source code for parsed pages by inserting /ConsoleHelp/ into the URL, which invokes the FileServlet. Date published : 2000-10-13 http://www.securityfocus.com/bid/1518 http://archives.neohapsis.com/archives/bugtraq/2000-07/0410.html
Buffer overflow in BEA WebLogic server proxy plugin allows remote attackers to execute arbitrary commands via a long URL with a .JSP extension. Date published : 2000-10-13 http://www.securityfocus.com/bid/1570 http://archives.neohapsis.com/archives/bugtraq/2000-08/0186.html
PGP 5.5.x through 6.5.3 does not properly check if an Additional Decryption Key (ADK) is stored in the signed portion of a public certificate, which allows an attacker who can modify a victim’s public...
Buffer overflow in IBM Net.Data db2www CGI program allows remote attackers to execute arbitrary commands via a long PATH_INFO environmental variable. Date published : 2000-10-13 http://xforce.iss.net/alerts/advise60.php https://exchange.xforce.ibmcloud.com/vulnerabilities/4976
Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols,...