Monthly Archive: March 2002

cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key....

Office Shortcut Bar (OSB) in Windows 3.51 enables backup and restore permissions, which are inherited by programs such as File Manager that are started from the Shortcut Bar, which could allow local users to...

Buffer overflow in nftp FTP client version 1.40 allows remote malicious FTP servers to cause a denial of service, and possibly execute arbitrary commands, via a long response string. Date published : 2002-03-09 http://marc.info/?l=bugtraq&m=91127951426494&w=2...

Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in...

NukeNabber allows remote attackers to cause a denial of service by connecting to the NukeNabber port (1080) without sending any data, which causes the CPU usage to rise to 100% from the report.exe program...

An interaction between the AS/400 shared folders feature and Microsoft SNA Server 3.0 and earlier allows users to view each other’s folders when the users share the same Local APPC LU. Date published :...

fte-console in the fte package before 0.46b-4.1 does not drop root privileges, which allows local users to gain root access via the virtual console device. Date published : 2002-03-09 http://www.debian.org/security/1998/19981207 https://exchange.xforce.ibmcloud.com/vulnerabilities/1609

Metamail before 2.7-7.2 allows remote attackers to overwrite arbitrary files via an e-mail message containing a uuencoded attachment that specifies the full pathname for the file to be modified, which is processed by uuencode...

Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the one from which the applet was loaded, which violates the Java security model and could allow remote attackers...

Microsoft Office 98, Macintosh Edition, does not properly initialize the disk space used by Office 98 files and effectively inserts data from previously deleted files into the Office file, which could allow attackers to...

rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information. Date published : 2002-03-09 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/102 https://exchange.xforce.ibmcloud.com/vulnerabilities/1782

movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain privileges. Date published : 2002-03-09 http://www.codetalker.com/advisories/vendor/hp/hpsbux9701-047.html http://www.osvdb.org/8099

Direct Mailer feature in Microsoft Site Server 3.0 saves user domain names and passwords in plaintext in the TMLBQueue network share, which has insecure default permissions, allowing remote attackers to read the passwords and...

SGI Desktop Permissions Tool in IRIX 6.0.1 and earlier allows local users to modify permissions for arbitrary files and gain privileges. Date published : 2002-03-09 http://ciac.llnl.gov/ciac/bulletins/f-16.shtml ftp://patches.sgi.com/support/free/security/advisories/19950301-01-P373