Monthly Archive: April 2003

uuxqt in Taylor UUCP package does not properly remove dangerous long options, which allows local users to gain privileges by calling uux and specifying an alternate configuration file with the –config option. Date published...

Buffer overflow in Linux xinetd 2.1.8.9pre11-1 and earlier may allow remote attackers to execute arbitrary code via a long ident response, which is not properly handled by the svc_logprint function. Date published : 2003-04-02...

Acme.Serve 1.7, as used in Cisco Secure ACS Unix and possibly other products, allows remote attackers to read arbitrary files by prepending several / (slash) characters to the URI. Date published : 2003-04-02 http://www.securityfocus.com/bid/2809...

Internet Explorer 5.5 allows remote attackers to bypass security restrictions via malformed URLs that contain dotless IP addresses, which causes Internet Explorer to process the page in the Intranet Zone, which may have fewer...

Buffer overflow in Novell GroupWise 6.0.1 Support Pack 1 allows remote attackers to execute arbitrary code via a long RCPT TO command. Date published : 2003-04-02 http://www.securityfocus.com/bid/5313 http://archives.neohapsis.com/archives/bugtraq/2002-07/0296.html

The Administration console for Abyss Web Server 1.0.3 allows remote attackers to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character. Date published...

Directory traversal vulnerability in Abyss Web Server 1.0.3 allows remote attackers to read arbitrary files via .. (dot-dot backslash) sequences in an HTTP GET request. Date published : 2003-04-02 http://www.securityfocus.com/bid/5547 http://archives.neohapsis.com/archives/bugtraq/2002-08/0229.html

Buffer overflow in the Web Messaging daemon for Ipswitch IMail before 7.12 allows remote attackers to execute arbitrary code via a long HTTP GET request for HTTP/1.0. Date published : 2003-04-02 http://www.securityfocus.com/bid/5323 http://archives.neohapsis.com/archives/bugtraq/2002-07/0326.html

Cross-site scripting (XSS) vulnerability in Blue Coat Systems (formerly CacheFlow) CacheOS on Client Accelerator 4.1.06, Security Gateway 2.1.02, and Server Accelerator 4.1.06 allows remote attackers to inject arbitrary web script or HTML via a...

Buffer overflow in Van Dyke SecureCRT SSH client before 3.4.6, and 4.x before 4.0 beta 3, allows an SSH server to execute arbitrary code via a long SSH1 protocol version string. Date published :...

Buffer overflow in SmartMax MailMax POP3 daemon (popmax) 4.8 allows remote attackers to execute arbitrary code via a long USER command. Date published : 2003-04-02 http://www.securityfocus.com/bid/5285 http://archives.neohapsis.com/archives/bugtraq/2002-07/0245.html

Directory traversal vulnerability in Pablo FTP server 1.0 build 9 and earlier allows remote authenticated users to list arbitrary directories via ".." (dot-dot backslash) sequences in a LIST command. Date published : 2003-04-02 http://www.securityfocus.com/bid/5283...

Cross-site scripting (XSS) vulnerability in W3C Jigsaw Proxy Server before 2.2.1 allows remote attackers to execute arbitrary script via a URL that contains a reference to a nonexistent host followed by the script, which...

Format string vulnerability in TrACESroute 6.0 GOLD (aka NANOG traceroute) allows local users to execute arbitrary code via the -T (terminator) command line argument. Date published : 2003-04-02 http://www.securityfocus.com/bid/4956 http://archives.neohapsis.com/archives/bugtraq/2002-06/0040.html