Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges. Date published : 2000-11-29 ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function. Date published : 2000-11-29 http://www.securityfocus.com/bid/1895 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:62.top.v1.1.asc
Format string vulnerabilities in eeprom program in OpenBSD, NetBSD, and possibly other operating systems allows local attackers to gain root privileges. Date published : 2000-11-29 http://www.securityfocus.com/bid/1752 ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
WinU 1.0 through 5.1 has a backdoor password that allows remote attackers to gain access to its administrative interface and modify configuration. Date published : 2000-11-29 http://www.securityfocus.com/bid/1801 http://archives.neohapsis.com/archives/bugtraq/2000-10/0238.html
Buffer overflow in oidldapd in Oracle 8.1.6 allow local users to gain privileges via a long "connect" command line parameter. Date published : 2000-11-29 http://www.securityfocus.com/archive/1/140340 http://www.securityfocus.com/archive/1/140709
Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME environmental variable. Date published : 2000-11-29...
Buffer overflow in All-Mail 1.1 allows remote attackers to execute arbitrary commands via a long "MAIL FROM" or "RCPT TO" command. Date published : 2000-11-29 http://www.atstake.com/research/advisories/2000/a101200-2.txt http://www.securityfocus.com/bid/1789
Avirt Mail 4.0 and 4.2 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long "RCPT TO" or "MAIL FROM" command. Date published : 2000-11-29 http://archives.neohapsis.com/archives/bugtraq/2000-10/0301.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5397
Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS. Date published : 2000-11-29 http://www.securityfocus.com/bid/1142 http://www.securityfocus.com/archive/1/138550
Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain privileges....
Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server. Date published : 2000-11-29 http://www.securityfocus.com/bid/1771 http://archives.neohapsis.com/archives/bugtraq/2000-10/0134.html
Format string vulnerability in x-gw in TIS Firewall Toolkit (FWTK) allows local users to execute arbitrary commands via a malformed display name. Date published : 2000-11-29 http://archives.neohapsis.com/archives/bugtraq/2000-10/0376.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5420
Directory traversal vulnerability in Metertek pagelog.cgi allows remote attackers to read arbitrary files via a .. (dot dot) attack on the "name" or "display" parameter. Date published : 2000-11-29 http://www.securityfocus.com/bid/1864 http://archives.neohapsis.com/archives/bugtraq/2000-10/0422.html
Samba Web Administration Tool (SWAT) in Samba 2.0.7 allows remote attackers to cause a denial of service by repeatedly submitting a nonstandard URL in the GET HTTP request and forcing it to restart. Date...