Monthly Archive: January 2001

IMP 2.2 and earlier allows attackers to read and delete arbitrary files by modifying the attachment_name hidden form variable, which causes IMP to send the file to the attacker as an attachment. Date published...

Horde library 1.02 allows attackers to execute arbitrary commands via shell metacharacters in the "from" address. Date published : 2001-01-22 http://www.securityfocus.com/bid/1674 http://archives.neohapsis.com/archives/bugtraq/2000-09/0051.html

Buffer overflow in the automatic mail checking component of Pine 4.21 and earlier allows remote attackers to execute arbitrary commands via a long From: header. Date published : 2001-01-22 http://www.securityfocus.com/bid/1709 http://www.securityfocus.com/archive/1/84901

BrowseGate 2.80 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long Authorization or Referer MIME headers in the HTTP request. Date published : 2001-01-22 http://www.securityfocus.com/bid/1702 http://marc.info/?l=bugtraq&m=96956211605302&w=2

Format string vulnerability in screen 3.9.5 and earlier allows local users to gain root privileges via format characters in the vbell_msg initialization variable. Date published : 2001-01-22 http://www.securityfocus.com/bid/1641 http://www.securityfocus.com/archive/1/80178

Directory traversal vulnerability in ssi CGI program in thttpd 2.19 and earlier allows remote attackers to read arbitrary files via a "%2e%2e" string, a variation of the .. (dot dot) attack. Date published :...

named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by sending an SRV record to the server, aka the "srv bug." Date published : 2001-01-22 http://www.cert.org/advisories/CA-2000-20.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000338

named in BIND 8.2 through 8.2.2-P6 allows remote attackers to cause a denial of service by making a compressed zone transfer (ZXFR) request and performing a name service query on an authoritative record that...

IIS 5.0 allows remote attackers to execute arbitrary commands via a malformed request for an executable file whose name is appended with operating system commands, aka the "Web Server File Request Parsing" vulnerability. Date...

IIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root, and possibly execute arbitrary commands, via malformed URLs that contain UNICODE encoded characters, aka the "Web Server Folder Traversal"...

The default configuration of mod_perl for Apache as installed on Mandrake Linux 6.1 through 7.1 sets the /perl/ directory to be browseable, which allows remote attackers to list the contents of that directory. Date...

The mailto CGI script allows remote attacker to execute arbitrary commands via shell metacharacters in the emailadd form field. Date published : 2001-01-22 http://www.securityfocus.com/bid/1669 http://archives.neohapsis.com/archives/bugtraq/2000-09/0088.html

netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface statistics and possibly hide evidence of unusual network activities. Date published : 2001-01-22...

Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server. Date published : 2001-01-22 http://www.securityfocus.com/bid/1677 http://archives.neohapsis.com/archives/bugtraq/2000-09/0089.html