Security bugs in interactions between IE 5.x, IIS 5.0 and Exchange 2000

Georgi Guninski security advisory 40, 2001 Security bugs in interactions between IE 5.x, IIS 5.0 and Exchange 2000 Systems affected: The bug is in IE 5.x Win2K, probably others but interaction with IIS 5.0 or Exchange web storage is required Risk: High Date: 28 March 2001 Legal Notice: This...

CVE-2001-0071

gpg aka GnuPG 1.0.4 and other versions does not properly verify detached signatures, which allows attackers to modify the contents of a file without detection...

CVE-2000-0691

The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.lastrun to the target file...

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal (3)

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal 3 // source: https://www.securityfocus.com/bid/1806/info Microsoft IIS 4.0 and 5.0 are both vulnerable to double dot "../" directory traversal exploitation if extended UNICODE character representations are used in substitution fo...

CVE-2000-0628

The source.asp example script in the Apache ASP module Apache::ASP 1.93 and earlier allows remote attackers to modify files...

CVE-2000-0628

The CVE-2000-0628 entry concerns the Apache::ASP 1.93 and earlier, where the source.asp example script in the Apache ASP module allows remote attackers to modify files. The vulnerability pertains to the source.asp file (/site/eg/source.asp in exposed deployments) which comes with the Apache::ASP ...

CVE-2000-0691

The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.lastrun to the target file...

CVE-1999-0959

Technical details about CVE-1999-0959 are not publicly provided in the supplied documents. No confirmed affected products, versions, or fixes are listed here. Monitor for updates from the cited sources.

CVE-2000-0336

Summary: CVE-2000-0336 affects the OpenLDAP server, where local users can modify arbitrary files via a symlink attack. The root cause described in connected Nessus/Mandrake entries is that OpenLDAP follows symbolic links when creating files, using a default location like /usr/tmp (symlinked to /t...

CVE-2000-0431

Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgiwrap and modify files...

CVE-1999-0959

IRIX startmidi program allows local users to modify arbitrary files via a symlink attack...

CVE-2000-0431

Cobalt RaQ2/RaQ3 systems with FrontPage uploads expose a permissions/ownership misconfiguration that allows bypassing cgiwrap and modifying uploaded files. The issue is documented in CVE-2000-0431 with references in NVD/CVE records and corroborated by OpenVAS/Nessus entries mentioning cgiwrap vul...

CVE-2000-0628

The source.asp example script in the Apache ASP module Apache::ASP 1.93 and earlier allows remote attackers to modify files...

CVE-1999-0864

CVE-1999-0864 involves UnixWare programs that dump core; a local user can modify files via a symlink attack on the ./core.pid file. The description notes a local-privilege/impact vector but provides no remediation or explicit exploit details in the supplied documents. The connected documents do n...

CVE-2000-0431

Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgiwrap and modify files...

CVE-2000-0249

The AIX Fast Response Cache Accelerator FRCA allows local users to modify arbitrary files via the configuration capability in the frcactrl program...

CVE-1999-0957

MajorCool mjkeycache program allows local users to modify files via a symlink attack...

CVE-1999-0957

The affected software is MajorCool mj_key_cache. The vulnerability arises from a symlink attack that allows local users to modify files. The connected PT-1997-1171 entry notes affected versions are not specified and provides no information about a fix; no explicit mitigation is documented in the ...

CVE-2000-0107

The CVE-2000-0107 entry concerns the Linux apcd program, which is vulnerable to a local symlink attack that lets an authenticated local attacker modify arbitrary files. The root cause is improper handling of symlinks, enabling file overwrites via symlink manipulation. The available references con...

CVE-2000-0194

The CVE-2000-0194 issue affects Corel Linux, specifically the buildxconf component. Local users can modify or create arbitrary files by supplying -x or -f parameters, indicating an insecure handling of these options. The underlying details (root cause, affected versions, and remediation) are not ...