Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outside of the upload directory via a .. (dot dot) attack. Date published : 2002-03-15 http://www.securityfocus.com/bid/3937 http://online.securityfocus.com/archive/1/251763
CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260...
Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file. Date published : 2002-03-15 http://www.securityfocus.com/bid/3911 http://online.securityfocus.com/archive/1/251419
Domain Name Relay Daemon (dnrd) 2.10 and earlier allows remote malicious DNS sites to cause a denial of service and possibly execute arbitrary code via a long or malformed DNS reply, which is not...
CDRDAO 1.1.4 and 1.1.5 allows local users to read arbitrary files via the show-data command. Date published : 2002-03-15 http://marc.info/?l=bugtraq&m=101102759631000&w=2 http://marc.info/?l=bugtraq&m=101111688819855&w=2
CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file. Date published : 2002-03-15 http://www.securityfocus.com/bid/3865 http://marc.info/?l=bugtraq&m=101102759631000&w=2
Microsoft Internet Explorer 5.5 on Windows 98 allows remote web pages to cause a denial of service (hang) via extremely long values for form fields such as INPUT and TEXTAREA, which can be automatically...
Netopia Timbuktu Pro 6.0.1 and earlier allows remote attackers to cause a denial of service (crash) via a series of connections to one of the ports (1417 – 1420). Date published : 2002-03-15 http://www.securityfocus.com/bid/3918...
Telnet proxy in Avirt Gateway Suite 4.2 does not require authentication for connecting to the proxy system itself, which allows remote attackers to list file contents of the proxy and execute arbitrary commands via...
Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long header fields to the HTTP proxy, or (2) a long...
Buffer overflow in Chinput 3.0 allows local users to execute arbitrary code via a long HOME environment variable. Date published : 2002-03-15 http://www.securityfocus.com/bid/3896 http://online.securityfocus.com/archive/1/250815
ActivePython ActiveX control for Python in the AXScript package, when used in Internet Explorer, does not prevent a script from reading files from the client’s filesystem, which allows remote attackers to read arbitrary files...
Buffer overflow in efax 0.9 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -x argument. Date published : 2002-03-15 http://www.securityfocus.com/bid/3894 http://seclists.org/bugtraq/2002/Jan/0212.html
efax 0.9 and earlier, when installed setuid root, allows local users to read arbitrary files via the -d option, which prints the contents of the file in a warning message. Date published : 2002-03-15...