[CLOSE] OSVDB ID : 1744 - Disclosed: 2001-01-23

Description:

WU-FTPD contains a flaw that may allow a remote attacker to execute arbitrary code. The issue occurs when the service runs in 'debug' mode and an attacker has control over ident information being returned to the server. By manipulating the ident data returned to the host when requested by RFC 931 based authentication, an attacker can provide custom data with user-supplied format string identifiers that are passed to the syslog facility. This can be abused to overwrite portions of the system memory and execute arbitrary code.

[CLOSE] OSVDB ID : 22197 - Disclosed: 2001-01-23

Description:

(Description Provided by CVE) : WinVNC 3.3.3 and earlier generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.

[CLOSE] OSVDB ID : 1742 - Disclosed: 2001-01-23

Description:

(Description Provided by CVE) : Netopia R9100 router version 4.6 allows authenticated users to cause a denial of service by using the router's telnet program to connect to the router's IP address, which causes a crash.

[CLOSE] OSVDB ID : 3321 - Disclosed: 2001-01-23

Description:

A remote overflow exists in Lotus Domino ESMTP Service. The relay policy check fails to limit the length of the incoming domain name resulting in a buffer overflow. With a specially crafted request, an attacker can cause a Notes server crash and possible execution of arbitrary code resulting in a loss of available and possibly integrity.

[CLOSE] OSVDB ID : 5845 - Disclosed: 2001-01-23

Description:

(Description Provided by CVE) : Vulnerability in crontab allows local users to read crontab files of other users by replacing the temporary file that is being edited while crontab is running.

[CLOSE] OSVDB ID : 7171 - Disclosed: 2001-01-23

Description:

(Description Provided by CVE) : sash before 3.4-4 in Debian GNU/Linux does not properly clone /etc/shadow, which makes it world-readable and could allow local users to gain privileges via password cracking.

[CLOSE] OSVDB ID : 7174 - Disclosed: 2001-01-23

Description:

(Description Provided by CVE) : kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges.

[CLOSE] OSVDB ID : 7202 - Disclosed: 2001-01-23

Description:

(Description Provided by CVE) : Buffer overflow in the parsing mechanism of the file loader in Microsoft PowerPoint 2000 allows attackers to execute arbitrary commands.

[CLOSE] OSVDB ID : 10893 - Disclosed: 2001-01-23

Description:

(Description Provided by CVE) : Buffer overflow in Easycom/Safecom Print Server Web service, version 404.590 and earlier, allows remote attackers to execute arbitrary commands via (1) a long URL or (2) a long HTTP header field such as "Host:".

[CLOSE] OSVDB ID : 13839 - Disclosed: 2001-01-23

Description:

(Description Provided by CVE) : The Easycom/Safecom Print Server (firmware 404.590) PrintGuide server allows remote attackers to cause a denial of service via a large number of connections that send null characters.

[CLOSE] OSVDB ID : 79045 - Disclosed: 2001-01-23

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 496 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : Format string vulnerability in print_client in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary commands.

[CLOSE] OSVDB ID : 1737 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : The caching module in Netscape Fasttrack Server 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by requesting a large number of non-existent URLs.

[CLOSE] OSVDB ID : 1739 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : iPlanet (formerly Netscape) Enterprise Server 4.1 allows remote attackers to cause a denial of service via a long HTTP GET request that contains many "/../" (dot dot) sequences.

[CLOSE] OSVDB ID : 1741 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Oracle JSP 1.0.x through 1.1.1 and Oracle 8.1.7 iAS Release 1.0.2 can allow a remote attacker to read or execute arbitrary .jsp files via a '..' (dot dot) attack.

[CLOSE] OSVDB ID : 6626 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Allaire JRun 2.3 server allows remote attackers to read arbitrary files via the SSIFilter servlet.

[CLOSE] OSVDB ID : 6983 - Disclosed: 2001-01-22

Description:

Half Life Dedicated Server contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a malicious user injects format strings into the changelevel command via the system console or rcon. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 6985 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : pollit.cgi in Poll It 2.01 and earlier allows remote attackers to access administrative functions without knowing the real password by specifying the same value to the entered_password and admin_password parameters.

[CLOSE] OSVDB ID : 6986 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : pollit.cgi in Poll It 2.01 and earlier uses data files that are located under the web document root, which allows remote attackers to access sensitive or private information.

[CLOSE] OSVDB ID : 6987 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : pollit.cgi in Poll It 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the poll_options parameter.

[CLOSE] OSVDB ID : 7010 - Disclosed: 2001-01-22

Description:

A remote overflow exists in ypserv. The server fails to properly check bounds resulting in an overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 13803 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : GoodTech FTP server 3.0.1.2.1.0 and earlier allows remote attackers to cause a denial of service via a flood of connections to the server, which causes it to crash.

[CLOSE] OSVDB ID : 44617 - Disclosed: 2001-01-22

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Oracle JSP 1.0.x through 1.1.1 and Oracle 8.1.7 iAS Release 1.0.2 can allow a remote attacker to read or execute arbitrary .jsp files via a '..' (dot dot) attack.

[CLOSE] OSVDB ID : 1731 - Disclosed: 2001-01-21

Description:

(Description Provided by CVE) : When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib.

[CLOSE] OSVDB ID : 13124 - Disclosed: 2001-01-21

Description:

(Description Provided by CVE) : eEye Iris 1.01 beta allows remote attackers to cause a denial of service via a malformed packet, which causes Iris to crash when a user views the packet.

[CLOSE] OSVDB ID : 1740 - Disclosed: 2001-01-20

Description:

Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and administrative privileges, by accessing a file that contains hashed passphrases, and using the hashes during authentication.

[CLOSE] OSVDB ID : 825 - Disclosed: 2001-01-19

Description:

LocalWEB2000 contains a flaw that allows a remote attacker to read files outside of the web path. The issue is due to the program not properly sanitizing user input, specifically traversal style attacks (../../) supplied via URL requests.

[CLOSE] OSVDB ID : 1875 - Disclosed: 2001-01-19

Description:

(Description Provided by CVE) : Buffer overflow in the line printer daemon (in.lpd) for Solaris 8 and earlier allows local and remote attackers to gain root privileges via a "transfer job" routine.

[CLOSE] OSVDB ID : 12103 - Disclosed: 2001-01-19

Description:

Fastream FTP++ Server contains a flaw that may lead to unauthorized file access. The issue is triggered when a remote attacker uses "ls" command and includes the drive letter in the requested path name, which will allow a remote attacker to list directories outside of the Faststream FTP++ Server directory, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 1738 - Disclosed: 2001-01-19

Description:

(Description Provided by CVE) : Buffer overflow in bing allows remote attackers to execute arbitrary commands via a long hostname, which is copied to a small buffer after a reverse DNS lookup using the gethostbyaddr function.

[CLOSE] OSVDB ID : 12104 - Disclosed: 2001-01-19

Description:

(Description Provided by CVE) : FaSTream FTP++ Server 2.0 allows remote attackers to obtain the real pathname of the server via the "pwd" command.

[CLOSE] OSVDB ID : 59509 - Disclosed: 2001-01-19

Description:

(Description Provided by CVE) : Microsoft Windows 2000 Encrypted File System does not properly destroy backups of files that are encrypted, which allows a local attacker to recover the text of encrypted files.

[CLOSE] OSVDB ID : 18234 - Disclosed: 2001-01-18

Description:

(Description Provided by CVE) : SSH before 2.0, with RC4 encryption and the "disallow NULL passwords" option enabled, makes it easier for remote attackers to guess portions of user passwords by replaying user sessions with certain modifications, which trigger different messages depending on whether the guess is correct or not.

[CLOSE] OSVDB ID : 18235 - Disclosed: 2001-01-18

Description:

(Description Provided by CVE) : SSH before 2.0, when using RC4 and password authentication, allows remote attackers to replay messages until a new server key (VK) is generated.

[CLOSE] OSVDB ID : 18231 - Disclosed: 2001-01-18

Description:

(Description Provided by CVE) : SSH before 2.0 disables host key checking when connecting to the localhost, which allows remote attackers to silently redirect connections to the localhost by poisoning the client's DNS cache.

[CLOSE] OSVDB ID : 18232 - Disclosed: 2001-01-18

Description:

(Description Provided by CVE) : The SSH-1 protocol allows remote servers to conduct man-in-the-middle attacks and replay a client challenge response to a target server by creating a Session ID that matches the Session ID of the target, but which uses a public key pair that is weaker than the target's public key, which allows the attacker to compute the corresponding private key and use the target's Session ID with the compromised key pair to masquerade as the target.

[CLOSE] OSVDB ID : 18229 - Disclosed: 2001-01-18

Description:

(Description Provided by CVE) : The IDEA cipher as implemented by SSH1 does not protect the final block of a message against modification, which allows remote attackers to modify the block without detection by changing its cyclic redundancy check (CRC) to match the modifications to the message.

[CLOSE] OSVDB ID : 18230 - Disclosed: 2001-01-18

Description:

(Description Provided by CVE) : The RC4 stream cipher as used by SSH1 allows remote attackers to modify messages without detection by XORing the original message's cyclic redundancy check (CRC) with the CRC of a mask consisting of all the bits of the original message that were modified.

[CLOSE] OSVDB ID : 19131 - Disclosed: 2001-01-18

Description:

(Description Provided by CVE) : Dallas Semiconductor iButton DS1991 returns predictable values when given an incorrect password, which makes it easier for users with physical access to conduct dictionary attacks against the device password.

[CLOSE] OSVDB ID : 9907 - Disclosed: 2001-01-18

Description:

(Description Provided by CVE) : Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges.