Monthly Archive: November 2001

Directory traversal vulnerability in HTTP server for Alchemy Eye and Alchemy Network Monitor allows remote attackers to execute arbitrary commands via an HTTP request containing (1) a .. in versions 2.0 through 2.6.18, or...

HTTP server in Alchemy Eye and Alchemy Network Monitor 1.9x through 2.6.18 is enabled without authentication by default, which allows remote attackers to obtain network monitoring logs with potentially sensitive information by directly requesting...

Red Hat Stronghold 2.3 to 3.0 allows remote attackers to retrieve system information via an HTTP GET request to (1) stronghold-info or (2) stronghold-status. Date published : 2001-11-28 http://www.securityfocus.com/bid/3577 http://marc.info/?l=bugtraq&m=100654958131854&w=2

Buffer overflow in pppattach and other linked PPP utilities in Caldera Open Unix 8.0 and UnixWare 7.1.0 and 7.1.1 allows local users to gain privileges. Date published : 2001-11-22 http://marc.info/?l=bugtraq&m=100562386012917&w=2 ftp://stage.caldera.com/pub/security/openunix/CSSA-2001-SCO.32/

Common Cryptographic Architecture (CCA) in IBM 4758 allows an attacker with physical access to the system and Combine_Key_Parts permissions, to steal DES and 3DES keys by using a brute force attack to create a...

Buffer overflow in db_loader in ClearCase 4.2 and earlier allows local users to gain root privileges via a long TERM environment variable. Date published : 2001-11-22 http://www.securityfocus.com/bid/3523 http://marc.info/?l=bugtraq&m=100528623328037&w=2

PHP-Nuke 5.2 allows remote attackers to copy and delete arbitrary files by calling case.filemanager.php with admin.php as an argument, which sets the $PHP_SELF variable and makes it appear that case.filemanager.php is being called by...

Directory traversal vulnerability in Entrust GetAccess allows remote attackers to read arbitrary files via a .. (dot dot) in the locale parameter to (1) helpwin.gas.bat or (2) AboutBox.gas.bat. Date published : 2001-11-22 http://www.securityfocus.com/bid/3508 http://archives.neohapsis.com/archives/bugtraq/2001-11/0022.html

viralator CGI script in Viralator 0.9pre1 and earlier allows remote attackers to execute arbitrary code via a URL for a file being downloaded, which is insecurely passed to a call to wget. Date published...

join.cfm in e-Zone Media Fuse Talk allows a local user to execute arbitrary SQL code via a semi-colon (;) in a form variable. Date published : 2001-11-22 http://www.securityfocus.com/bid/3496 http://marc.info/?l=bugtraq&m=100463832209281&w=2

Lotus Domino Web Server 5.x allows remote attackers to gain sensitive information by accessing the default navigator $defaultNav via (1) URL encoding the request, or (2) directly requesting the ReplicaID. Date published : 2001-11-22...

Vulnerability in DECwindows Motif Server on OpenVMS VAX or Alpha 6.2 through 7.3, and SEVMS VAX or Alpha 6.2, allows local users to gain access to unauthorized resources. Date published : 2001-11-22 http://www.securityfocus.com/bid/3492 http://ftp.support.compaq.com/patches/.new/html/SSRT0738.shtml

Vulnerability in (1) Book of guests and (2) Post it! allows remote attackers to execute arbitrary code via shell metacharacters in the email parameter. Date published : 2001-11-22 http://www.securityfocus.com/bid/3483 http://www.securityfocus.com/bid/3485

Directory traversal vulnerability in Search.cgi in Leoboard LB5000 LB5000II 1029 and earlier allows remote attackers to overwrite files and gain privileges via .. (dot dot) sequences in the amembernamecookie cookie. Date published : 2001-11-22...