Buffer overflow in Infopulse Gatekeeper 3.5 and earlier allows remote attackers to execute arbitrary commands via a long string. Date published : 2000-10-13 http://www.securityfocus.com/bid/1477 http://www.securityfocus.com/templates/archive.pike?list=1&msg=00af01bfece2$a52cbd80$367e1ec4@kungphusion
ftp.pl CGI program for Virtual Visions FTP browser allows remote attackers to read directories outside of the document root via a .. (dot dot) attack. Date published : 2000-10-13 http://www.securityfocus.com/bid/1471 http://archives.neohapsis.com/archives/bugtraq/2000-07/0177.html
The NetBIOS Name Server (NBNS) protocol does not perform authentication, which allows remote attackers to cause a denial of service by sending a spoofed Name Conflict or Name Release datagram, aka the "NetBIOS Name...
Roxen web server earlier than 2.0.69 allows allows remote attackers to bypass access restrictions, list directory contents, and read source code by inserting a null character (%00) to the URL. Date published : 2000-10-13...
The cvsweb CGI script in CVSWeb 1.80 allows remote attackers with write access to a CVS repository to execute arbitrary commands via shell metacharacters. Date published : 2000-10-13 http://www.securityfocus.com/bid/1469 http://archives.neohapsis.com/archives/bugtraq/2000-07/0178.html
Novell NetWare 5.0 allows remote attackers to cause a denial of service by flooding port 40193 with random data. Date published : 2000-10-13 http://www.securityfocus.com/bid/1467 http://www.securityfocus.com/templates/archive.pike?list=1&msg=000501bfeab5$9330c3d0$d801a8c0@dimuthu.baysidegrp.com.au
pam_console PAM module in Linux systems allows a user to access the system console and reboot the system when a display manager such as gdm or kdm has XDMCP enabled. Date published : 2000-10-13...
rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote attackers to gain root privileges. Date published : 2000-10-13 http://www.securityfocus.com/bid/1480 http://archives.neohapsis.com/archives/bugtraq/2000-07/0206.html
GAMSoft TelSrv telnet server 1.5 and earlier allows remote attackers to cause a denial of service via a long username. Date published : 2000-10-13 http://www.securityfocus.com/bid/1478 http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0031.html
AnalogX SimpleServer:WWW 1.06 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack that uses the %2E URL encoding for the dots. Date published : 2000-10-13 http://www.securityfocus.com/bid/1508 http://archives.neohapsis.com/archives/bugtraq/2000-07/0374.html
The registry entry for the Windows Shell executable (Explorer.exe) in Windows NT and Windows 2000 uses a relative path name, which allows local users to execute arbitrary commands by inserting a Trojan Horse named...
WircSrv IRC Server 5.07s allows remote attackers to cause a denial of service via a long string to the server port. Date published : 2000-10-13 http://www.securityfocus.com/bid/1448 http://archives.neohapsis.com/archives/bugtraq/2000-07/0120.html
The WDaemon web server for WorldClient 2.1 allows remote attackers to read arbitrary files via a .. (dot dot) attack. Date published : 2000-10-13 http://www.securityfocus.com/bid/1462 http://archives.neohapsis.com/archives/bugtraq/2000-07/0173.html
Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1. Date published...