Buffer overflow in enq command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands via a long -M argument. Date published : 2001-05-07 http://www-1.ibm.com/support/search.wss?rs=0&q=IY08143&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY08287&apar=only
Buffer overflow in setsenv command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands via a long "x=" argument. Date published : 2001-05-07 http://www-1.ibm.com/support/search.wss?rs=0&q=IY08812&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY10721&apar=only
Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters...
cons.saver in Midnight Commander (mc) 4.5.42 and earlier does not properly verify if an output file descriptor is a TTY, which allows local users to corrupt files by creating a symbolic link to the...
Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services....
Buffer overflow in the web administration service for the HiNet LP5100 IP-phone allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request. Date published :...
WQuinn QuotaAdvisor 4.1 does not properly record file sizes if they are stored in alternative data streams, which allows users to bypass quota restrictions. Date published : 2001-05-07 http://www.securityfocus.com/bid/1724 http://archives.neohapsis.com/archives/bugtraq/2000-09//0331.html
WatchGuard SOHO firewall allows remote attackers to cause a denial of service via a flood of fragmented IP packets, which causes the firewall to drop connections and stop forwarding packets. Date published : 2001-05-07...
periodic in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows local users to overwrite arbitrary files via a symlink attack. Date published : 2001-05-07 http://www.securityfocus.com/bid/2325 http://www.kb.cert.org/vuls/id/626919
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname. Date published : 2001-05-07...
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to cause a denial of service by sending a long string of unprintable characters. Date published : 2001-05-07 http://archives.neohapsis.com/archives/bugtraq/2000-08/0488.html http://www.wftpd.com/bug_gpf.htm
Eudora mail client includes the absolute path of the sender’s host within a virtual card (VCF). Date published : 2001-05-07 http://www.securityfocus.com/bid/1653 http://www.securityfocus.com/archive/1/80888
Buffer overflow in SunFTP build 9(1) allows remote attackers to cause a denial of service or possibly execute arbitrary commands via a long GET request. Date published : 2001-05-07 http://www.securityfocus.com/bid/1638 http://archives.neohapsis.com/archives/bugtraq/2000-08/0408.html
When a Microsoft Office 2000 document is launched, the directory of that document is first used to locate DLL’s such as riched20.dll and msi.dll, which could allow an attacker to execute arbitrary commands by...