[CLOSE] OSVDB ID : 693 - Disclosed: 2001-12-31

Description:

zml.cgi contains a flaw that allows a remote attacker to view arbitrary files outside of the web path. The issue is due to the script not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the "file" variable.

[CLOSE] OSVDB ID : 10851 - Disclosed: 2001-12-31

Description:

Ipswitch IMail contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when an attacker gain administrator access to one domain, allowing a remote attacker to gain control of other domains and edit the info or delete it.

[CLOSE] OSVDB ID : 10852 - Disclosed: 2001-12-31

Description:

Ipswitch IMail aliasadmin contains a flaw that may allow a malicious user to gain administrative access to other domains hosted on the same server. The issue is triggered after the attacker has successfully authenticated to an administrative account on the vulnerable server. After they are authenticated, they may access any other domain hosted on the server, as the program only checks whether a given user is an administrator, and not specifically the administrator of the domain in question, before granting access. This may result in a loss of confidentiality, and integrity.

[CLOSE] OSVDB ID : 14226 - Disclosed: 2001-12-31

Description:

A format string flaw exists in DayDream BBS. The program fails to properly sanitize format string specifiers (e.g., %s and %x). With a specially crafted request, a local attacker can crash the service or possibly execute arbitrary code.

[CLOSE] OSVDB ID : 18237 - Disclosed: 2001-12-30

Description:

SecureCRT SSH-1 Protocol is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a stack overflow. With a specially crafted input, a local attacker can potentially cause remote execution or crash.

[CLOSE] OSVDB ID : 8843 - Disclosed: 2001-12-30

Description:

(Description Provided by CVE) : Cisco ubr900 series routers that conform to the Data-over-Cable Service Interface Specifications (DOCSIS) standard must ship without SNMP access restrictions, which can allow remote attackers to read and write information to the MIB using arbitrary community strings.

[CLOSE] OSVDB ID : 8960 - Disclosed: 2001-12-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in lastlines.cgi for Last Lines 2.0 allows remote attackers to read arbitrary files via '..' sequences in the $error_log variable.

[CLOSE] OSVDB ID : 10506 - Disclosed: 2001-12-30

Description:

(Description Provided by CVE) : Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.

[CLOSE] OSVDB ID : 14224 - Disclosed: 2001-12-30

Description:

(Description Provided by CVE) : Matrix CGI vault Last Lines 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the $error_log variable.

[CLOSE] OSVDB ID : 14225 - Disclosed: 2001-12-30

Description:

(Description Provided by CVE) : Buffer overflows in DayDream BBS 2.9 through 2.13 allow remote attackers to possibly execute arbitrary code via the control codes (1) ~#MC, (2) ~#TF, or (3) ~#RA.

[CLOSE] OSVDB ID : 16981 - Disclosed: 2001-12-29

Description:

(Description Provided by CVE) : Cherokee web server before 0.2.7 does not properly drop root privileges after binding to port 80, which could allow remote attackers to gain privileges via other vulnerabilities.

[CLOSE] OSVDB ID : 16980 - Disclosed: 2001-12-29

Description:

Cherokee Web Server contains a flaw that allows a remote attacker to read files outside of the web path. The issue is due to the program not properly sanitizing user input in browser requests, specifically traversal style attacks (../../). Due to a related flaw, Cherokee does not properly drop privileges, allowing an attacker to read any files on the system with root permissions.

[CLOSE] OSVDB ID : 12987 - Disclosed: 2001-12-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 20371 - Disclosed: 2001-12-29

Description:

(Description Provided by CVE) : Point to Point Protocol daemon (pppd) in MacOS x 10.0 and 10.1 through 10.1.5 provides the username and password on the command line, which allows local users to obtain authentication information via the ps command.

[CLOSE] OSVDB ID : 6311 - Disclosed: 2001-12-28

Description:

DeleGate contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate scripting commands within a "403 Forbidden" error page. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 20193 - Disclosed: 2001-12-28

Description:

(Description Provided by CVE) : smcboot in Sun SMC (Sun Management Center) 2.0 in Solaris 8 allows local users to delete arbitrary files via a symlink attack on /tmp/smc$SMC_PORT.

[CLOSE] OSVDB ID : 675 - Disclosed: 2001-12-28

Description:

(Description Provided by CVE) : Oracle9iAS Web Cache 2.0.0.x allows remote attackers to cause a denial of service via (1) a request to TCP ports 1100, 4000, 4001, and 4002 with a large number of null characters, and (2) a request to TCP port 4000 with a large number of "." characters.

[CLOSE] OSVDB ID : 694 - Disclosed: 2001-12-28

Description:

(Description Provided by CVE) : Directory traversal vulnerability in phprocketaddin in Total PC Solutions PHP Rocket Add-in for FrontPage 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter.

[CLOSE] OSVDB ID : 9411 - Disclosed: 2001-12-28

Description:

(Description Provided by CVE) : Oracle9iAS Web Cache 2.0.0.x allows remote attackers to cause a denial of service via (1) a request to TCP ports 1100, 4000, 4001, and 4002 with a large number of null characters, and (2) a request to TCP port 4000 with a large number of "." characters.

[CLOSE] OSVDB ID : 9461 - Disclosed: 2001-12-28

Description:

(Description Provided by CVE) : An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml.

[CLOSE] OSVDB ID : 9462 - Disclosed: 2001-12-28

Description:

(Description Provided by CVE) : An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml.

[CLOSE] OSVDB ID : 2013 - Disclosed: 2001-12-27

Description:

(Description Provided by CVE) : Format string vulnerability in gpm-root in gpm 1.17.8 through 1.17.18 allows local users to gain root privileges.

[CLOSE] OSVDB ID : 5690 - Disclosed: 2001-12-27

Description:

Namazu contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the index file name that is used when displaying hit counts. This could allow a user to create a specially crafted URL that would execute arbitrary JavaScript code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 5691 - Disclosed: 2001-12-27

Description:

Namazu 2.0.9 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the idxname parameter upon submission to the namazu script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 4661 - Disclosed: 2001-12-26

Description:

(Description Provided by CVE) : globals.php in PHP Address before 0.2f, with the PHP allow_url_fopen and register_globals variables enabled, allows remote attackers to execute arbitrary PHP code via a URL to the code in the LangCookie parameter.

[CLOSE] OSVDB ID : 10168 - Disclosed: 2001-12-26

Description:

(Description Provided by CVE) : Hughes Technology Mini SQL 2.0.10 through 2.0.12 allows local users to cause a denial of service by creating a very large array in a table, which causes miniSQL to crash when the table is queried.

[CLOSE] OSVDB ID : 14228 - Disclosed: 2001-12-26

Description:

(Description Provided by CVE) : The web administration server for ELSA Lancom 1100 Office does not require authentication, which allows arbitrary remote attackers to gain administrative privileges by connecting to the server.

[CLOSE] OSVDB ID : 20370 - Disclosed: 2001-12-25

Description:

(Description Provided by CVE) : Format string vulnerability in libvanessa_logger 0.0.1 in Perdition 0.1.8 allows remote attackers to execute arbitrary code via format string specifiers in the __vanessa_logger_log function.

[CLOSE] OSVDB ID : 10167 - Disclosed: 2001-12-25

Description:

AdCycle contains a flaw that will allow a remote attacker to inject arbitrary SQL code. No further details have been provided.

[CLOSE] OSVDB ID : 43291 - Disclosed: 2001-12-24

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 11783 - Disclosed: 2001-12-23

Description:

(Description Provided by CVE) : get_input in adrotate.pm for Les VanBrunt AdRotate Pro 2.0 allows remote attackers to modify the database and possibly execute arbitrary commands via a SQL code injection attack.

[CLOSE] OSVDB ID : 2012 - Disclosed: 2001-12-21

Description:

(Description Provided by CVE) : Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows remote malicious servers to execute arbitrary code.

[CLOSE] OSVDB ID : 2011 - Disclosed: 2001-12-21

Description:

(Description Provided by CVE) : Atmel Firmware 1.3 Wireless Access Point (WAP) allows remote attackers to cause a denial of service via a SNMP request with (1) a community string other than "public" or (2) an unknown OID, which causes the WAP to deny subsequent SNMP requests.

[CLOSE] OSVDB ID : 9403 - Disclosed: 2001-12-21

Description:

(Description Provided by CVE) : D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point stores the administrative password in plaintext in the default Management Information Base (MIB), which allows remote attackers to gain administrative privileges.

[CLOSE] OSVDB ID : 11643 - Disclosed: 2001-12-21

Description:

(Description Provided by CVE) : Plesk Server Administrator (PSA) 1.0 allows remote attackers to obtain PHP source code via an HTTP request containing the target's IP address and a valid account name for the domain.

[CLOSE] OSVDB ID : 59517 - Disclosed: 2001-12-21

Description:

(Description Provided by CVE) : D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point uses a default SNMP community string of 'public' which allows remote attackers to gain sensitive information.

[CLOSE] OSVDB ID : 20367 - Disclosed: 2001-12-20

Description:

(Description Provided by CVE) : Windows XP with fast user switching and account lockout enabled allows local users to deny user account access by setting the fast user switch to the same user (self) multiple times, which causes other accounts to be locked out.

[CLOSE] OSVDB ID : 20366 - Disclosed: 2001-12-20

Description:

(Description Provided by CVE) : The Remote Desktop client in Windows XP sends the most recent user account name in cleartext, which could allow remote attackers to obtain terminal server user account names via sniffing.

[CLOSE] OSVDB ID : 31321 - Disclosed: 2001-12-20

Description:

(Description Provided by CVE) : Microsoft Internet Explorer 6.0 and earlier allows malicious website operators to cause a denial of service (client crash) via JavaScript that continually refreshes the window via self.location.

[CLOSE] OSVDB ID : 692 - Disclosed: 2001-12-20

Description:

A local overflow exists in Windows. The Universal Plug and Play Server fails to validate the location field in NOTIFY packets resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.