(Description Provided by CVE) : Windows NT searches a user's home directory (%systemroot% by default) before other directories to find critical programs such as NDDEAGNT.EXE, EXPLORER.EXE, USERINIT.EXE or TASKMGR.EXE, which could allow local users to bypass access restrictions or gain privileges by placing a Trojan horse program into the root directory, which is writable by default.
(Description Provided by CVE) : Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL headers, which causes Outlook to hang.
(Description Provided by CVE) : When IIS is run with a default language of Chinese, Korean, or Japanese, it allows a remote attacker to view the source code of certain files, a.k.a. "Double Byte Code Page".
(Description Provided by CVE) : SpectroSERVER in Cabletron Spectrum Enterprise Manager 5.0 installs a directory tree with insecure permissions, which allows local users to replace a privileged executable (processd) with a Trojan horse, facilitating a root or Administrator compromise.
Windows NT contains a flaw that may allow a local denial of service. The issue is triggered when a malicious user initiates 16 user input processes at one time without providing corresponding input. The CSRSS service generates only 16 worker threads at one time, which results in a loss of availability for the platform.
Libxml2 contains an overflow condition in parser.c. The issue is triggered as user-supplied input is not properly validated during the handling of an overly long attribute with no entities in it. This will cause a buffer overflow, resulting in a denial of service or potentially execution of arbitrary code.
KDE Kmail contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when Kmail creates unsafe temporary files to save attachments in the "/tmp" directory, which will allow a local attacker to create or overwrite files with contents they can select in any directory and/or file writable by the user running KMail. By compromising the UID of another Kmail user, a local attacker can escalate their privileges.
(Description Provided by CVE) : Various modems that do not implement a guard time, or are configured with a guard time of 0, can allow remote attackers to execute arbitrary modem commands such as ATH, ATH0, etc., via a "+++" sequence that appears in ICMP packets, the subject of an e-mail message, IRC commands, and others.
Tiger Security Scanner contains a flaw that allows local users to gain root privileges. The flaw is due to the check_rhosts script not performing proper checks before executing, allowing a local user to craft a custom command that will be executed under the privileges of the person running Tiger (typically root).
(Description Provided by CVE) : ip_print procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet.
Lotus Domino contains a flaw in Lotus Notes SMTP MTA that is triggered when an attacker connects to the server via TCP port 25 and issues 'mail from' command with <> as the data. This may allow an attacker to use the program as a relay to send emails to arbitrary addresses.
SCO OpenServer is prone to an overflow condition. The xterm XBase tool fails to properly sanitize user-supplied input resulting in a buffer overflow. This may allow a local attacker to execute arbitrary code with root permissions.
(Description Provided by CVE) : useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (expiration date) argument, which could allow users to login after their accounts have expired.
(Description Provided by CVE) : ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remote attackers to determine user account names on the server.
Dump contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is due to the rmt program in the dump package having serveral security problems. No further details have been provided. This flaw may allow a local attacker to obtain super user privilege, resulting in a loss of confidentiality, integrity and avaiability.
(Description Provided by CVE) : Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.
(Description Provided by CVE) : Format string vulnerability in kvt in KDE 1.1.2 may allow local users to execute arbitrary commands via a DISPLAY environmental variable that contains formatting characters.
Microsoft Windows LAN Manager contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to certain SNMP queries, which will disclose LanMan accounts, LanMan services and LanMan shares resulting in a loss of confidentiality.
The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO
warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright
holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.