[CLOSE] OSVDB ID : 13635 - Disclosed: 2000-01-30

Description:

(Description Provided by CVE) : The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.

[CLOSE] OSVDB ID : 1212 - Disclosed: 2000-01-29

Description:

Check Point FireWall-1 contains a flaw that allows a remote attacker to use malformed script tags that will bypass the firewall filter. The issue is due to Firewall-1 not properly recognizing certain malformed script tags and acting on them. Rather than block the traffic as it should, the firewall passes it.

[CLOSE] OSVDB ID : 88573 - Disclosed: 2000-01-29

Description:

NetBSD contains a flaw in /proc/<pid>/mem in the procfs file system. The issue is triggered when a setuid binary is tricked in to writing from or reading the memory image of the process. This may allow a local privileged attacker to execute arbitrary commands.

[CLOSE] OSVDB ID : 1210 - Disclosed: 2000-01-27

Description:

Microsoft IIS contains a flaw that allows a remote attacker to access arbitrary files outside of the web path. The issue is due to the webhits.dll library not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the "CiWebHitsFile" variable. By supplying a crafted request to an htw script, it is possible to read arbitrary files on the system.

[CLOSE] OSVDB ID : 201 - Disclosed: 2000-01-27

Description:

(Description Provided by CVE) : The siteUserMod.cgi program in Cobalt RaQ2 servers allows any Site Administrator to modify passwords for other users, site administrators, and possibly admin (root).

[CLOSE] OSVDB ID : 216 - Disclosed: 2000-01-27

Description:

(Description Provided by CVE) : The SyGate Remote Management program does not properly restrict access to its administration service, which allows remote attackers to cause a denial of service, or access network traffic statistics.

[CLOSE] OSVDB ID : 12483 - Disclosed: 2000-01-26

Description:

(Description Provided by CVE) : Buffer overflow in qpopper 3.0 beta versions allows local users to gain privileges via a long LIST command.

[CLOSE] OSVDB ID : 7467 - Disclosed: 2000-01-26

Description:

(Description Provided by CVE) : Buffer overflow in SCO scohelp program allows remote attackers to execute commands.

[CLOSE] OSVDB ID : 7608 - Disclosed: 2000-01-26

Description:

Microsoft Index Server in Microsoft Windows contains a flaw that may lead to an unauthorized information disclosure. By providing a request to a non-existent Internet Data Query file, a remote attacker could reveal the physical path to the web directory that was contained in the request resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 1206 - Disclosed: 2000-01-24

Description:

(Description Provided by CVE) : The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier.

[CLOSE] OSVDB ID : 85834 - Disclosed: 2000-01-22

Description:

Oracle on Windows contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the a.jsp script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../). This directory traversal attack would allow the attacker to gain access to arbitrary files.

[CLOSE] OSVDB ID : 85835 - Disclosed: 2000-01-22

Description:

Oracle on Windows contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the bb.sqljsp script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../). This directory traversal attack would allow the attacker to gain access to arbitrary files.

[CLOSE] OSVDB ID : 1204 - Disclosed: 2000-01-22

Description:

(Description Provided by CVE) : Buffer overflow in vchkpw/vpopmail POP authentication package allows remote attackers to gain root privileges via a long username or password.

[CLOSE] OSVDB ID : 1209 - Disclosed: 2000-01-22

Description:

(Description Provided by CVE) : The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration File" vulnerability.

[CLOSE] OSVDB ID : 11226 - Disclosed: 2000-01-22

Description:

A remote overflow exists in zgv. zgv fails to perform proper boundary checking of TIFF filenames in the vgadisp.c readpicture function, which could potentially cause a buffer overflow. Using a TIFF image with a filename longer than 256 characters an attacker can execute arbitrary code or cause a denial of service resulting in a loss of integrity or availability.

[CLOSE] OSVDB ID : 11227 - Disclosed: 2000-01-22

Description:

A remote overflow exists in zgv. zgv fails to perform boundary checking of the colname char array in readxpm.c, which may result in a stack overflow. Using a specially crafted XPM image an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 1203 - Disclosed: 2000-01-21

Description:

(Description Provided by CVE) : procfs in BSD systems allows local users to gain root privileges by modifying the /proc/pid/mem interface via a modified file descriptor for stderr.

[CLOSE] OSVDB ID : 13630 - Disclosed: 2000-01-21

Description:

(Description Provided by CVE) : An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5.

[CLOSE] OSVDB ID : 20760 - Disclosed: 2000-01-21

Description:

Multiple BSD OSs contain a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious user modifies the /proc/pid/mem interface via a modified file descriptor for stderr. This flaw may lead to a loss of integrity.

[CLOSE] OSVDB ID : 59360 - Disclosed: 2000-01-21

Description:

(Description Provided by CVE) : IIS allows local users to cause a denial of service via invalid regular expressions in a Visual Basic script in an ASP page.

[CLOSE] OSVDB ID : 1775 - Disclosed: 2000-01-20

Description:

(Description Provided by CVE) : O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character.

[CLOSE] OSVDB ID : 1202 - Disclosed: 2000-01-19

Description:

(Description Provided by CVE) : The BSD make program allows local users to modify files via a symlink attack when the -j option is being used.

[CLOSE] OSVDB ID : 872 - Disclosed: 2000-01-19

Description:

This host appears to be the running the Apache Tomcat Servlet engine with the default accounts still configured. A potential intruder could reconfigure this service in a way that grants system access.

[CLOSE] OSVDB ID : 1208 - Disclosed: 2000-01-19

Description:

(Description Provided by CVE) : Buffer overflow in the conversion utilities for Japanese, Korean and Chinese Word 5 documents allows an attacker to execute commands, aka the "Malformed Conversion Data" vulnerability.

[CLOSE] OSVDB ID : 7609 - Disclosed: 2000-01-19

Description:

A local overflow exists in SCO UnixWare. The 'ppptalk' command fails to properly check the bounds on command line options resulting in a buffer overflow. With a specially crafted request, a malicious user can gain access to elevated privileges resulting in a loss of integrity.

[CLOSE] OSVDB ID : 7364 - Disclosed: 2000-01-18

Description:

thttpd contains a flaw that allows a remote attacker to view arbitrary files outside of the web path. The issue is due to the program not properly sanitizing user input, specifically double-dot ('..') listings of virtual host directories. No further details have been provided.

[CLOSE] OSVDB ID : 31 - Disclosed: 2000-01-18

Description:

(Description Provided by CVE) : The W3C CERN httpd HTTP server allows remote attackers to determine the real pathnames of some commands via a request for a nonexistent URL.

[CLOSE] OSVDB ID : 1200 - Disclosed: 2000-01-18

Description:

(Description Provided by CVE) : Visual Casel (Vcasel) does not properly prevent users from executing files, which allows local users to use a relative pathname to specify an alternate file which has an approved name and possibly gain privileges.

[CLOSE] OSVDB ID : 1139 - Disclosed: 2000-01-17

Description:

(Description Provided by CVE) : Buffer overflow in Microsoft Rich Text Format (RTF) reader allows attackers to cause a denial of service via a malformed control word.

[CLOSE] OSVDB ID : 7584 - Disclosed: 2000-01-17

Description:

(Description Provided by CVE) : Buffer overflow in InetServ 3.0 allows remote attackers to execute commands via a long GET request.

[CLOSE] OSVDB ID : 1201 - Disclosed: 2000-01-17

Description:

(Description Provided by CVE) : cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to cause a denial of service via a malformed URL that includes shell metacharacters.

[CLOSE] OSVDB ID : 1205 - Disclosed: 2000-01-17

Description:

VMware for Linux contains a flaw that may allow a malicious user to overwrite arbitrary files. The problem is that VMware creates certain files in the "/tmp" directory on startup, but doesn't check the existence and ownership of the files. It is possible that the flaw may allow a malicious user to create a symlink from a malicious file, which could be overwritten when the application is executed resulting in a loss of integrity.

[CLOSE] OSVDB ID : 6865 - Disclosed: 2000-01-17

Description:

Yahoo! Messenger contains a flaw that may allow a remote denial of service. The issue is triggered when a text message is sent containing an overly long URL occurs, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 7583 - Disclosed: 2000-01-17

Description:

Nortel Contivity's HTTP server contains a flaw that may allow a malicious user to view arbitrary files due a lack of authentication. The issue is triggered when a file known to be on the server is specified using the Nocfile argument in the cgiproc script. The cgiproc script fails to authenticate the attacker therefore allowing the attacker read access to the file resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 59293 - Disclosed: 2000-01-16

Description:

(Description Provided by CVE) : Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffing.

[CLOSE] OSVDB ID : 1207 - Disclosed: 2000-01-15

Description:

(Description Provided by CVE) : The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the program.

[CLOSE] OSVDB ID : 5859 - Disclosed: 2000-01-15

Description:

(Description Provided by CVE) : Progressive Networks Real Video server (pnserver) can be crashed remotely.

[CLOSE] OSVDB ID : 56508 - Disclosed: 2000-01-14

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 1728 - Disclosed: 2000-01-14

Description:

(Description Provided by CVE) : Buffer overflow in jaZip Zip/Jaz drive manager allows local users to gain root privileges via a long DISPLAY environmental variable.

[CLOSE] OSVDB ID : 1199 - Disclosed: 2000-01-13

Description:

(Description Provided by CVE) : NtImpersonateClientOfPort local procedure call in Windows NT 4.0 allows local users to gain privileges, aka "Spoofed LPC Port Request."