|
Dec 7 2001
|
(Vendor Issues Patch) Re: Allaire's JRun Java Server Discloses JSP Source Code to Remote Users When Used As a Connector With Commercial Web Servers
|
|
Dec 7 2001
|
(Vendor Issues Patch) Re: Allaire's JRun Java Server May Issue Duplicate Session IDs in Certain Cases, Potentially Allowing a Remote User to Act as Another User
|
|
Dec 5 2001
|
(ValiCert Issues Fix) Re: ValiCert Enterprise Validation Authority Has Multiple Vulnerabilities That Allow Remote Users to Obtain SYSTEM Level Access to the Administration Server
|
|
Dec 4 2001
|
ValiCert Enterprise Validation Authority Has Multiple Vulnerabilities That Allow Remote Users to Obtain SYSTEM Level Access to the Administration Server
|
|
Dec 1 2001
|
Lotus Domino Secure Web Server Can Be Crashed By Remote Users
|
|
Nov 30 2001
|
(Oracle Issues Fix) Re: Oracle Database dbsnmp Component Lets Local Users Obtain Root Privileges
|
|
Nov 30 2001
|
(Oracle Issues Fix) Re: Oracle Database Component (dbsnmp) Lets Local Users with Oracle Group Privileges Obtain Root Privileges
|
|
Nov 29 2001
|
(Some Details Are Provided) Re: Allaire's JRun Java Server Discloses JSP Source Code to Remote Users When Used As a Connector With Commercial Web Servers
|
|
Nov 28 2001
|
Allaire's JRun Java Server Discloses JSP Source Code to Remote Users When Used As a Connector With Commercial Web Servers
|
|
Nov 28 2001
|
Allaire's JRun Java Server May Issue Duplicate Session IDs in Certain Cases, Potentially Allowing a Remote User to Act as Another User
|
|
Nov 25 2001
|
Oracle9iAS Web Cache Can Be Crashed By Remote Users Sending Malformed HTTP Content Length Header
|
|
Nov 21 2001
|
(HP Issues Fix) HP-UX Remote Printer Daemon (rlpdaemon) Lets Remote Users
|
|
Nov 20 2001
|
HP-UX Remote Printer Daemon (rlpdaemon) Lets Remote and Local Users Execute Arbitrary Code With Root Level Privileges
|
|
Nov 13 2001
|
(HP Issues Temporary Fix) Common Desktop Environment (CDE) DtSvc Library Buffer Overflow May Let Local Users Obtain Root Privileges
|
|
Nov 13 2001
|
(Lotus Provides Information on How to Use ACLs) Re: Lotus Domino Access Control List Configuration Error May Allow Remote Users to View Documents that an Administrator Believes are Protected
|
|
Nov 13 2001
|
(Lotus Responds) Re: Lotus Domino Web Server Default Navigation Protection Mechanisms Can Be Bypassed by Remote Users, Allowing Some Portions of the Database to be Viewed
|
|
Nov 13 2001
|
(Lotus Responds and Provides Recommendations) Re: Lotus Domino Web Administrator Template Access Control Flaw Lets Remote Users Gain Some Web Administrator Privileges
|
|
Nov 9 2001
|
Rational ClearCase Configuration Management Software Buffer Overflow in db_loader Lets Local Users Execute Arbitrary Code with Root Level Privileges
|
|
Nov 2 2001
|
Progress Database Format String Vulnerability Yields Root Privileges to Local Users
|
|
Nov 1 2001
|
(A User Summarizes Domino Access Control Methods) Re: Lotus Domino Access Control List Configuration Error May Allow Remote Users to View Documents that an Administrator Believes are Protected
|
|
Oct 31 2001
|
(Oracle Issues Fix) Re: Oracle9iAS Web Cache Allows Remote Users to Execute Arbitrary Code or Cause the Caching Process to Exit or Hang
|
|
Oct 31 2001
|
(Oracle Issues Workaround) Re: Oracle Database Permission Configuration Error Lets Local Users Modify Database Files, Configuration Files, and Executables
|
|
Oct 31 2001
|
Lotus Domino Access Control List Configuration Error May Allow Remote Users to View Documents that an Administrator Believes are Protected
|
|
Oct 31 2001
|
Lotus Domino Web Server Default Navigation Protection Mechanisms Can Be Bypassed by Remote Users, Allowing Some Portions of the Database to be Viewed
|
|
Oct 31 2001
|
Lotus Domino Web Administrator Template Access Control Flaw Lets Remote Users Gain Some Web Administrator Privileges
|
|
Oct 26 2001
|
Check Point FireWall-1/VPN-1 Management Functions Can Be Crashed By Remote Users Due to RDP Processing Flaw
|
|
Oct 24 2001
|
(Oracle Describes a Workaround) Re: Oracle Database otrcrep Component Buffer Overflow Lets Local Users Obtain Escalated Group and User Privileges
|
|
Oct 23 2001
|
Check Point FireWall-1 SecuRemote VPN System Discloses Information About Valid Usernames
|
|
Oct 23 2001
|
(HP Issues Fix) Sun Java Runtime Environment (JRE) Flaw May Let Malicious Applets Gain Unauthorized Access to the System Clipboard
|
|
Oct 22 2001
|
(HP Issues Fix for VVOS) Tomcat Java Server Fails to Apply Security Constraints to URLs in a Certain Format, Giving Remote Users Unauthorized Access
|
|
Oct 19 2001
|
Oracle9iAS Web Cache Allows Remote Users to Execute Arbitrary Code or Cause the Caching Process to Exit or Hang
|
|
Oct 18 2001
|
(HP Issues Fix) Telnet Daemons May Give Remote Users Root Level Access Privileges
|
|
Oct 18 2001
|
HP-UX OS for Itanium Processor Family Has Incorrect Permissions on All HP-UX Commands, Letting Local Users Obtain Elevated Privileges
|
|
Oct 16 2001
|
(HP Issues Revised List of Patches) HP/UX Asecure Access Control Program for Audio Software Allows Local Users to Cause Denial of Service
|
|
Oct 11 2001
|
Progress Database PROTERMCAP and PROMSGS Errors Let Local Users Execute Arbitrary Code with Root Level Privileges
|
|
Oct 10 2001
|
Progress RDBMS Database System Has Multiple Vulnerabilities That Permit Local Users to Gain Root Level Access on the Host
|
|
Oct 9 2001
|
(The Vendor Provides Some Guidance) Re: IBM WebSphere Application Server Uses Predictable Session ID Cookies, Allowing Remote Users to Guess Session IDs and Hijack Web Sessions
|
|
Oct 9 2001
|
(HP Issues Fix for Additional OS Versions) HP/UX setrlimit Resource Limiting Utility Lets Local Users Cause Denial of Service Conditions and Possibly Execute Arbitrary Code on the Server with Root Level Privileges
|
|
Oct 4 2001
|
(HP Issues Fix) ToolTalk Database Server Format String Flaw Lets Remote Users Gain Root Level Privileges on Several UNIX Operating System Platforms
|
|
Oct 3 2001
|
ToolTalk Database Server Format String Flaw Lets Remote Users Gain Root Level Privileges on Several UNIX Operating System Platforms
|
|
Oct 3 2001
|
(HP Issues Workaround) Re: ToolTalk Database Server Format String Flaw Lets Remote Users Gain Root Level Privileges on Several UNIX Operating System Platforms
|
|
Oct 3 2001
|
HP-UX Rpcbind Can Be Crashed By Remote Users
|
|
Oct 2 2001
|
HP OpenView Network Node Manager Component Lets Local Users Gain Elevated Privileges
|
|
Sep 24 2001
|
HP's cu Terminal Emulator May Let Local Users Obtain Elevated Privileges
|
|
Sep 24 2001
|
Lotus Domino Web Server Discloses Internal Network Address to Remote Users
|
|
Sep 23 2001
|
(Vendor Reports This is an Old Bug That Has Long Been Fixed) Re: Oracle Application Server Discloses Full Path to Remote Users in Response to Requests for Non-existent JSP Files
|
|
Sep 21 2001
|
IBM WebSphere Application Server Uses Predictable Session ID Cookies, Allowing Remote Users to Guess Session IDs and Hijack Web Sessions
|
|
Sep 20 2001
|
Lotus Notes API Lets Authorized Remote Users Obtain Unauthorized Access to Other User File Attachments
|
|
Sep 18 2001
|
Oracle Application Server Discloses Full Path to Remote Users in Response to Requests for Non-existent JSP Files
|
|
Sep 12 2001
|
HP Warns of Local Denial of Service Vulnerability in 'libsecurity' for HP-UX Virtual Vault Operating System
|
|
Sep 12 2001
|
(HP Issues Revised Advisory) HP/UX Asecure Access Control Program for Audio Software Allows Local Users to Cause Denial of Service
|
|
Sep 8 2001
|
Check Point FireWall-1 Remote Management GUI Lets Remote Administrators Create or Overwrite Files on the Firewall with Root Level Privileges
|
|
Sep 8 2001
|
(A User Reports a Fix) Re: HP-UX Software Distributor Tools (swverify et al) Allow Local Users to Execute Arbitrary Code and Gain Root Level Privileges on the Host
|
|
Sep 8 2001
|
(HP Adds Fix for VVOS) Several FTP Server Implementations Allow Remote Users to Obtain Root-Level Privileges on the Server
|
|
Sep 8 2001
|
(HP Issues Additional Patches) HP-UX Login Command Allows Restricted Shell Users to Execute Unauthorized Commands and Elevate Privileges
|
|
Sep 6 2001
|
Dragon Sensor Intrusion Detection System Does Not Detect Certain Attacks Against Microsoft Web Servers
|
|
Sep 5 2001
|
Gauntlet Firewall and PGP e-ppliances from Network Associates Have Buffer Overflows that Let Remote Users Get User-Level Operating System Access on the Firewall
|
|
Sep 5 2001
|
(Information on Other Versions) Re: PGP May Fail to Warn of Invalid Signatures in Certain Situations
|
|
Sep 4 2001
|
PGP May Fail to Warn of Invalid Signatures in Certain Situations
|
|
Sep 4 2001
|
HP-UX Software Distributor Tools (swverify et al) Allow Local Users to Execute Arbitrary Code and Gain Root Level Privileges on the Host
|
|
Aug 29 2001
|
HP CIFS/9000 (Samba) Server Lets Authenticated Remote Users Change Another User's Password
|
|
Aug 29 2001
|
HP-UX Process Resource Manager (PRM) and Workload Manager (WLM) Allow Local Users to Obtain Root Level Privileges on the Host
|
|
Aug 28 2001
|
(HP Issues Fix) HP-UX Line Printer Daemon Buffer Overflow Lets Remote Users Execute Arbitrary Code and Gain Root Level Access to the System
|
|
Aug 27 2001
|
HP-UX Line Printer Daemon Buffer Overflow Lets Remote Users Execute Arbitrary Code and Gain Root Level Access to the System
|
|
Aug 23 2001
|
(A Workaround is Described) Re: Lotus Domino Mail Server Can Be Made to Consume 100% of CPU Resources By Remote Users
|
|
Aug 21 2001
|
Lotus Domino Mail Server Can Be Made to Consume 100% of CPU Resources By Remote Users
|
|
Aug 18 2001
|
(HP Issues Revised Fix for CIFS/9000 Server) Samba Common Internet File System (CIFS) Lets Remote Users Obtain Root Level Access
|
|
Aug 18 2001
|
Remedy Action Request System Client Installer Temporary File Vulnerability Lets Local Users Obtain Root Level Privileges on the System
|
|
Aug 13 2001
|
Macromedia JRun Java Server Discloses JSP Source Code to Remote Users
|
|
Aug 13 2001
|
Netscape Enterprise Server Discloses Internal IP Addresses to Remote Users in Certain Configurations
|
|
Aug 7 2001
|
Allaire's Macromedia ColdFusion Server Lets Remote Users View Any File on the System or Execute Arbitrary Commands with Root/System Level Privileges
|
|
Aug 3 2001
|
Oracle Database Permission Configuration Error Lets Local Users Modify Database Files, Configuration Files, and Executables
|
|
Aug 3 2001
|
Oracle Database otrcrep Component Buffer Overflow Lets Local Users Obtain Escalated Group and User Privileges
|
|
Aug 3 2001
|
Oracle Database Component (dbsnmp) Lets Local Users with Oracle Group Privileges Obtain Root Privileges
|
|
Aug 3 2001
|
Roxen Web Server Discloses Files on the Server to Remote Users and May, in Certain Configurations, Let Remote Users Execute Any Program on the Server
|
