| OSVDB ID | Disclosure Date | Title |
|---|
|
8158
Description:
Sun Microsystems Solaris contains a flaw related to the ufsrestore utility that may allow an attacker to become root. No further details have been provided.
|
1998-04-29
|
Solaris ufsrestore Local Overflow
|
|
8728
Description:
(Description Provided by CVE) : Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server.
|
1998-04-29
|
Solaris rpc.mountd File Existence Information Disclosure
|
|
17183
Description:
Unknown / Incomplete
|
1998-04-28
|
Solaris ff.core Unspecified Issue
|
|
6332
Description:
(Description Provided by CVE) : suidexec in suidmanager 0.18 on Debian 2.0 allows local users to gain root privileges by specifying a malicious program on the command line.
|
1998-04-28
|
suidmanager suidexec Command Line Privilege Escalation
|
|
714
Description:
Windows contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when documented Windows API calls (such as the LsaQueryInformationPolicy() function) are used to query the system and disclose the SID. Used in conjunction with other function, a remote attacker can then enumerate account information, resulting in a loss of confidentiality.
|
1998-04-28
|
Microsoft Windows NT LsaQueryInformationPolicy() Function SID User Account Disclosure
|
|
8517
Description:
The Xaw library contains a flaw that may allow a local malicious user to overflow a buffer associated to the inputMethod and preeditType resources. The issue is triggered when a specially crafted string containing machine code is used to set a specific resource in any application utilizing the Xaw library. It is possible that the flaw may allow the user to gain root privileges by spawning a setuid-root shell resulting in a loss of integrity.
|
1998-04-27
|
X11 Xaw Library Local Overflow
|
|
8518
Description:
The xterm terminal emulator contains a flaw that may allow a local malicious user to overflow a buffer associated to the inputMethod, preeditType, and *Keymap resources. The issue is triggered when a specially crafted string containing machine code is used to set a specific resource. It is possible that the flaw may allow the user to gain root privileges by spawning a setuid-root shell resulting in a loss of system integrity.
|
1998-04-27
|
X11 / XFree86 xterm Local Overflow
|
|
1003
Description:
(Description Provided by CVE) : rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.
|
1998-04-22
|
Solaris rpc.statd RPC Call Relaying
|
|
901
Description:
(Description Provided by CVE) : HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests.
|
1998-04-21
|
HP OpenMail Malformed Print Request Arbitrary Command Execution
|
|
5729
Description:
Linux contains a flaw that may allow a remote denial of service. The issue is triggered when specially crafted IP fragments are sent to target, and will result in loss of availability for the platform.
|
1998-04-16
|
Multiple Vendor TCP/IP Fragmentation DoS (nestea)
|
|
7035
Description:
Eudora Internet Mail Server for Mac OS contains a flaw that may allow a remote denial of service. The issue is triggered when a USER command is issued with a very long string argument, and will result in loss of availability for the platform.
|
1998-04-14
|
Eudora Internet Mail Server for Mac OS USER Overflow DoS
|
|
83214
Description:
APC PowerChute contains a flaw that may allow a remote denial of service. This issue is triggered when another process such as a port scanner is ran against the same port as the _upsd service, which will result in a loss of availability for the service and subsequently the program.
|
1998-04-14
|
APC PowerChute _upsd Service Port Scan Remote DoS
|
|
83215
Description:
APC PowerChute NLM for NetWare contains a flaw that may allow a remote denial of service. The issue is due to the service allowing anyone with the APC software to connect and control it without authentication. This may allow a remote attacker to issue a 'shutdown' command and disable the UPS system, potentially causing a loss of availability for both the UPS as well as any device plugged into it.
|
1998-04-13
|
APC PowerChute NLM for NetWare Unauthenticated Remote Shutdown DoS
|
|
83451
Description:
Mac OS Personal Web and IP Sharing are prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted request, a remote attacker can potentially execute arbitrary code.
|
1998-04-10
|
Mac OS Personal Web / IP Sharing Malformed Request Handling Remote Overflow
|
|
59272
Description:
(Description Provided by CVE) : named in ISC BIND 4.9 and 8.1 allows local users to destroy files via a symlink attack on (1) named_dump.db when root kills the process with a SIGINT, or (2) named.stats when SIGIOT is used.
|
1998-04-10
|
ISC BIND named Multiple Symlink Arbitrary File Overwrite
|
|
83450
Description:
APC PowerChute Plus is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted packet, a remote attacker can potentially cause a denial of service.
|
1998-04-10
|
APC PowerChute Plus Malformed Packet Handling Remote Overflow
|
|
5970
Description:
AppleShare IP Mail Server contains a flaw that allows a remote attacker to crash the server. The issue is due to a buffer overflow condition in the SMTP service. By sending a HELO command containing 1024 or more characters to port 25, an attacker will crash the server.
|
1998-04-08
|
AppleShare IP Mail Server HELO Command Remote Overflow DoS
|
|
6034
Description:
Stalker Internet Mail Server contains a flaw that allows a remote attacker to crash the server. The issue is due to a buffer overflow condition in the SMTP service. By sending a HELO command containing 1024 or more characters to port 25, an attacker will crash the server.
|
1998-04-08
|
Stalker Internet Mail Server HELO Command Remote Overflow DoS
|
|
913
Description:
(Description Provided by CVE) : Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
|
1998-04-08
|
ISC BIND Inverse-Query Remote Overflow
|
|
58018
Description:
A remote overflow exists in the MDaemon Mail Transfer Agent (MTA). The 'HELO' command fails to perform proper bounds checking resulting in a buffer overflow. With an overly long request to the command, a remote attacker can cause the SMTP service to crash resulting in a loss of availability.
|
1998-04-08
|
MDaemon MTA HELO Command Remote Overflow
|
|
896
Description:
(Description Provided by CVE) : Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access.
|
1998-04-08
|
Solaris rpcbind Remote Arbitrary File Overwrite
|
|
5855
Description:
A remote overflow exists in the Microsoft Exchange Mail Transfer Agent (MTA). The 'HELO' command fails to perform proper bounds checking resulting in a buffer overflow. With an overly long request to the command, a remote attacker can cause the SMTP service to crash resulting in a loss of availability.
|
1998-04-08
|
Microsoft Exchange MTA HELO Command Remote Overflow
|
|
9734
Description:
(Description Provided by CVE) : Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.
|
1998-04-08
|
ISC BIND CNAME Record Zone Transfer DoS
|
|
9844
Description:
(Description Provided by CVE) : Buffer overflows in Quake 1.9 client allows remote malicious servers to execute arbitrary commands via long (1) precache paths, (2) server name, (3) server address, or (4) argument to the map console command.
|
1998-04-08
|
Quake 1 Client precache Path Overflow
|
|
9845
Description:
(Description Provided by CVE) : Buffer overflows in Quake 1.9 client allows remote malicious servers to execute arbitrary commands via long (1) precache paths, (2) server name, (3) server address, or (4) argument to the map console command.
|
1998-04-08
|
Quake 1 Client Server Name/Address Overflow
|
|
9846
Description:
(Description Provided by CVE) : Buffer overflows in Quake 1.9 client allows remote malicious servers to execute arbitrary commands via long (1) precache paths, (2) server name, (3) server address, or (4) argument to the map console command.
|
1998-04-08
|
Quake 1 Client Map Console Command Overflow
|
|
58016
Description:
A remote overflow exists in the Ipswitch Mail Transfer Agent (MTA). The 'HELO' command fails to perform proper bounds checking resulting in a buffer overflow. With an overly long request to the command, a remote attacker can cause the SMTP service to crash resulting in a loss of availability.
|
1998-04-08
|
Ipswitch MTA HELO Command Remote Overflow
|
|
82935
Description:
IRIX contains a flaw that is triggered by an unspecified error within IRIS Performer API Search Tool (pfdisplay.cgi). The CGI does not sanitize input supplied to the URI, allowing for arbitrary Unix commands to be appended to a request. Commands will be executed with the same privileges as the web server.
|
1998-04-07
|
IRIX pfdisplay.cgi Arbitrary Command Execution
|
|
82889
Description:
BSDI contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker launched a port scan against the host, when the tcpmux service is configured. This will result in loss of availability for the inetd service and all services controlled by it.
|
1998-04-07
|
BSDI inetd Port Scan Remote DoS
|
|
9847
Description:
(Description Provided by CVE) : Buffer overflow in QuakeWorld 2.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary commands via a long initial connect packet.
|
1998-04-07
|
QuakeWorld Initial Connect Packet Overflow
|
|
13541
Description:
(Description Provided by CVE) : Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.
|
1998-04-06
|
Slackware Linux pkgtool /tmp/reply Symlink Arbitrary File Overwrite
|
|
82887
Description:
Slackware Linux contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the /tmp/tmpmsg script creating temporary files insecurely. It is possible for a local attacker to use a symlink attack against the netconfig file to cause the program to unexpectedly write to, or overwrite an attacker specified file.
|
1998-04-06
|
Slackware Linux netconfig /tmp/tmpmsg Symlink Arbitrary File Overwrite
|
|
82890
Description:
Slackware Linux contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the /tmp/reply script creating temporary files insecurely. It is possible for a local attacker to use a symlink attack against the liloconfig-color file to cause the program to unexpectedly write to, or overwrite an attacker specified file.
|
1998-04-06
|
Slackware Linux liloconfig-color /tmp/reply Symlink Arbitrary File Overwrite
|
|
82888
Description:
Slackware Linux contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the /tmp/return script creating temporary files insecurely. It is possible for a local attacker to use a symlink attack against the makebootdisk file to cause the program to unexpectedly write to, or overwrite an attacker specified file.
|
1998-04-06
|
Slackware Linux makebootdisk /tmp/return Symlink Arbitrary File Overwrite
|
|
57412
Description:
Unknown / Incomplete
|
1998-04-02
|
Geac ADVANCE Exit Control Key Sequence Shell Access
|
|
134
Description:
IRIX contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malicious attacker uses the IRIS Performer API Search Tool (pfdisplay) to access files, which will disclose any files that can be accessed by the user nobody, resulting in a loss of confidentiality.
|
1998-04-02
|
IRIX pfdisplay.cgi Traversal Arbitrary File Access
|
|
8556
Description:
IRIX contains a flaw that may allow a malicious attacker to obtain root privileges. The issue is triggered when an SGI user browsing web pages or reading email can inadvertently download a "trojan horse" runtask(1M) or runexec(1M) descriptor file. It is possible that the flaw may allow execution of a local System Manager Task with the privileges of the user web browsing. If the SGI user is the root user, this can lead to a local root compromise resulting in a loss of integrity.
|
1998-04-02
|
IRIX System Manager sysmgr GUI Descriptor File Command Execution
|
|
36583
Description:
(Description Provided by CVE) : Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766.
|
1998-04-01
|
Solaris nlps_server Listen Port (System V Listener) Remote Overflow
|
|
3100
Description:
IBM ClientAccess has a flaw that permits a local user to execute any program on the machine, regardless of security policy or restrictions. The issue is due to the ClientAccess toolbar and a lack of policy enforcement which lets any user choose "add item", specify the path to a program, and excute it.
|
1998-04-01
|
IBM ClientAccess Toolbar Execute Arbitrary Program
|
