CVE-2000-0749

The CVE-2000-0749 vulnerability affects the Linux binary compatibility module in FreeBSD 3.x–5.x. It is triggered by long filenames in the linux shadow file system, causing a buffer overflow that allows local users to gain root privileges. The available documents do not specify exploit details, a...

CVE-2000-0749

Buffer overflow in the Linux binary compatibility module in FreeBSD 3.x through 5.x allows local users to gain root privileges via long filenames in the linux shadow file system...

CVE-2000-0749

Buffer overflow in the Linux binary compatibility module in FreeBSD 3.x through 5.x allows local users to gain root privileges via long filenames in the linux shadow file system...

[RHSA-2000:066-03] lpr has a format string security bug, LPRng compat issues, and a race cond.

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: lpr has a format string security bug, LPRng compat issues, and a race cond. Advisory ID: RHSA-2000:066-03 Issue date: 2000-09-25 Updated on: 2000-10-04 Product: Red Hat Linux Keywords:...

Cisco Secure ACS for Windows NT 2.42 - Remote Buffer Overflow

source: https://www.securityfocus.com/bid/1705/info Depending on the data entered, CiscoSecure ACS for Windows NT can be made to crash or arbitrary code execution can be made possible if an unusually long packet is sent to port 2002. If the application were to crash due to an oversized packet, th...

Security Advisory: FreeBSD-SA-00:42.linux

============================================================================= FreeBSD-SA-00:42 Security Advisory FreeBSD, Inc. Topic: Linux binary compatability mode can cause system compromise Category: core Module: kernel Announced: 2000-08-28 Credits: Boris Nikolaus [email protected]...

FreeBSD-SA-00:42.linux

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:42 Security Advisory FreeBSD, Inc. Topic: Linux binary compatability mode can cause system compromise Category: core Module: kernel Announced: 2000-08-28 Credits: Boris...

Ошибка между imapd И mail.local

Hello, Надеюсь, что хотя бы из чувства патриотизма может быть еще кто-нибудь в дальнейшем решится писать в этот список рассылки до или хотя бы одновременно публикации в Bugtraq : Ошибка несерьезная, но достаточно интересная. Дело в том, что в данном случае ни одна из программ не содержит явной...

re: Re[4]: mailbox parsing problem in imap-4.7c

On Thu, 10 Aug 2000 22:22:27 +0400, 3APA3A wrote: sendmail contains mail.local. mail.local is MDA. At least BSD distributions use mail.local from sendmail. Well, we'll have to hear what the sendmail people say then. I still contend that all lines that are in "From " header format should be quoted...

Novell Netware 5.0 SP56.0 SP1 - SMDR.NLM Denial of Service

Novell Netware 5.0 SP56.0 SP1 - SMDR.NLM Denial of Service source: https://www.securityfocus.com/bid/1467/info When Novell Netware is configured with IPX-Compatibility enabled, it is vulnerable to a denial of service attack by sending packets with random data to port 40193. Similar results are...

Novell Netware 5.0 SP5/6.0 SP1 - SMDR.NLM Denial of Service

source: https://www.securityfocus.com/bid/1467/info When Novell Netware is configured with IPX-Compatibility enabled, it is vulnerable to a denial of service attack by sending packets with random data to port 40193. Similar results are possible by sending fragmented packets. This has been observe...

Cygnus Network Security 4.0KerbNet 5.0 MIT Kerberos 45 RedHat 6.2 - Compatibility krb_rd_req() Remote Buffer Overflow (3)

Cygnus Network Security 4.0KerbNet 5.0 MIT Kerberos 45 RedHat 6.2 - Compatibility krbrdreq Remote Buffer Overflow 3 // source: https://www.securityfocus.com/bid/1220/info Several buffer overflow vulnerabilities exist in Kerberos 5 implmenetations due to buffer overflows in the Kerberos 4...

Cygnus Network Security 4.0/KerbNet 5.0 / MIT Kerberos 4/5 / RedHat 6.2 - Compatibility 'krb_rd_req()' Remote Buffer Overflow (3)

// source: https://www.securityfocus.com/bid/1220/info Several buffer overflow vulnerabilities exist in Kerberos 5 implmenetations due to buffer overflows in the Kerberos 4 compatability code. These include MIT Kerberos 5 releases 1.0.x, 1.1 and 1.1.1, MIT Kerberos 4 patch level 10 and, most...

netscape.4.x.java.txt

Netscape 4.x javascript security flaw Versions tested: Windows98/Netscape4.7,Windows95/Netscape4.05 Description: Credits to Henri Torgemane Netscape has a "persistent" navigator object, which means that any data put in the window.navigator object will be accessible to every other window as long a...

[SECURITY] New versions of termcap-compat fixes buffer overflow

We have received a report that former versions of libtermcap contained an exploitable buffer overflow. Debian itself is not exploitable by this bug since termcap was abandoned in favour of terminfo long ago. However, if you have compiled your own programs using termcap or have installed third par...

msie4-object.txt

Date: Tue, 28 Jul 1998 10:10:36 PDT From: Georgi Guninski Subject: Object tag crashes Internet Explorer 4.0 The tag seems to crash Internet Explorer 4.0 under Win95 don't know about other versions/OS. The following: opens a dialog box "IEXPLORE: ...illegal operation" and closes IE 4.0, or a blue...

windows.prn.flaw.txt

Date: Fri, 4 Jun 1999 08:20:16 -0400 From: "STEVENS, Eric" To: [email protected] Subject: Windows NT 4.0, 95, 98 ? networked PRN flaw -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I suppose that, in an effort to maintain reverse compatibility with old MS-DOS command line gurus, you cannot crea...

wu-ftp.2.4.2.bin.ftponly.patch

Date: Sat, 27 Mar 1999 13:21:46 +0100 From: "Bluefish @ home" To: [email protected] Subject: wu-ftp 2.4.2 release VR16 /bin/ftponly as I previously reported to euro-coders, since I installed the wu-ftpd versions which fixes the beta-18 hole, the good old ftponly hack described at all pages...

netscape.4.x-javascript-unix.txt

Date: Thu, 29 Oct 1998 17:09:23 -0600 From: Ryan Gray To: [email protected] Subject: Re: Javascript bug in Netscape Communicator 4.5 Hello, Just wanted to add that Netscape Communicator 4.5b2 on Slackware Linux 3.5 kernel 2.0.34 is susceptible to this also. I was able to get the script to read...

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow. Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos configuration file, which can be specified via the KRBCONF...