Monthly Archive: May 2001

Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows attackers to read file attributes outside of the web root via the (1) SIZE and (2) MDTM commands when the "show relative paths" option...

Buffer overflow in Netscape SmartDownload 1.3 allows remote attackers (malicious web pages) to execute arbitrary commands via a long URL. Date published : 2001-05-24 http://www.atstake.com/research/advisories/2001/a041301-1.txt

Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings. Date published...

Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the STAT command, which uses glob to generate long strings. Date published...

Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the...

Internet Explorer 5.5 and earlier does not properly verify the domain of a frame within a browser window, which allows remote web site operators to read certain files on the client by sending information...

Buffer overflows in Microsoft Windows Media Player 7 and earlier allow remote attackers to execute arbitrary commands via (1) a long version tag in an .ASX file, or (2) a long banner tag, a...

Buffer overflow in Internet Mail Service (IMS) for Microsoft Exchange 5.5 and 5.0 allows remote attackers to conduct a denial of service via AUTH or AUTHINFO commands. Date published : 2001-05-07 http://www.ciac.org/ciac/bulletins/i-080.shtml http://xforce.iss.net/alerts/advise4.php

The Syntax Checker in ColdFusion Server 4.0 allows remote attackers to conduct a denial of service. Date published : 2001-05-07 http://www.allaire.com/handlers/index.cfm?ID=8739&Method=Full http://www.osvdb.org/3236

An example application in ColdFusion Server 4.0 allows remote attackers to view source code via the sourcewindow.cfm file. Date published : 2001-05-07 http://www.allaire.com/handlers/index.cfm?ID=8739&Method=Full

The GetFile.cfm file in Allaire Forums allows remote attackers to read files through a parameter to GetFile.cfm. Date published : 2001-05-07 http://www.allaire.com/handlers/index.cfm?ID=9602&Method=Full http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00332.html

Undocumented ColdFusion Markup Language (CFML) tags and functions in the ColdFusion Administrator allow users to gain additional privileges. Date published : 2001-05-07 http://www.allaire.com/handlers/index.cfm?ID=11714&Method=Full http://www.securityfocus.com/bid/550

Netscape Enterprise 3.5.1 and FastTrack 3.01 servers allow a remote attacker to view source code to scripts by appending a %20 to the script’s URL. Date published : 2001-05-07

Buffer overflow in Lotus Notes LDAP (NLDAP) allows an attacker to conduct a denial of service through the ldap_search request. Date published : 2001-05-07 http://www.securityfocus.com/bid/601 http://www.ciac.org/ciac/bulletins/j-061.shtml