Advisories Ussr Labs USSR-2000058 1st Up Mail Server v4.1 Buffer Overflow Vulnerability USSR-2000057 System Monitor ActiveX Buffer Overflow Vulnerability USSR-2000056 Ultraseek 3.1.x Remote DoS Vulnerability USSR-2000055 HyperTerminal Buffer Overflow Vulnerability USSR-2000054 TransSoft's Broker FTP Server 3.x & 4.x Remote DoS attack Vulnerability USSR-2000053 Malformed Embedded Windows Media Player 7 "OCX Attachment" Vulnerability USSR-2000052 Remote DoS Attack in Eeye Iris 1.01 and SpyNet CaptureNet v3.12 Vulnerability USSR-2000051 Remote DoS Attack in Pragma TelnetServer 2000 (Remote Execute Daemon) Vulnerability USSR-2000050 Remotely Exploitable Buffer Overflow in Outlook "Malformed E-mail MIME Header" Vulnerability USSR-2000049 Remote DoS Attack in WircSrv Irc Servlabs49.htmler v5.07s Vulnerability USSR-2000048 Remote DoS Attack in LocalWEB HTTP Server 1.2.0 Vulnerability USSR-2000047 Remote DoS Attack in Small HTTP Server ver. 1.212 Vulnerability USSR-2000046 Multiples Remotes DoS Attacks in Dragon Server v1.00 and v2.00 Vulnerability USSR-2000045 Remote DoS attack in AnalogX SimpleServer WWW Version 1.05 Vulnerability USSR-2000044 Remote DoS attack in Networks Associates PGP Certificate Server Version 2.5 Vulnerability USSR-2000043 Remote DoS attack in Real Networks Real Server (Strike #2) Vulnerability USSR-2000042 HP Web JetAdmin Version 6.0 Remote DoS attack Vulnerability USSR-2000041 HP Web JetAdmin Version 5.6 Web interface Server Directory Traversal Vulnerability USSR-2000040 Remote DoS attack in Internet Information Server 4.0 & 5.0 Vulnerability USSR-2000039 Remote DoS attack in CASSANDRA NNTPServer v1.10 from ATRIUM SOFTWARE Vulnerability USSR-2000038 Remote DoS attack in Real Networks Real Server Vulnerability USSR-2000037 Remote DoS Attack in Windows 2000/NT 4.0 TCP/IP Print Request Server Vulnerability USSR-2000036 Local / Remote DoS Attack in MERCUR WebView WebMail-Client 1.0 for Windows 98/NT Vulnerability USSR-2000035 Local / Remote Multiples Remote DoS Attacks in MERCUR v3.2* for Windows 98/NT Vulnerability USSR-2000034 InterAccess Telnet Server Release 4.0 *ALL BUILDS* for Windows95/98/WinNT USSR-2000033 Local / Remote Exploiteable Buffer Overflow Vulnerability in InterAccess TelnetD Server 4.0 for Windows NT USSR-2000032 Local / Remote D.o.S Attack in Serv-U FTP-Server v2.5b for Win9x/WinNT Vulnerability USSR-00002 Local / Remote D.o.S Attack in Super Mail Transfer Package (SMTP) Server for WinNT Version 1.9x USSR-00001 Local / Remote D.o.S Attack in IMail IMONITOR Server for WinNT Version 5.08 USSR-99029 Local / Remote GET Buffer Overflow Vulnerability in AnalogX SimpleServer:WWW HTTP Server v1.1 USSR-99028 Local / Remote GET Buffer Overflow Vulnerability in CamShot WebCam HTTP Server v2.5 for Win9x/NT USSR-99027 Local / Remote D.o.S Attack in CSM Mail Server for Windows 95/NT v.2000.08.A USSR-99026 Local / Remote D.o.S Attack in Savant Web Server V2.0 WIN9X / NT / 2K USSR-99025 Rover POP3 Server V1.1 NT From aVirt and possibly others versions. USSR-99024 Local / Remote GET Buffer Overflow Vulnerability in ZBServer 1.5 Pro Edition for Win98/NT USSR-99023 Remote D.o.S Attack in DNS PRO v5.7 WinNT From FBLI Software Vulnerability USSR-99022 Infoseek Ultraseek 3.1 Remote Buffer Overflow USSR-99021 Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability USSR-99020 Microsoft Internet Explorer 4.x 5.x - Frame Loop Vulnerability USSR-99019 Remote DoS Attack in GoodTech Telnet Server NT v2.2.1 Vulnerability USSR-99018 Remote DoS Attack in Serv-U FTP-Server v2.5a Vulnerability USSR-99017 Symantec Mail-Gear 1.0 Web interface Server Directory Traversal Vulnerability USSR-99016 Remote DoS Attack in BisonWare FTP Server V3.5 Vulnerability USSR-99015 Multiples Remotes DoS Attacks in MDaemon Server v2.8.5.0 Vulnerability USSR-99014 Remote DoS Attack in Vermillion FTP Daemon (VFTPD) v1.23 Vulnerability USSR-99013 Remote D.o.S Attack in ZetaMail 2.1 Mail POP3/SMTP Server Vulnerability USSR-99012 Remote D.o.S Attack in G6 FTP Server v2.0 (beta 4/5) Vulnerability USSR-99011 Multiples Remotes DoS Attacks in Artisoft XtraMail v1.11 Vulnerability USSR-99010 Remote DoS Attack in QVT/Term 'Plus' 4.2d FTP Server Vulnerability USSR-99009 Remote DoS Attack in TransSoft's Broker Ftp Server v3.5 Vulnerability USSR-99008 Eserv 2.50 Web interface Server Directory Traversal Vulnerability USSR-99007 FTGate Version 2.1 Web interface Server Directory Traversal Vulnerability USSR-99006 BFTelnet Server v1.1 for Windows NT USSR-99005 Avirt Mail Server 3.3a or 3.5 remotely exploitable buffer overflow vulnerability USSR-99004 CMail SMTP Server Version 2.4: Remotely exploitable buffer overflow USSR-99003 ExpressFS 2.x FTPServer remotely exploitable buffer overflow vulnerability USSR-99002 WFTPD v2.40 FTPServer remotely exploitable buffer overflow vulnerability USSR-99001 MSN Messenger Service 1.0 Weak encryption Published: Oct 27, 1999 Advisories Security Focus 2001-04-23: WebCalendar Remote Command Execution Vulnerability 2001-04-23: Viking Server Relative Path Webroot Escaping Vulnerability 2001-04-21: Mercury for NetWare Buffer Overflow Vulnerability 2001-04-20: Novell BorderManager Remote DoS Vulnerability 2001-04-20: Microsoft IE and OE XML Stylesheets Active Scripting Vulnerability 2001-04-20: Sendfile Local Arbitrary Command Execution as Group 0 Vulnerability 2001-04-20: The Net CheckBo Denial of Service Vulnerability 2001-04-18: Oracle 8 Server 'TNSLSNR80.EXE' DoS Vulnerability 2001-04-18: Microsoft Windows WebDAV Scripted Request Vulnerability 2001-04-18: Qualcomm Eudora File Attachment Vulnerability 2001-04-18: innfeed Command-Line Buffer Overflow Vulnerability 2001-04-18: NEdit Temporary File Creation Vulnerability 2001-04-18: KFM Insecure TMP File Creation Vulnerability 2001-04-18: iPlanet Calendar Server Plaintext Admin Password Vulnerability 2001-04-17: Solaris FTP Core Dump Shadow Password Recovery Vulnerability 2001-04-17: GoAhead Webserver /aux Denial of Service Vulnerability 2001-04-17: Simpleserver WWW AUX Directory Denial of Service Vulnerability 2001-04-17: DCForum 'AZ' Field Remote Command Execution Vulnerability 2001-04-17: MS Windows Explorer and Internet Explorer CLSID File Execution Vulnerability 2001-04-17: Samba Insecure TMP file Symbolic Link Vulnerability 2001-04-17: Viking Server Hex Encoded Directory Traversal Attack 2001-04-17: CrossWind CyberScheduler websyncd remote Buffer Overflow Vulnerability 2001-04-17: Xitami Webserver MS-DOS Device Name DoS Vulnerability 2001-04-16: Microsoft ISA Server Web Proxy DoS Vulnerability 2001-04-16: IPTables FTP Stateful Inspection Arbitrary Filter Rule Insertion Vulnerability 2001-04-16: Cisco Catalyst 802.1x Frame Forwarding Vulnerability 2001-04-16: FreeBSD BubbleMon Privilege Elevation Vulnerability 2001-04-15: Exuberant-ctags Symbolic Link Attack Vulnerability 2001-04-14: Siemens Reliant Unix ppd -T Race Condition Vulnerability 2001-04-13: SCO OpenServer lp Buffer Overflow Vulnerability 2001-04-13: Trend Micro Interscan Viruswall Multiple Program Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer accept Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer cancel Command Argument Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer deliver Buffer Overflow Vulnerability 2001-04-13: NCM Content Management System content.pl Input Validation Vulnerability 2001-04-13: SCO OpenServer disable Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer enable Buffer Overflow Vulnerability 2001-04-13: IBM Websphere/Net.Commerce Installation Directory Revealing Vulnerability 2001-04-13: IBM Websphere/Net.Commerce CGI-BIN Macro Denial of Service Vulnerability 2001-04-13: SCO OpenServer lpfilter Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer lpmove Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer reject Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer sendmail Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer rmail Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer tput Buffer Overflow Vulnerability 2001-04-13: SCO OpenServer lpstat Buffer Overflow Vulnerability 2001-04-12: Cisco VPN 3000 Concertrator Malformed IP Packet Vulnerability 2001-04-12: Hylafax hfaxd Local Format String Vulnerability 2001-04-12: Solaris IPCS Timezone Buffer Overflow Vulnerability 2001-04-11: Solaris IN.FTPD CWD Username Enumeration Vulnerability 2001-04-11: Oracle Application Server ndwfn4.so buffer overflow 2001-04-11: Symantec Ghost Configuration Server DoS Attack 2001-04-11: Sybase Adaptive Server Anywhere Database Engine Buffer Overflow Vulnerability 2001-04-11: cfingerd Format String Vulnerability 2001-04-10: Solaris Xsun HOME Buffer Overflow Vulnerability 2001-04-10: nph-maillist Arbitrary Code Execution Vulnerability 2001-04-10: Alcatel Speed Touch Pro ADSL Insecure Embedded TFTP Server Vulnerability 2001-04-10: Strip Password Generator Limited Password-Space Vulnerability 2001-04-10: Alcatel Speed Touch ADSL Insecure Administration Interface Vulnerability 2001-04-10: Lightwave ConsoleServer 3200 Information Disclosure Vulnerability 2001-04-09: Way to the Web TalkBack.cgi Directory Traversal Vulnerability 2001-04-09: Multiple Vendor BSD ftpd glob() Buffer Overflow Vulnerabilities 2001-04-09: Solaris ftpd glob() Expansion LIST Heap Overflow Vulnerability 2001-04-09: HP-UX ftpd glob() Expansion STAT Buffer Overflow Vulnerability 2001-04-09: Solaris 7/8 kcms_configure Command-Line Buffer Overflow Vulnerability 2001-04-06: IPFilter Fragment Rule Bypass Vulnerability 2001-04-06: BinTec X Series Router PPTP Denial of Service Vulnerability 2001-04-06: Cisco PIX TACACS+ Denial of Service Vulnerability 2001-04-05: 602Pro Lan Suite Long HTTP Request Denial of Service Vulnerability 2001-04-05: Ultimate Bulletin Board Forum Password Bypass Vulnerability 2001-04-05: WatchGuard Firebox II High Malformed Packet Rate Denial of Service Vulnerability 2001-04-04: Ntpd Remote Buffer Overflow Vulnerability 2001-04-04: Cisco Content Services Switch User Privilege Elevation Vulnerability