Buffer overflow in pam_localuser PAM module in Red Hat Linux 7.x and 6.x allows attackers to gain privileges. Date published : 2001-01-22 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000358 http://www.linux-mandrake.com/en/security/MDKSA-2000-082.php3
Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field. Date published : 2001-01-22 http://marc.info/?l=bugtraq&m=97500270012529&w=2 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000344
telnetd in FreeBSD 4.2 and earlier, and possibly other operating systems, allows remote attackers to cause a denial of service by specifying an arbitrary large file in the TERMCAP environmental variable, which consumes resources...
WatchGuard Firebox II allows remote attackers to cause a denial of service by flooding the Firebox with a large number of FTP or SMTP requests, which disables proxy handling. Date published : 2001-01-22 http://www.securityfocus.com/bid/1953...
Real Networks RealServer 7 and earlier allows remote attackers to obtain portions of RealServer’s memory contents, possibly including sensitive information, by accessing the /admin/includes/ URL. Date published : 2001-01-22 http://www.securityfocus.com/bid/1957 http://archives.neohapsis.com/archives/bugtraq/2000-11/0236.html
Netopia ISDN Router 650-ST before 4.3.5 allows remote attackers to read system logs without authentication by directly connecting to the login screen and typing certain control characters. Date published : 2001-01-22 http://www.securityfocus.com/bid/1952 http://marc.info/?l=bugtraq&m=97440068130051&w=2
Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes. Date published...
OpenSSH SSH client before 2.3.0 does not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access to the X11 display and sniff X11 events, or gain access...
ppp utility in FreeBSD 4.1.1 and earlier does not properly restrict access as specified by the "nat deny_incoming" command, which allows remote attackers to connect to the target system. Date published : 2001-01-22 http://www.securityfocus.com/bid/1974...
ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a Trojan horse library into...
ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack. Date published : 2001-01-22 http://www.securityfocus.com/bid/1990 http://www.calderasystems.com/support/security/advisories/CSSA-2000-041.0.txt
Buffer overflow in RegAPI.DLL used by Windows NT 4.0 Terminal Server allows remote attackers to execute arbitrary commands via a long username, aka the "Terminal Server Login Buffer Overflow" vulnerability. Date published : 2001-01-22...
The installation of VolanoChatPro chat server sets world-readable permissions for its configuration file and stores the server administrator passwords in plaintext, which allows local users to gain privileges on the server. Date published :...
Recourse ManTrap 1.6 allows attackers to cause a denial of service via a sequence of commands that navigate into and out of the /proc/self directory and executing various commands such as ls or pwd....