Buffer overflow in Kerberos 4 ftp client
Published:		25.04.2002
Source:		BUGTRAQ
SecurityVulns ID:		1968
Type:		client
Level:		5/10
Description:		Heap overflow on long server reply.

Affected:

MIT : Kerberos 4

Original document

Marcell Fodor, A bug in the Kerberos4 ftp client may cause heap overflow which leads to remote code execution (25.04.2002)

Discuss:

Read or add your comments to this news (0 comments)

htaccess protection bypass in Apache
Published:		25.04.2002
Source:		BUGTRAQ
SecurityVulns ID:		1970
Type:		local
Level:		5/10
Description:		It's possible to bypass htaccess protection gor local user wia directory symlink.

Affected:

APACHE : Apache 2.0

Original document

Hallberg Tom, apache + .htpasswd - bypass pwd check (25.04.2002)

Discuss:

Read or add your comments to this news (0 comments)

CGI bugs updated since 15.03.2002
Published:		25.04.2002
Source:		BUGTRAQ
SecurityVulns ID:		1863
Type:		remote
Level:		5/10

Affected:		XQUS : x_stat 2.3
		XQUS : x_news 1.1
		CGI : PHProjekt 3.1
		BTP : Black Tie Project 0.5

Original document		Ulf Harnhammar, PHProjekt multiple vulnerabilities (25.04.2002)
		Ahmet Sabri ALPER, [ARL02-A06] Black Tie Project System Information Path Disclosure Vulnerability (15.03.2002)
		b0iler _, Command execution in phprojekt. (15.03.2002)
		frog frog, X_holes (15.03.2002)

Discuss:

Read or add your comments to this news (0 comments)

Stack protection bypass in multiple systems
Published:		25.04.2002
Source:		BUGTRAQ
SecurityVulns ID:		1967
Level:		5/10
Description:		Article describes multiple exploitation techniques for different protection methods.

Affected:		STACKSHIELD : StackShield 0.7
		STACKGUARD : StackGuard 1.2
		STACKGUARD : StackGuard 2.0

Original document

CORE, CORE-20020409: Multiple vulnerabilities in stack smashing protection technologies (25.04.2002)

Discuss:

Read or add your comments to this news (0 comments)

Heap overflow in sudo
Published:		25.04.2002
Source:		BUGTRAQ
SecurityVulns ID:		1969
Type:		local
Level:		6/10
Description:		Heap overflow in -p switch processing.

Affected:

SUDO : sudo 1.6

Original document

Global InterSec Research, [Global InterSec 2002041701] Sudo Password Prompt Vulnerability. (25.04.2002)

Discuss:

Read or add your comments to this news (0 comments)

Multiple bugs in different Irix utilities updated since 25.04.2002
Published:		29.09.2003
Source:		BUGTRAQ
SecurityVulns ID:		1966
Type:		remote
Level:		8/10

Affected:

SGI : IRIX 6.5

Original document		SGI, DCE 1.2.2c Denial of Service Vulnerability on IRIX (29.09.2003)
		SGI, Multiple Vulnerabilities in BSD LPR Subsystem on IRIX update (26.04.2003)
		SGI, Vulnerability in nsd LDAP Implementation on IRIX (26.04.2003)
		SGI, xfsdump creates files insecurely on IRIX (11.04.2003)
		SGI, Multiple Vulnerabilities and Enhancements in ftpd on IRIX (25.03.2003)
		SGI, Buffer Overrun Vulnerability in /sbin/ps on IRIX (28.02.2003)
		SGI, rpcbind/fsr_efs/mv/errhook/uux vulnerabilities update (16.10.2002)
		SGI, rpcbind/fsr_efs/mv/errhook/uux vulnerabilities (04.10.2002)
		SGI, WorldView vulnerability on IRIX (22.08.2002)
		SGI, Bulk Data Services (BDS) vulnerability on IRIX (13.08.2002)
		SGI, rpc.pcnfsd vulnerabilities on IRIX (03.08.2002)
		SGI, iPlanet vulnerabilities on IRIX (03.08.2002)
		SGI, IRIX pmpost vulnerability (27.06.2002)
		SGI, IRIX nveventd vulnerability (26.06.2002)
		SGI, Xinet K-Talk Appletalk(tm) xkas vulnerability on IRIX (12.06.2002)
		SGI, MediaMail vulnerability (07.06.2002)
		SGI, IRIX fsr_xfs vulnerability (10.05.2002)
		SGI, IRIX netstat vulnerability (08.05.2002)
		SGI, IRIX Xlib vulnerability (03.05.2002)
		SGI, IRIX nsd symlink vulnerability (03.05.2002)
		SGI, IRIX pmcd Denial of Service vulnerability (03.05.2002)
		SGI, IRIX /dev/ipfilter Denial of Service vulnerability (03.05.2002)
		SGI, IRIX cpr vulnerability (03.05.2002)
		SGI, IRIX hpsnmpd vulnerability (25.04.2002)
		SGI, IRIX syslogd vulnerability (25.04.2002)
		SGI, IRISconsole icadmin password vulnerability (25.04.2002)

Discuss:

Read or add your comments to this news (0 comments)