Академический Документы
Профессиональный Документы
Культура Документы
Also add:
BUGTRAQ:19971021 SNI-19: BSD lpd vulnerabilities (UPDATE)
URL:http://marc.theaimsgroup.com/?l=bugtraq&m=87747479514310&w=2
However, archives of "NAI-0020" point to the lpd vuln.
If I recall correctly, some of the NAI advisory numbers got
switched when NAI acquired SNI.
</pre>
<hr><font size=+2><b>Name: CVE-1999-0062</b></font><p>
<b>Description:</b><br>
The chpass command in OpenBSD allows a local user to gain root access
through file descriptor leakage.
<b>Status:</b> Entry<br>
<b>Reference:</b> XF:openbsd-chpass
<br><b>Reference:</b> NAI:NAI-28
<br><b>Reference:</b> OSVDB:7559
<br><b>Reference:</b> URL:http://www.osvdb.org/7559
<p>
<hr><font size=+2><b>Name: CVE-1999-0063</b></font><p>
<b>Description:</b><br>
Cisco IOS 12.0 and other versions can be crashed by malicious UDP
packets to the syslog port.
<b>Status:</b> Entry<br>
<b>Reference:</b> AUSCERT:ESB-98.197
<br><b>Reference:</b> CISCO:http://www.cisco.com/warp/public/770/iossyslog-pub.s
html
<br><b>Reference:</b> XF:cisco-syslog-crash
<p>
<hr><font size=+2><b>Name: CVE-1999-0064</b></font><p>
<b>Description:</b><br>
Buffer overflow in AIX lquerylv program gives root access to local users.
<b>Status:</b> Entry<br>
<b>Reference:</b> BUGTRAQ:May28,1997
<br><b>Reference:</b> XF:lquerylv-bo
<p>
<hr><font size=+2><b>Name: CVE-1999-0065</b></font><p>
<b>Description:</b><br>
Multiple buffer overflows in how dtmail handles attachments allows a
remote attacker to execute commands.
<b>Status:</b> Entry<br>
<b>Reference:</b> SUN:00181
<br><b>Reference:</b> URL:http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=co
ll&doc=secbull/181
<br><b>Reference:</b> XF:hp-dtmail
<p>
<hr><font size=+2><b>Name: CVE-1999-0066</b></font><p>
<b>Description:</b><br>
AnyForm CGI remote execution.
<b>Status:</b> Entry<br>
<b>Reference:</b> BUGTRAQ:19950731 SECURITY HOLE: "AnyForm" CGI
<br><b>Reference:</b> BID:719
<br><b>Reference:</b> URL:http://www.securityfocus.com/bid/719
<br><b>Reference:</b> XF:http-cgi-anyform
<p>
<hr><font size=+2><b>Name: CVE-1999-0067</b></font><p>
<b>Description:</b><br>
phf CGI program allows remote command execution through shell
metacharacters.
<b>Status:</b> Entry<br>
<b>Reference:</b> BUGTRAQ:19960923 PHF Attacks - Fun and games for the whole fam
ily
<br><b>Reference:</b> CERT:CA-1996-06
<br><b>Reference:</b> URL:http://www.cert.org/advisories/CA-1996-06.html
<br><b>Reference:</b> AUSCERT:AA-96.01
<br><b>Reference:</b> BID:629
<br><b>Reference:</b> URL:http://www.securityfocus.com/bid/629
<br><b>Reference:</b> OSVDB:136
<br><b>Reference:</b> URL:http://www.osvdb.org/136
<br><b>Reference:</b> XF:http-cgi-phf