Monthly Archive: May 2001

Buffer overflow in QPC QVT/Net Popd 4.20 in QVT/Net 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via (1) a long username, or (2) a long password....

Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header. Date published : 2001-05-24 http://www.securityfocus.com/bid/2493 http://marc.info/?l=bugtraq&m=98471253131191&w=2

Preview version of Timbuktu for Mac OS X allows local users to modify System Preferences without logging in via the About Timbuktu menu. Date published : 2001-05-24 http://archives.neohapsis.com/archives/bugtraq/2001-04/0337.html

upload_file.pl in DCForum 2000 1.0 allows remote attackers to upload arbitrary files without authentication by setting the az parameter to upload_file. Date published : 2001-05-24 http://www.securityfocus.com/bid/2611 http://archives.neohapsis.com/archives/bugtraq/2001-04/0269.html

dcboard.cgi in DCForum 2000 1.0 allows remote attackers to execute arbitrary commands by uploading a Perl program to the server and using a .. (dot dot) in the AZ parameter to reference the program....

The split key mechanism used by PGP 7.0 allows a key share holder to obtain access to the entire key by setting the "Cache passphrase while logged on" option and capturing the passphrases of...

Buffer overflow in Savant 3.0 web server allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long Host HTTP header. Date published : 2001-05-24 http://marc.info/?l=bugtraq&m=98655083231635&w=2

Buffer overflows in various CGI programs in the remote administration service for Trend Micro Interscan VirusWall 3.01 allow remote attackers to execute arbitrary commands. Date published : 2001-05-24 http://www.securityfocus.com/bid/2579 http://archives.neohapsis.com/archives/bugtraq/2001-04/0218.html

Vulnerability in iPlanet Web Server Enterprise Edition 4.x. Date published : 2001-05-24 http://www.iplanet.com/products/iplanet_web_enterprise/iwsalert4.16.html http://www.iplanet.com/products/iplanet_web_enterprise/iwsalert4.16.html

Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable. Date published : 2001-05-24 http://archives.neohapsis.com/archives/bugtraq/2001-04/0203.html

AdLibrary.pm in AdCycle 0.78b allows remote attackers to gain privileges to AdCycle via a malformed Agent: header in the HTTP request, which is inserted into a resulting SQL query that is used to verify...

BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id. Date published : 2001-05-24 http://www.securityfocus.com/bid/2609 http://marc.info/?l=bugtraq&m=98744422105430&w=2

FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password...

Directory traversal vulnerability in talkback.cgi program allows remote attackers to read arbitrary files via a .. (dot dot) in the article parameter. Date published : 2001-05-24 http://www.securityfocus.com/bid/2547 http://archives.neohapsis.com/archives/bugtraq/2001-04/0128.html