Monthly Archive: March 2002

Maxum Rumpus FTP Server 1.3.3 and 2.0.3 dev 3 allows a remote attacker to perform a denial of service (hang) by creating a directory name of a specific length. Date published : 2002-03-09 http://www.securityfocus.com/bid/2716...

Maxum Rumpus FTP Server 1.3.3 and 2.0.3 dev 3 stores passwords in plaintext in the "Rumpus User Database" file in the prefs folder, which could allow attackers to gain privileges on the server. Date...

Buffer overflow in man program in various distributions of Linux allows local user to execute arbitrary code as group man via a long -S option. Date published : 2002-03-09 http://www.securityfocus.com/bid/2711 http://archives.neohapsis.com/archives/bugtraq/2001-05/0087.html

Red Hat Linux 7.1 sets insecure permissions on swap files created during installation, which can allow a local attacker to gain additional privileges by reading sensitive information from the swap file, such as passwords....

Sun Chili!Soft ASP has weak permissions on various configuration files, which allows a local attacker to gain additional privileges and create a denial of service. Date published : 2002-03-09 http://www.securityfocus.com/bid/2409 http://archives.neohapsis.com/archives/bugtraq/2001-02/0378.html

Centrinity First Class Internet Services 5.50 allows for the circumventing of the default ‘spam’ filters via the presence of ‘‘ in the ‘From:’ field, which allows remote attackers to send spoofed email with the...

Directory traversal vulnerability in MIMAnet viewsrc.cgi 2.0 allows a remote attacker to read arbitrary files via a ‘..’ (dot dot) attack in the ‘loc’ variable. Date published : 2002-03-09 http://www.securityfocus.com/bid/2762 http://archives.neohapsis.com/archives/bugtraq/2001-05/0231.html

HP Event Correlation Service (ecsd) as included with OpenView Network Node Manager 6.1 allows a remote attacker to gain addition privileges via a buffer overflow attack in the ‘-restore_config’ command line parameter. Date published...

Microsoft Word 2000 does not check AutoRecovery (.asd) files for macros, which allows a local attacker to execute arbitrary macros with the user ID of the Word user. Date published : 2002-03-09 http://www.securityfocus.com/bid/2760 http://support.microsoft.com/support/kb/articles/Q274/2/28.asp

vi as included with SCO OpenServer 5.0 – 5.0.6 allows a local attacker to overwrite arbitrary files via a symlink attack. Date published : 2002-03-09 http://www.securityfocus.com/bid/2752 http://archives.neohapsis.com/archives/bugtraq/2001-05/0220.html

O’Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character. Date published : 2002-03-09 http://www.securityfocus.com/bid/2488 http://archives.neohapsis.com/archives/bugtraq/2001-03/0236.html

ftpdownload in Computer Associates InoculateIT 6.0 allows a local attacker to overwrite arbitrary files via a symlink attack on /tmp/ftpdownload.log . Date published : 2002-03-09 http://www.securityfocus.com/bid/2778 http://archives.neohapsis.com/archives/bugtraq/2001-05/0245.html

The web management service on Cisco Content Service series 11000 switches (CSS) before WebNS 4.01B29s or WebNS 4.10B17s allows a remote attacker to gain additional privileges by directly requesting the web management URL instead...

The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or...