CA-99-03-FTP-Buffer-Overflows.txt

Date: Thu, 11 Feb 1999 18:17:10 -0500 From: CERT Advisory Reply-To: [email protected] To: [email protected] Subject: CERT Advisory CA-99.03 - FTP-Buffer-Overflows -----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-99-03-FTP-Buffer-Overflows Original issue date: February 11...

ftp.serv-u.2.5.bof.txt

Date: Mon, 3 May 1999 06:16:38 +0200 From: Arne Vidstrom To: [email protected] Subject: Buffer overflows in FTP Serv-U 2.5 Hi, It looks like there are some buffer overflows in FTP Serv-U 2.5 the most recent version and I guess they are present in the versions before too, but I...

ssh-1.2.26.txt

Date: 1 Nov 1998 20:43:19 -0000 From: [email protected] 01. ssh 1.2.26 vulnerability ---------------------------- As most of you are aware, the Rootshell site was compromised on October 28th. In order to keep the integrity of our investigation we have been fairly closed-lipped about...

ksrt.accelerated-x.bof.txt

Date: Sat, 26 Jun 1999 15:40:54 -0400 From: "KSRT Contact Account" To: [email protected] Subject: KSRT 011: Accelerated-X KSRT Advisory 011 Date: June 25, 1999 ID : accelx-bo-011 Affected Program: Xi Graphics, Inc.'s Accelerated-X Server 4.x, 5.x and possibly earlier versions. Author: Jordan...

CVE-1999-1237

Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSmb and possibly other modules, allows remote attackers to execute arbitrary commands via 1 a long username, 2 a long password, and 3 other unspecified methods...

CVE-1999-1510

Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long 1 USER, 2 LIST, or 3 CWD commands...

[SECURITY] New version of procmail with security fixes

A new version of procmail has been released which fixes some new buffer overflows that were missed in version 3.13 . We recommend you upgrade your procmail package immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.1 alias slink...

[SECURITY] New version of procmail with security fixes

A new version of procmail has been released which fixes some new buffer overflows that were missed in version 3.13 . We recommend you upgrade your procmail package immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.1 alias slink...

CVE-1999-0261

Netmanager Chameleon SMTPd has several buffer overflows that cause a crash...

[SECURITY] New version of zgv fixes buffer overflows

We have received reports that the zgv package is vulnerable to buffer overflows. We recommend you upgrade your zgv package immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.0 alias hamm ------------------------------- This...

[SECURITY] New versions of tcsh fixes buffer overflows

We have found that the tcsh shell had a problem with very long pathnames. When a very long path was encountered tcsh failed to check the result of getcwd in all places, which could be exploited. We recommend you upgrade your tcsh package immediately. wget url will fetch the file for you dpkg -i...

[SECURITY] New versions of bash fixes buffer overflows

We have received reports that the bash shell had a problem with very long pathnames. When a very long path was encountered bash failed to check the result of getcwd in all places, which could be exploited. We recommend you upgrade your bash package immediately. wget url will fetch the file for yo...

[SECURITY] New version of bind fixes buffer overflows

We have received reports that the nslookup and dig utilities as shipped with current distribution of Linux contain possible buffer overflows. We recommend you upgrade your bind package immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian...