Buffer overflow in gr_osview in IRIX 6.2 and 6.3 allows local users to gain privileges via a long -D option. Date published : 2004-09-01 http://www.securityfocus.com/bid/1526 http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558@ix.put.poznan.pl
uagentsetup in ARCServeIT Client Agent 6.62 does not properly check for the existence or ownership of a temporary file which is moved to the agent.cfg configuration file, which allows local users to execute arbitrary...
Bajie HTTP web server 0.30a allows remote attackers to read arbitrary files via a URL that contains a "….", a variant of the dot dot directory traversal attack. Date published : 2004-09-01 http://www.securityfocus.com/bid/1522 http://archives.neohapsis.com/archives/bugtraq/2000-07/0426.html
The logrotate script for OpenLDAP before 1.2.11 in Conectiva Linux sends an improper signal to the kernel log daemon (klogd) and kills it. Date published : 2004-09-01 http://archives.neohapsis.com/archives/bugtraq/2000-07/0379.html https://exchange.xforce.ibmcloud.com/vulnerabilities/5036
Unknown vulnerability in Generic-NQS (GNQS) allows local users to gain root privileges. Date published : 2004-09-01 http://www.securityfocus.com/bid/1842 http://archives.neohapsis.com/archives/bugtraq/2000-03/0236.html
Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory. Date published : 2004-09-01 http://marc.info/?l=bugtraq&m=98653252326445&w=2 http://marc.info/?l=bugtraq&m=98684172109474&w=2
WFTPD 3.00 allows remote attackers to read arbitrary files by uploading a (link) file that ends in a ".lnk." extension, which bypasses WFTPD’s check for a ".lnk" extension. Date published : 2004-09-01 http://www.securityfocus.com/bid/2957 http://www.securityfocus.com/archive/1/194442
The checkAccess function in PHPSlice 0.1.4, and all other versions between 0.1.1 and 0.1.6, does not properly verify the administrative access level, which could allow remote attackers to gain privileges. Date published : 2004-09-01...
Cross-site scripting vulnerability in Namazu 2.0.9 and earlier allows remote attackers to execute arbitrary Javascript as other web users via an error message that is returned when an invalid index file is specified in...
Cross-site scripting vulnerability in Namazu 2.0.8 and earlier allows remote attackers to execute arbitrary Javascript as other web users via the index file name that is displayed when displaying hit numbers. Date published :...
Cross-site scripting vulnerability in namazu.cgi for Namazu 2.0.7 and earlier allows remote attackers to execute arbitrary Javascript as other web users via the lang parameter. Date published : 2004-09-01 http://search.namazu.org/ml/namazu-devel-ja/msg02114.html http://marc.info/?l=bugtraq&w=2&r=1&s=namazu&q=b
Windows 2000 allows local users to cause a denial of service and possibly gain privileges by setting a hardware breakpoint that is handled using global debug registers, which could cause other processes to terminate...
Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code. Date published : 2004-09-01 ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-2001.03 http://www.ciac.org/ciac/bulletins/l-103.shtml
The change password option in the Windows Security interface for Windows 2000 allows attackers to use the option to attempt to change passwords of other users on other systems or identify valid accounts by...