Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges. Date published : 2001-05-07 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000365 http://www.debian.org/security/2000/20001219
Oracle XSQL servlet 1.0.3.0 and earlier allows remote attackers to execute arbitrary Java code by redirecting the XSQL server to another source via the xml-stylesheet parameter in the xslt stylesheet. Date published : 2001-05-07...
exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary file. Date published : 2001-05-07 http://marc.info/?l=bugtraq&m=97846489313059&w=2 http://marc.info/?l=bugtraq&m=97958594330100&w=2
Buffer overflow in exrecover in Solaris 2.6 and earlier possibly allows local users to gain privileges via a long command line argument. Date published : 2001-05-07 http://www.securityfocus.com/bid/2179 http://marc.info/?l=bugtraq&m=97908386502156&w=2
Directory traversal vulnerability in eXtropia bbs_forum.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the file parameter. Date published : 2001-05-07 http://www.securityfocus.com/bid/2177 http://marc.info/?l=bugtraq&m=97905792214999&w=2
useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a symlink attack. Date published : 2001-05-07 http://www.securityfocus.com/bid/2196 http://marc.info/?l=bugtraq&m=97916374410647&w=2
getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack. Date published : 2001-05-07 http://www.securityfocus.com/bid/2194 http://marc.info/?l=bugtraq&m=97916374410647&w=2
rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack. Date published : 2001-05-07 http://www.securityfocus.com/bid/2195 http://marc.info/?l=bugtraq&m=97916374410647&w=2
sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack. Date published : 2001-05-07 http://www.securityfocus.com/bid/2191 http://marc.info/?l=bugtraq&m=97916374410647&w=2
gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack. Date published : 2001-05-07 http://www.securityfocus.com/bid/2188 http://marc.info/?l=bugtraq&m=97916374410647&w=2
Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter. Date published : 2001-05-07 http://www.securityfocus.com/bid/2193 http://marc.info/?l=bugtraq&m=97934312727101&w=2
Format string vulnerability in splitvt before 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line argument. Date published : 2001-05-07 http://www.securityfocus.com/bid/2210 http://marc.info/?l=bugtraq&m=97958269320974&w=2
Buffer overflow in jaZip Zip/Jaz drive manager allows local users to gain root privileges via a long DISPLAY environmental variable. Date published : 2001-05-07 http://www.securityfocus.com/bid/2209 http://archives.neohapsis.com/archives/bugtraq/2001-01/0228.html
rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporary file. Date published : 2001-05-07 http://www.securityfocus.com/bid/2207 http://archives.neohapsis.com/archives/bugtraq/2001-01/0226.html