Monthly Archive: January 2001

iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse. Date published...

The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote attackers to monitor X Windows events and gain privileges. Date published...

pollit.cgi in Poll It 2.01 and earlier uses data files that are located under the web document root, which allows remote attackers to access sensitive or private information. Date published : 2001-01-22 http://marc.info/?l=bugtraq&m=97236719315352&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/5794

pollit.cgi in Poll It 2.01 and earlier allows remote attackers to access administrative functions without knowing the real password by specifying the same value to the entered_password and admin_password parameters. Date published : 2001-01-22...

pollit.cgi in Poll It 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the poll_options parameter. Date published : 2001-01-22 http://marc.info/?l=bugtraq&m=97236719315352&w=2 http://www.cgi-world.com/pollit.html

Microsoft Virtual Machine (VM) in Internet Explorer 4.x and 5.x allows an unsigned applet to create and use ActiveX controls, which allows a remote attacker to bypass Internet Explorer’s security settings and execute arbitrary...

The default configuration of XFCE 3.5.1 bypasses the Xauthority access control mechanism with an "xhost + localhost" command in the xinitrc program, which allows local users to sniff X Windows traffic and gain privileges....

The default configuration of the Xsession file in Mandrake Linux 7.1 and 7.0 bypasses the Xauthority access control mechanism with an "xhost + localhost" command, which allows local users to sniff X Windows events...

Buffer overflow in OverView5 CGI program in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, in the SNMP service...

Vulnerabilities in database configuration scripts in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows local users to gain privileges, possibly via insecure permissions. Date published : 2001-01-22 http://www.securityfocus.com/bid/1682 http://archives.neohapsis.com/archives/bugtraq/2000-09/0140.html

CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to bypass LDAP authentication on the server if the LDAP server allows null passwords. Date published : 2001-01-22 http://www.securityfocus.com/bid/1708 http://www.cisco.com/warp/public/707/csecureacsnt-pub.shtml

Buffer overflow in CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a large TACACS+ packet. Date published : 2001-01-22 http://www.securityfocus.com/bid/1706 http://www.cisco.com/warp/public/707/csecureacsnt-pub.shtml

Buffer overflow in CSAdmin module in CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a large packet. Date published : 2001-01-22...

Directory traversal vulnerability in Allaire JRun 2.3 server allows remote attackers to read arbitrary files via the SSIFilter servlet. Date published : 2001-01-22 http://www.allaire.com/handlers/index.cfm?ID=17968&Method=Full http://marc.info/?l=bugtraq&m=97236692714978&w=2