Monthly Archive: March 2002

Vulnerability in MasqMail before 0.1.15 allows local users to gain privileges via piped aliases. Date published : 2002-03-15 ftp://innominate.org/oku/masqmail/ChangeLog-stable

Check Point Firewall-1 3.0b through 4.0 SP1 follows symlinks and creates a world-writable temporary .cpp file when compiling Policy rules, which could allow local users to gain privileges or modify the firewall policy. Date...

AmTote International homebet program stores the homebet.log file in the homebet/ virtual directory, which allows remote attackers to steal account and PIN numbers. Date published : 2002-03-15 http://www.securityfocus.com/bid/3370 http://archives.neohapsis.com/archives/bugtraq/2001-09/0235.html

keyinit in S/Key does not require authentication to initialize a one-time password sequence, which allows an attacker who has gained privileges to a user account to create new one-time passwords for use in other...

Directory traversal vulnerability in index.php in PhpMyExplorer before 1.2.1 allows remote attackers to read arbitrary files via a ..%2F (modified dot dot) in the chemin parameter. Date published : 2002-03-15 http://archives.neohapsis.com/archives/bugtraq/2001-08/0408.html http://archives.neohapsis.com/archives/bugtraq/2001-08/0418.html

Intego FileGuard 4.0 uses weak encryption to store user information and passwords, which allows local users to gain privileges by decrypting the information, e.g., with the Disengage tool. Date published : 2002-03-15 http://www.securityfocus.com/bid/3213 http://www.securemac.com/fileguard.php#disengage

Buffer overflow in uucp utilities in UnixWare 7 allows local users to execute arbitrary code via long command line arguments to (1) uucp, (2) uux, (3) bnuconvert, (4) uucico, (5) uuxcmd, or (6) uuxqt....

Buffer overflow in Munica Corporation NetSQL 1.0 allows remote attackers to execute arbitrary code via a long CONNECT argument to port 6500. Date published : 2002-03-15 http://www.securityfocus.com/bid/2885

load_prefs.php and supporting include files in SquirrelMail 1.0.4 and earlier do not properly initialize certain PHP variables, which allows remote attackers to (1) view sensitive files via the config_php and data_dir options, and (2)...

Baltimore Technologies WEBsweeper 4.0 and 4.02 does not properly filter Javascript from HTML pages, which could allow remote attackers to bypass the filtering via (1) an extra leading < and one or more characters...

TYPSoft FTP 0.95 allows remote attackers to cause a denial of service (CPU consumption) via a "../../*" argument to (1) STOR or (2) RETR. Date published : 2002-03-15 http://www.securityfocus.com/bid/3409 http://www.securityfocus.com/archive/1/219167

Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote attackers to cause a denial of service (hang) using PHP IMAP clients. Date published : 2002-03-15 http://www.securityfocus.com/bid/3260 http://www.securityfocus.com/archive/1/211056

Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested URL, including (1) a // (double slash),...

Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.53 allows remote attackers to access sensitive information from the hotdownload directory without authentication, such as the ofcscan.ini configuration file, which contains a weakly encrypted password....