Monthly Archive: March 2002

Memory leak in NNTP service in Windows NT 4.0 and Windows 2000 allows remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed posts. Date published : 2002-03-09...

Buffer overflow in Microsoft Windows Media Player 7.1 and earlier allows remote attackers to execute arbitrary commands via a malformed Windows Media Station (.NSC) file. Date published : 2002-03-09 http://www.securityfocus.com/bid/3105 http://www.securityfocus.com/archive/1/187001

Memory leak in Terminal servers in Windows NT and Windows 2000 allows remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed Remote Desktop Protocol (RDP) requests to...

Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers to execute arbitrary commands via a malicious HTML e-mail message or web page. Date published : 2002-03-09 http://www.securityfocus.com/bid/3025 http://marc.info/?l=bugtraq&m=99496431214078&w=2

HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL. Date published...

Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environmental variable. Date published : 2002-03-09 http://www.ciac.org/ciac/bulletins/l-123.shtml http://www-1.ibm.com/services/continuity/recover1.nsf/advisories/85256A3400529A8685256A8D00804A37/$file/oar271.txt

Spearhead NetGAP 200 and 300 before build 78 allow a remote attacker to bypass file blocking and content inspection via specially encoded URLs which include ‘%’ characters. Date published : 2002-03-09 http://www.securityfocus.com/bid/2798 http://archives.neohapsis.com/archives/bugtraq/2001-05/0256.html

OpenSSH version 2.9 and earlier, with X forwarding enabled, allows a local attacker to delete any file named ‘cookies’ via a symlink attack. Date published : 2002-03-09 http://www.securityfocus.com/bid/2825 http://archives.neohapsis.com/archives/bugtraq/2001-06/0007.html

Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) version 7.x includes a debug version of FNDPUB11I.DLL, which logs the APPS schema password in cleartext in a debug file, which allows local users to...

DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will create an extra...

Buffer overflow in the Xview library as used by mailtool in Solaris 8 and earlier allows a local attacker to gain privileges via the OPENWINHOME environment variable. Date published : 2002-03-09 http://archives.neohapsis.com/archives/bugtraq/2001-05/0258.html

Buffer overflow in dsh in dqs 3.2.7 in SuSE Linux 7.0 and earlier, and possibly other operating systems, allows local users to gain privileges via a long first command line argument. Date published :...

Format string vulnerability in Gnu Privacy Guard (aka GnuPG or gpg) 1.05 and earlier can allow an attacker to gain privileges via format strings in the original filename that is stored in an encrypted...

Oracle listener before Oracle 9i allows attackers to cause a denial of service by repeatedly sending the first portion of a fragmented Oracle command without sending the remainder of the command, which causes the...