Monthly Archive: January 2001

Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string. Date published : 2001-01-22 http://www.securityfocus.com/bid/1675 http://archives.neohapsis.com/archives/bugtraq/2000-09/0089.html

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary directories via the PROPFIND HTTP request method. Date published : 2001-01-22 http://www.atstake.com/research/advisories/2000/a090700-3.txt http://www.securityfocus.com/bid/1656

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/. Date published : 2001-01-22...

Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages. Date published : 2001-01-22 http://archives.neohapsis.com/archives/bugtraq/2000-09/0193.html http://marc.info/?l=bugtraq&m=97726239017741&w=2

Buffer overflow in dvtermtype in Tridia Double Vision 3.07.00 allows local users to gain root privileges via a long terminal type argument. Date published : 2001-01-22 http://www.securityfocus.com/bid/1697 http://archives.neohapsis.com/archives/bugtraq/2000-09/0185.html

Race condition in the creation of a Unix domain socket in GNOME esound 0.2.19 and earlier allows a local user to change the permissions of arbitrary files and directories, and gain additional privileges, via...

Buffer overflow in listmanager earlier than 2.105.1 allows local users to gain additional privileges. Date published : 2001-01-22 http://archives.neohapsis.com/archives/freebsd/2000-09/0111.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5503

Vulnerability in an administrative interface utility for Allaire Spectra 1.0.1 allows remote attackers to read and modify sensitive configuration information. Date published : 2001-01-22 http://archives.neohapsis.com/archives/vendor/2000-q3/0059.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5466

Mailman 1.1 allows list administrators to execute arbitrary commands via shell metacharacters in the %(listname) macro expansion. Date published : 2001-01-22 http://www.securityfocus.com/bid/1667 http://archives.neohapsis.com/archives/bugtraq/2000-09/0040.html

The file upload capability in PHP versions 3 and 4 allows remote attackers to read arbitrary files by setting hidden form fields whose names match the names of internal PHP script variables. Date published...

Vulnerability in Microsoft Windows NT 4.0 allows remote attackers to cause a denial of service in IIS by sending it a series of malformed requests which cause INETINFO.EXE to fail, aka the "Invalid URL"...

YaBB Bulletin Board 9.1.2000 allows remote attackers to read arbitrary files via a .. (dot dot) attack. Date published : 2001-01-22 http://www.securityfocus.com/bid/1668 http://archives.neohapsis.com/archives/bugtraq/2000-09/0072.html

Multiple buffer overflows in eject on FreeBSD and possibly other OSes allows local users to gain root privileges. Date published : 2001-01-22 http://www.securityfocus.com/bid/1686 http://archives.neohapsis.com/archives/freebsd/2000-09/0110.html

Buffer overflow in the Still Image Service in Windows 2000 allows local users to gain additional privileges via a long WM_USER message, aka the "Still Image Service Privilege Escalation" vulnerability. Date published : 2001-01-22...