Monthly Archive: January 2001

Multiple buffer overflows in LBNL tcpdump allow remote attackers to execute arbitrary commands. Date published : 2001-01-22 http://www.securityfocus.com/bid/1870

eWave ServletExec 3.0C and earlier does not restrict access to the UploadServlet Java/JSP servlet, which allows remote attackers to upload files and execute arbitrary commands. Date published : 2001-01-22 http://www.securityfocus.com/bid/1876 http://marc.info/?l=bugtraq&m=97306581513537&w=2

The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending...

Search engine in Ultraseek 3.1 and 3.1.10 (aka Inktomi Search) allows remote attackers to cause a denial of service via a malformed URL. Date published : 2001-01-22 http://www.securityfocus.com/bid/1866 http://marc.info/?l=bugtraq&m=97301487015664&w=2

shred 1.0 file wiping utility does not properly open a file for overwriting or flush its buffers, which prevents shred from properly replacing the file’s data and allows local users to recover the file....

The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory, which allows remote attackers to read package documentation and obtain system configuration information via an HTTP request for...

Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText parameter. Date published : 2001-01-22...

Buffer overflow in catopen() function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to gain root privileges via a long environmental variable. Date published : 2001-01-22 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:53.catopen.asc http://www.osvdb.org/6070

Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters. Date published : 2001-01-22 http://www.securityfocus.com/bid/1764 http://www.securityfocus.com/archive/1/137890

I-gear 3.5.7 and earlier does not properly process log entries in which a URL is longer than 255 characters, which allows an attacker to cause reporting errors. Date published : 2001-01-22 http://archives.neohapsis.com/archives/ntbugtraq/2000-q4/0048.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5791

Microsoft Exchange Server 5.5 does not properly handle a MIME header with a blank charset specified, which allows remote attackers to cause a denial of service via a charset="" command, aka the "Malformed MIME...

Directory traversal vulnerability in html_web_store.cgi and web_store.cgi CGI programs in eXtropia WebStore allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page parameter. Date published : 2001-01-22 http://www.securityfocus.com/bid/1774...

Format string vulnerability in OpenBSD photurisd allows local users to execute arbitrary commands via a configuration file directory name that contains formatting characters. Date published : 2001-01-22 http://marc.info/?l=bugtraq&m=97068555106135&w=2 http://www.osvdb.org/6123

NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client...