The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command. Date published : 2001-05-07 ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-2000.02...
The Panda Antivirus console on port 2001 allows local users to execute arbitrary commands without authentication via the CMD command. Date published : 2001-05-07 http://www.securityfocus.com/bid/1359 http://archives.neohapsis.com/archives/bugtraq/2000-06/0164.html
libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro. Date published : 2001-05-07 http://www.securityfocus.com/bid/1369 http://archives.neohapsis.com/archives/bugtraq/2000-06/0170.html
The kernel in FreeBSD 3.2 follows symbolic links when it creates core dump files, which allows local attackers to modify arbitrary files. Date published : 2001-05-07 http://www.osvdb.org/6084
Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data. Date...
Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages. Date published : 2001-05-07 ftp://ftp.sco.com/SSE/security_bulletins/SB-99.09b
Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service. Date published : 2001-05-07 ftp://ftp.sco.com/SSE/security_bulletins/SB-99.13a
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges. Date published : 2001-05-07 ftp://ftp.sco.com/SSE/security_bulletins/SB-99.10a
traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks. Date published : 2001-05-07 http://marc.info/?l=bugtraq&m=91893782027835&w=2 ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA1999-004.txt.asc
traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for...
Vulnerability in OpenBSD 2.6 allows a local user to change interface media configurations. Date published : 2001-05-07 http://www.openbsd.org/errata.html#ifmedia http://www.osvdb.org/7540
IP fragment assembly in OpenBSD 2.4 allows a remote attacker to cause a denial of service by sending a large number of fragmented packets. Date published : 2001-05-07 http://www.openbsd.org/errata24.html#maxqueue http://www.osvdb.org/7539
The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service. Date published : 2001-05-07 http://www.openbsd.org/errata24.html#trctrap http://www.osvdb.org/6126
Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges. Date published : 2001-05-07 ftp://ftp.sco.com/SSE/security_bulletins/SB-99.08a