[CLOSE] OSVDB ID : 1697 - Disclosed: 2000-12-18

Description:

FreeBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when procfs fails to properly restrict access to per-process mem and ctl files, which allows a malicious user to gain root privileges by forking a child process and executing privileged processes from the child. This flaw may lead to a loss of integrity.

[CLOSE] OSVDB ID : 4428 - Disclosed: 2000-12-18

Description:

Check Point FireWall-1/VPN-1 contains a flaw that may allow a remote attacker to bypass portions of the ruleset. The issue is due to a flaw in the Fast Mode (aka FASTPATH) option for TCP services. If an attacker sends a series of malformed fragmented TCP packets, they may be able to connect to protected resources normally protected by the firewall.

[CLOSE] OSVDB ID : 6082 - Disclosed: 2000-12-18

Description:

FreeBSD contains a flaw that may allow a local denial of service. The issue is triggered when a malicious user calls mmap() to map the memory address of its own mem file the procfs filesystem causing the kernel to go into an infinite loop, and will result in loss of availability for the platform.

[CLOSE] OSVDB ID : 7181 - Disclosed: 2000-12-17

Description:

(Description Provided by CVE) : Vulnerability in top in HP-UX 11.04 and earlier allows local users to overwrite files owned by the "sys" group.

[CLOSE] OSVDB ID : 6284 - Disclosed: 2000-12-15

Description:

Zope contains a flaw that may allow a malicious user to gain access to unauthorized privileges. In some situations the computation was not climbing the correct hierarchy of folders, granting local roles inappropriately. Exploitation of this issue could grant a local user with privileges in one folder the same privileges specified in another folder. This flaw may lead to a loss of confidentiality and integrity.

[CLOSE] OSVDB ID : 1690 - Disclosed: 2000-12-14

Description:

WatchGuard Firebox SOHO contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker sends a large amount of fragmented packets, and will result in loss of availability for the firewall.

[CLOSE] OSVDB ID : 4401 - Disclosed: 2000-12-14

Description:

WatchGuard Firebox SOHO contains a flaw that may allow a remote attacker to remotely change the administrative password. The issue is due to a flaw in the authentication mechanism of the device, which allows a blank unauthenticated request to the /passcfg object. Such a request will reset the password to an empty field allowing the attacker to use any administrative options without having to provide authentication credentials.

[CLOSE] OSVDB ID : 4403 - Disclosed: 2000-12-14

Description:

WatchGuard Firebox SOHO contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends an overly long GET request to the Web administration interface, and will result in loss of availability for the firewall.

[CLOSE] OSVDB ID : 4404 - Disclosed: 2000-12-14

Description:

Watchguard Firebox SOHO firewall contains a flaw that may allow a remote attacker to bypass authentication for the Web administration interface. The issue is due to a flaw in the administration authentication that allows an attacker to directly access and modify the firewall's configuration options. By accessing the options directly, the attacker could modify settings or disable service.

[CLOSE] OSVDB ID : 7182 - Disclosed: 2000-12-14

Description:

(Description Provided by CVE) : Windows Media Unicast Service in Windows Media Services 4.0 and 4.1 does not properly shut down some types of connections, producing a memory leak that allows remote attackers to cause a denial of service via a series of severed connections, aka the "Severed Windows Media Server Connection" vulnerability.

[CLOSE] OSVDB ID : 12040 - Disclosed: 2000-12-14

Description:

(Description Provided by CVE) : MDaemon Pro 3.5.1 and earlier allows local users to bypass the "lock server" security setting by pressing the Cancel button at the password prompt, then pressing the enter key.

[CLOSE] OSVDB ID : 12146 - Disclosed: 2000-12-14

Description:

(Description Provided by CVE) : CoffeeCup Direct and Free FTP clients uses weak encryption to store passwords in the FTPServers.ini file, which could allow attackers to easily decrypt the passwords.

[CLOSE] OSVDB ID : 13794 - Disclosed: 2000-12-14

Description:

(Description Provided by CVE) : The installation of J-Pilot creates the .jpilot directory with the user's umask, which could allow local attackers to read other users' PalmOS backup information if their umasks are not securely set.

[CLOSE] OSVDB ID : 85827 - Disclosed: 2000-12-14

Description:

Secure Computing SafeWord e.iD Authenticator for Palm contains a flaw that is triggered when credential information is stored in the device when a PIN is used. This may allow a remote attacker to compromise a user's syste via a brute force attack.

[CLOSE] OSVDB ID : 477 - Disclosed: 2000-12-13

Description:

A remote overflow exists in BFTPD. The daemon fails to filter input to the SITE CHOWN command resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service, and potentially execute arbitrary code. This may result in a loss of availability and/or integrity.

[CLOSE] OSVDB ID : 6473 - Disclosed: 2000-12-13

Description:

EZshopper contains a flaw that allows a remote attacker to navigate outside of the web path and view arbitrary files. The issue is due to the upload.cgi not properly sanitizing user input, specifically traversal style attacks (../../) supplied via multiple variables.

[CLOSE] OSVDB ID : 7183 - Disclosed: 2000-12-13

Description:

(Description Provided by CVE) : Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error.

[CLOSE] OSVDB ID : 13120 - Disclosed: 2000-12-13

Description:

(Description Provided by CVE) : simplestguest.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the guestbook parameter.

[CLOSE] OSVDB ID : 1696 - Disclosed: 2000-12-13

Description:

(Description Provided by CVE) : Format string vulnerability in stunnel 3.8 and earlier allows attackers to execute arbitrary commands via a malformed ident username.

[CLOSE] OSVDB ID : 9616 - Disclosed: 2000-12-13

Description:

(Description Provided by CVE) : Support Tools Manager (STM) A.22.00 for HP-UX allows local users to overwrite arbitrary files via a symlink attack on the tool_stat.txt log file.

[CLOSE] OSVDB ID : 13479 - Disclosed: 2000-12-13

Description:

(Description Provided by CVE) : Microsoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source code for parsed pages via a malformed URL that uses the lead-byte of a double-byte character.

[CLOSE] OSVDB ID : 85826 - Disclosed: 2000-12-13

Description:

Microsoft IE contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs in the mstask.exe file during the handling of a malformed packet. This will result in a consumption of CPU resources and a loss of availability for the program.

[CLOSE] OSVDB ID : 17963 - Disclosed: 2000-12-12

Description:

(Description Provided by CVE) : AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program.

[CLOSE] OSVDB ID : 4849 - Disclosed: 2000-12-12

Description:

The nCipher swinit utility contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered even when the --no-recovery command line option is explicitly provided, which will disclose application keys resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 1692 - Disclosed: 2000-12-12

Description:

AOL Instant Messenger contains a flaw that may allow a malicious user to craft a URL that will result in a buffer overflow. The issue is triggered when a src command is larger than 3000 characters. It is possible that the flaw may be used to execute arbitrary commands, add/subtract buddies from list, or crash the client.

[CLOSE] OSVDB ID : 9533 - Disclosed: 2000-12-12

Description:

(Description Provided by CVE) : Buffer overflow in AOL Instant Messenger before 4.3.2229 allows remote attackers to execute arbitrary commands via a long "goim" command.

[CLOSE] OSVDB ID : 476 - Disclosed: 2000-12-12

Description:

(Description Provided by CVE) : Buffer overflow in oops WWW proxy server 1.4.6 (and possibly other versions) allows remote attackers to execute arbitrary commands via a long host or domain name that is obtained from a reverse DNS lookup.

[CLOSE] OSVDB ID : 6283 - Disclosed: 2000-12-12

Description:

Zope contains a flaw that may allow a malicious user to bypass data protection. The issue is triggered due to insecure data updating methods on Image and File objects. It is possible that the flaw may allow a malicious user with DTML editing privileges to modify the raw data of these objects, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 7184 - Disclosed: 2000-12-12

Description:

(Description Provided by CVE) : The clustmon service in Sun Cluster 2.x does not require authentication, which allows remote attackers to obtain sensitive information such as system logs and cluster configurations.

[CLOSE] OSVDB ID : 13127 - Disclosed: 2000-12-12

Description:

(Description Provided by CVE) : CGI Script Center Subscribe Me LITE 2.0 and earlier allows remote attackers to delete arbitrary mailing list users without authentication by directly calling subscribe.pl with the target address as a parameter.

[CLOSE] OSVDB ID : 1688 - Disclosed: 2000-12-11

Description:

(Description Provided by CVE) : rp-pppoe PPPoE client allows remote attackers to cause a denial of service via the Clamp MSS option and a TCP packet with a zero-length TCP option.

[CLOSE] OSVDB ID : 17147 - Disclosed: 2000-12-11

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 1689 - Disclosed: 2000-12-11

Description:

(Description Provided by CVE) : Buffer overflow in the HTML parsing code in oops WWW proxy server 1.5.2 and earlier allows remote attackers to execute arbitrary commands via a large number of " (quotation) characters.

[CLOSE] OSVDB ID : 13121 - Disclosed: 2000-12-11

Description:

(Description Provided by CVE) : everythingform.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter.

[CLOSE] OSVDB ID : 13122 - Disclosed: 2000-12-11

Description:

(Description Provided by CVE) : simplestmail.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the MyEmail parameter.

[CLOSE] OSVDB ID : 13123 - Disclosed: 2000-12-11

Description:

(Description Provided by CVE) : ad.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter.

[CLOSE] OSVDB ID : 6491 - Disclosed: 2000-12-11

Description:

GNU ed contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when a user creates a symlink to a temporary file and the system is halted before the file is saved. This flaw may lead to a loss of integrity and availability.

[CLOSE] OSVDB ID : 10175 - Disclosed: 2000-12-11

Description:

(Description Provided by CVE) : mod_sqlpw module in ProFTPD does not reset a cached password when a user uses the "user" command to change accounts, which allows authenticated attackers to gain privileges of other users.

[CLOSE] OSVDB ID : 11765 - Disclosed: 2000-12-11

Description:

pico contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the program predictably creating temporary file names. It is possible for a local attacker to use a symlink attack against the mon_pine.sh file to cause the program to unexpectedly write to, or overwrite an attacker specified file.

[CLOSE] OSVDB ID : 60979 - Disclosed: 2000-12-11

Description:

Unknown / Incomplete