|
Nov 26 2001
|
Microsoft Internet Explorer Fails to Enforce Cookie Prompting Preferences for Local Security Zone
|
|
Nov 22 2001
|
Citrix MetaFrame Allows Remote Users to Log Bogus IP Addresses Instead of the User's Genuine Address
|
|
Nov 21 2001
|
(HP Issues Fix) HP-UX Remote Printer Daemon (rlpdaemon) Lets Remote Users
|
|
Nov 21 2001
|
(Mandrake Issues Fix for 2.4 Kernel) Linux Kernel TCP Syn Cookies Flaw Lets Remote Users Bypass Certain Firewall Rules to Access Protected Ports on the Server in Limited Cases
|
|
Nov 21 2001
|
(Mandrake Issues Fix) Linux Kernel TCP Syn Cookies Flaw Lets Remote Users Bypass Certain Firewall Rules to Access Protected Ports on the Server in Limited Cases
|
|
Nov 20 2001
|
(Mandrake Issues Fix) Procmail Handles Signals Unsafely, Possibly Allowing Local Users to Obtain Elevated Privileges
|
|
Nov 20 2001
|
HP-UX Remote Printer Daemon (rlpdaemon) Lets Remote and Local Users Execute Arbitrary Code With Root Level Privileges
|
|
Nov 20 2001
|
(SGI Describes Workaround) Re: Sendmail Security Holes Let Local Users Obtain Elevated Privileges on the System, Access the E-mail Queue, and Cause Information Loss
|
|
Nov 19 2001
|
Microsoft Internet Explorer Cookie Disclosure Fix Discloses Patch Information to Remote Users
|
|
Nov 16 2001
|
OPIE One-time Password Software Discloses Information About Valid vs. Non-valid User Accounts
|
|
Nov 16 2001
|
IBM 4758 Crypto Coprocessor Using Common Cryptographic Architecture (CCA) Software May Allow A Physically Local User to Extract 3DES Keys in Certain Situations
|
|
Nov 16 2001
|
(Vendor Believes This is a Configuration Error) Re: ZoneLabs ZoneAlarm Pro Desktop Firewall Software May Apply the Wrong Security Settings in Certain Cases
|
|
Nov 15 2001
|
Cisco Internetwork Operating System (IOS)-based Router ARP Processing Can Be Crashed, Adversely Affecting Management Communications With the Router
|
|
Nov 14 2001
|
Terminal Services on Microsoft Windows 2000 and XP Allow Remote Users to Log Bogus IP Addresses Instead of the User's Genuine Address
|
|
Nov 14 2001
|
(Microsoft Issues Fix) Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Nov 14 2001
|
OpenBSD pf(4) Packet Filter Function Can Be Crashed By Remote Users Sending Certain IPv6 ICMP Packets
|
|
Nov 13 2001
|
Microsoft Windows 2000 RunAs Service Allows Local Users to Disable the Service
|
|
Nov 9 2001
|
(How to Test for this Vulnerability) Re: Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Nov 9 2001
|
(Microsoft Issues Warning and Describes a Workaround) Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Nov 8 2001
|
ZoneLabs ZoneAlarm Pro Desktop Firewall Software May Apply the Wrong Security Settings in Certain Cases
|
|
Nov 8 2001
|
(Red Hat Issues Fix) Sendmail Security Holes Let Local Users Obtain Elevated Privileges on the System, Access the E-mail Queue, and Cause Information Loss
|
|
Nov 8 2001
|
(Caldera Issues Fix for OpenServer) Sendmail Security Holes Let Local Users Obtain Elevated Privileges on the System, Access the E-mail Queue, and Cause Information Loss
|
|
Nov 7 2001
|
(Conectiva Issues Fix) Procmail Handles Signals Unsafely, Possibly Allowing Local Users to Obtain Elevated Privileges
|
|
Nov 6 2001
|
(Caldera Issues Fix for OpenLinux) Linux Kernel TCP Syn Cookies Flaw Lets Remote Users Bypass Certain Firewall Rules to Access Protected Ports on the Server in Limited Cases
|
|
Nov 6 2001
|
(Engarde Issues Fix) Linux Kernel TCP Syn Cookies Flaw Lets Remote Users Bypass Certain Firewall Rules to Access Protected Ports on the Server in Limited Cases
|
|
Nov 5 2001
|
(Red Hat Issues Fix) Re: Linux Kernel TCP Syn Cookies Flaw Lets Remote Users Bypass Certain Firewall Rules to Access Protected Ports on the Server in Limited Cases
|
|
Nov 4 2001
|
(SuSE Issues Fix) Re: Linux Kernel TCP Syn Cookies Flaw Lets Remote Users Bypass Certain Firewall Rules to Access Protected Ports on the Server in Limited Cases
|
|
Nov 2 2001
|
Linux Kernel TCP Syn Cookies Flaw Lets Remote Users Bypass Certain Firewall Rules to Access Protected Ports on the Server in Limited Cases
|
|
Nov 1 2001
|
(Mandrake Issues Fix) Util-linux With PAM Group Limits May Let Remote Users Gain Privileges of a Previous Login Users
|
|
Oct 24 2001
|
(A User Provides a Workaround) Re: Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Oct 24 2001
|
(Apple Issues Fix) Re: Mac OS X NetInfo Manager Lets Local Users Log in as Root Level Users
|
|
Oct 23 2001
|
Macintosh Cients Using Windows 2000 NTFS Volumes May Modify Directory Permissions in Certain Cases
|
|
Oct 23 2001
|
(SuSE Issues Fix) Util-linux With PAM Group Limits May Let Remote Users Gain Privileges of a Previous Login Users
|
|
Oct 23 2001
|
(A User Provides a Solution) Re: Lotus Notes E-mail Client Automatically Executes Arbitrary LotusScript Code
|
|
Oct 22 2001
|
Lotus Notes E-mail Client Automatically Executes Arbitrary LotusScript Code
|
|
Oct 22 2001
|
Linux Kernel Quota Flaw Lets Local Users Exceed Quota Limits and Create Large Files
|
|
Oct 22 2001
|
(Red Hat Issues Additional Fix) Util-linux With PAM Group Limits May Let Remote Users Gain Privileges of a Previous Login Users
|
|
Oct 20 2001
|
Mozilla Browser Will Return HTTP Cookies to an FTP Server at the Same Domain as the HTTP Server, Which Could Be a Different Domain if the HTTP Server is Hosting Virtual Domains
|
|
Oct 20 2001
|
Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Oct 20 2001
|
(Engarde Issues Fix) Apache Web Server Virtual Hosting Split-Logfile Function Lets Remote Users Write Log Entries to Arbitrary Files on the System
|
|
Oct 19 2001
|
Microsoft Terminal Servers Can Be Crashed By Remote Users Sending Certain Remote Desktop Protocol (RDP) Packets
|
|
Oct 18 2001
|
(Conectiva Issues Fix) Apache Web Server Virtual Hosting Split-Logfile Function Lets Remote Users Write Log Entries to Arbitrary Files on the System
|
|
Oct 18 2001
|
(Debian Issues Fix) Procmail Handles Signals Unsafely, Possibly Allowing Local Users to Obtain Elevated Privileges
|
|
Oct 18 2001
|
(Trustix Issues Fix) Util-linux With PAM Group Limits May Let Remote Users Gain Privileges of a Previous Login Users
|
|
Oct 18 2001
|
Mac OS X NetInfo Manager Lets Local Users Log in as Root Level Users
|
|
Oct 17 2001
|
(Red Hat Issues Fix) Re: Util-linux With PAM Group Limits May Let Remote Users Gain Privileges of a Previous Login Users
|
|
Oct 16 2001
|
(Caldera Issues Fix for OpenLinux) Sendmail Security Holes Let Local Users Obtain Elevated Privileges on the System, Access the E-mail Queue, and Cause Information Loss
|
|
Oct 14 2001
|
(Apache Issues a Fix) Re: Apache Web Server Virtual Hosting Split-Logfile Function Lets Remote Users Write Log Entries to Arbitrary Files on the System
|
|
Oct 14 2001
|
Apache Web Server Virtual Hosting Split-Logfile Function Lets Remote Users Write Log Entries to Arbitrary Files on the System
|
|
Oct 13 2001
|
Post-Nuke Web Portal Software Authentication Flaw Lets Remote Users Access User Accounts Without Requiring the Password
|
|
Oct 12 2001
|
Re: Ipswitch's IMail Server POP3 Daemon Discloses Information on Username Validity to Remote Users and Lets Valid Remote Users Change Account Names of Other Users
|
|
Oct 12 2001
|
Ipswitch's IMail Server POP3 Daemon Discloses Information on Username Validity to Remote Users and Lets Valid Remote Users Change Account Names of Other Users
|
|
Oct 11 2001
|
(Additional Details About the Zone Bug) Re: Microsoft Internet Explorer (IE) Web Browser Has Multiple URL-related Flaws That May Allow for Remote Code Execution, Remote HTTP Request Generation, and Application of Incorrect Security Restrictions
|
|
Oct 11 2001
|
phpBB String Processing Bug Lets Remote Users Submit SQL Queries to the Database
|
|
Oct 11 2001
|
Open Projects Network Internet Relay Chat (IRC) Server Software Lets Remote Users Spoof DNS Hostnames
|
|
Oct 11 2001
|
Microsoft Internet Explorer (IE) Web Browser Has Multiple URL-related Flaws That May Allow for Remote Code Execution, Remote HTTP Request Generation, and Application of Incorrect Security Restrictions
|
|
Oct 10 2001
|
Linux Kernel devfs Race Condition Lets Local Users Gain Root Level Privileges
|
|
Oct 9 2001
|
(The Vendor Provides Some Guidance) Re: IBM WebSphere Application Server Uses Predictable Session ID Cookies, Allowing Remote Users to Guess Session IDs and Hijack Web Sessions
|
|
Oct 7 2001
|
ZorbStats PHP-based Web Statistics Generator Allows Remote Users to Execute Arbitrary Code on the Server
|
|
Oct 7 2001
|
Webodex PHP-based E-mail List Management Software Executes Remotely Supplied Code
|
|
Oct 7 2001
|
Gallery PHP-based Web Photo Gallery Software Permits Remote Users to Supply and Execute Arbitrary Code
|
|
Oct 7 2001
|
thatphpware PHP-based Web Portal Software Allows Remote Users to Execute Arbitrary Code
|
|
Oct 7 2001
|
SIPS PHP-based Web Log Tracking System Will Execute Remotely Supplied Arbitrary Code
|
|
Oct 7 2001
|
pSplash Web Portal Software Lets Remote Users Execute Arbitrary Code
|
|
Oct 7 2001
|
phpAdsNew PHP-based Banner Management System Lets Remote Users Supply and Execute Arbitrary Code
|
|
Oct 7 2001
|
Phormation PHP-based HTML Form Development Tool Executes Remotely Supplied Arbitrary Code
|
|
Oct 7 2001
|
Phorecast PHP-based Personal Information Manager Application Executes Remotely Supplied Arbitrary Code
|
|
Oct 7 2001
|
myphpPagetool Lets Remote Users Execute Arbitrary Code
|
|
Oct 7 2001
|
Moregroupware PHP-based Groupware System Executes Remotely Supplied Arbitrary Code
|
|
Oct 7 2001
|
Empris PHP-based Job and Volunteer Application Management System Lets Remote Users Execute Arbitrary Code on the Server
|
|
Oct 7 2001
|
DarkPortal PHP-based Web Portal Lets Remote Users Supply and Execute Arbitrary Code
|
|
Oct 7 2001
|
CCC PHP-based Computer Repair Shop Tracking System Will Execute Remotely Supplied Arbitrary Code
|
|
Oct 7 2001
|
AWOL PHP-based In/Out Personnel Tracking Board Lets Remote Users Supply and Execute Arbitrary Code
|
|
Oct 7 2001
|
ActionPoll PHP-based Survey Voting Script Executes Arbitrary Code Supplied by Remote Users
|
|
Oct 2 2001
|
Sendmail Security Holes Let Local Users Obtain Elevated Privileges on the System, Access the E-mail Queue, and Cause Information Loss
|
