Directory traversal vulnerability in War FTP 1.67.04 allows remote attackers to list directory contents and possibly read files via a "dir *./../.." command. Date published : 2001-05-07 http://www.securityfocus.com/bid/2444 http://marc.info/?l=bugtraq&m=98390925726814&w=2
Vulnerability in Mailman 2.0.1 and earlier allows list administrators to obtain user passwords. Date published : 2001-05-07 http://archives.neohapsis.com/archives/bugtraq/2001-03/0031.html
Joe text editor 2.8 searches the current working directory (CWD) for the .joerc configuration file, which could allow local users to gain privileges of other users by placing a Trojan Horse .joerc file into...
Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections. Date published : 2001-05-07 http://www.cisco.com/warp/public/707/ios-tcp-isn-random-pub.shtml
VERITAS Cluster Server (VCS) 1.3.0 on Solaris allows local users to cause a denial of service (system panic) via the -L option to the lltstat command. Date published : 2001-05-07 http://archives.neohapsis.com/archives/bugtraq/2001-02/0528.html http://seer.support.veritas.com/docs/234326.htm
Buffer overflow in IPSEC authentication mechanism for OpenBSD 2.8 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a malformed Authentication header (AH) IPv4 option. Date...
Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges. Date published : 2001-05-07 http://archives.neohapsis.com/archives/bugtraq/2001-02/0414.html http://archives.neohapsis.com/archives/bugtraq/2001-02/0437.html
Vulnerability in linkeditor in HP MPE/iX 6.5 and earlier allows local users to gain privileges. Date published : 2001-05-07 http://archives.neohapsis.com/archives/hp/2001-q1/0050.html https://exchange.xforce.ibmcloud.com/vulnerabilities/6223
kicq IRC client 1.0.0, and possibly later versions, allows remote attackers to execute arbitrary commands via shell metacharacters in a URL. Date published : 2001-05-07 http://archives.neohapsis.com/archives/bugtraq/2001-02/0276.html http://archives.neohapsis.com/archives/bugtraq/2001-02/0536.html
The i386_set_ldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USER_LDT kernel option is enabled, does not validate a call gate target, which allows local users to gain...
NM debug in HP MPE/iX 6.5 and earlier does not properly handle breakpoints, which allows local users to gain privileges. Date published : 2001-05-07 http://archives.neohapsis.com/archives/hp/2001-q1/0050.html http://www.osvdb.org/6032
Vulnerability in Software Distributor SD-UX in HP-UX 11.0 and earlier allows local users to gain privileges. Date published : 2001-05-07 http://archives.neohapsis.com/archives/hp/2001-q1/0069.html http://www.osvdb.org/6033
Buffer overflow in Lotus Domino Mail Server 5.0.5 and earlier allows a remote attacker to crash the server or execute arbitrary code via a long "RCPT TO" command. Date published : 2001-05-07 http://www.securityfocus.com/bid/2283 http://archives.neohapsis.com/archives/bugtraq/2001-01/0360.html
ssh-keygen in ssh 1.2.27 – 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES-1 magic phrase generated by another user, which the attacker can use to decrypt that user’s private key file....