Weekly Vulnerabilities Reports > May 31 to June 6, 1999

Overview

13 new vulnerabilities reported during this period, including 3 critical vulnerabilities and 1 high severity vulnerabilities. This weekly summary report vulnerabilities in 16 products from 14 vendors including Redhat, Apache, KDE, Apple, and Linux. Vulnerabilities are notably categorized as and "Classic Buffer Overflow".

  • 9 reported vulnerabilities are remotely exploitables.
  • 13 reported vulnerabilities are exploitable by an anonymous user.
  • Redhat has the most reported vulnerabilities, with 3 reported vulnerabilities.
  • Apache has the most reported critical vulnerabilities, with 2 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

2 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
1999-06-06 CVE-1999-1237 Apache Classic Buffer Overflow vulnerability in Apache Http Server

Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSmb and possibly other modules, allows remote attackers to execute arbitrary commands via (1) a long username, (2) a long password, and (3) other unspecified methods.

10.0
1999-06-01 CVE-1999-1063 Cdomain Remote File Execution vulnerability in CDomainFree

CDomain whois_raw.cgi whois CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the fqdn parameter.

10.0

1 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
1999-06-01 CVE-2000-0373 KDE Unspecified vulnerability in KDE KVT

Vulnerabilities in the KDE kvt terminal program allow local users to gain root privileges.

7.2

9 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
1999-06-01 CVE-1999-0772 Compaq Denial-Of-Service vulnerability in Power Management

Denial of service in Compaq Management Agents and the Compaq Survey Utility via a long string sent to port 2301.

6.4
1999-05-31 CVE-1999-1485 SGI Unspecified vulnerability in SGI Irix 6.5/6.5.1/6.5.2

nsd in IRIX 6.5 through 6.5.2 exports a virtual filesystem on a UDP port, which allows remote attackers to view files and cause a possible denial of service by mounting the nsd virtual file system.

6.4
1999-06-05 CVE-1999-0970 Omnicron Denial of Service vulnerability in OmniHTTPD visiadmin.exe

The OmniHTTPD visadmin.exe program allows a remote attacker to conduct a denial of service via a malformed URL which causes a large number of temporary files to be created.

5.0
1999-06-03 CVE-1999-1412 Apache
Apple
A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote attackers to cause a denial of service (crash) via a flood of HTTP GET requests to CGI programs, which generates a large number of processes.
5.0
1999-06-01 CVE-2000-0481 KDE Unspecified vulnerability in KDE K-Mail

Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name.

5.0
1999-06-01 CVE-1999-0804 Debian
Linux
Redhat
Suse
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.
5.0
1999-05-31 CVE-2000-0333 Ethereal Group
LBL
tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet.
5.0
1999-06-01 CVE-2000-0365 Redhat Unspecified vulnerability in Redhat Linux 6.0

Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices.

4.6
1999-06-01 CVE-2000-0364 Redhat Unspecified vulnerability in Redhat Linux 6.0

screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys.

4.6

1 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
1999-06-03 CVE-1999-1400 THE Economist Unspecified vulnerability in the Economist the Economist 1999 Screen Saver

The Economist screen saver 1999 with the "Password Protected" option enabled allows users with physical access to the machine to bypass the screen saver and read files by running Internet Explorer while the screen is still locked.

2.1