Weekly Vulnerabilities Reports > September 27 to October 3, 1999

Overview

18 new vulnerabilities reported during this period, including 2 critical vulnerabilities and 5 high severity vulnerabilities. This weekly summary report vulnerabilities in 15 products from 13 vendors including True North, Microsoft, IBM, Caldera, and Bsdi. Vulnerabilities are notably categorized as "Information Exposure", and "Link Following".

  • 12 reported vulnerabilities are remotely exploitables.
  • 18 reported vulnerabilities are exploitable by an anonymous user.
  • True North has the most reported vulnerabilities, with 3 reported vulnerabilities.
  • IBM has the most reported critical vulnerabilities, with 1 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

2 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
1999-10-01 CVE-1999-0879 Bsdi
Caldera
Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file.
10.0
1999-09-28 CVE-1999-0789 IBM Unspecified vulnerability in IBM AIX 4.3/4.3.1/4.3.2

Buffer overflow in AIX ftpd in the libc library.

10.0

5 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
1999-09-30 CVE-1999-1469 Hughes Technologies Unspecified vulnerability in Hughes Technologies W3-Auth

Buffer overflow in w3-auth CGI program in miniSQL package allows remote attackers to execute arbitrary commands via an HTTP request with (1) a long URL, or (2) a long User-Agent MIME header.

7.5
1999-09-27 CVE-1999-1576 Adobe Unspecified vulnerability in Adobe Acrobat Reader 4.0

Buffer overflow in Adobe Acrobat ActiveX control (pdf.ocx, PDF.PdfCtrl.1) 1.3.188 for Acrobat Reader 4.0 allows remote attackers to execute arbitrary code via the pdf.setview method.

7.5
1999-09-27 CVE-1999-0940 Mutt Unspecified vulnerability in Mutt Mail Client

Buffer overflow in mutt mail client allows remote attackers to execute commands via malformed MIME messages.

7.5
1999-09-30 CVE-1999-1583 IBM Unspecified vulnerability in IBM AIX 4.3

Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long hostname command line argument.

7.2
1999-09-30 CVE-1999-0932 Mediahouse Software Unspecified vulnerability in Mediahouse Software Statistics Server 4.28/5.1

Mediahouse Statistics Server allows remote attackers to read the administrator password, which is stored in cleartext in the ss.cfg file.

7.2

11 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
1999-10-01 CVE-2000-0047 Yahoo Denial-Of-Service vulnerability in Yahoo Pager 733

Buffer overflow in Yahoo Pager/Messenger client allows remote attackers to cause a denial of service via a long URL within a message.

5.0
1999-10-01 CVE-2000-0016 True North Buffer Overflow vulnerability in True North Internet Anywhere Mail Server 2.3/2.3.1

Buffer overflow in Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service or execute commands via a long username.

5.0
1999-10-01 CVE-1999-1500 True North Unspecified vulnerability in True North Internet Anywhere Mail Server 2.3

Internet Anywhere POP3 Mail Server 2.3.1 allows remote attackers to cause a denial of service (crash) via (1) LIST, (2) TOP, or (3) UIDL commands using letters as arguments.

5.0
1999-10-01 CVE-1999-0933 Teamshare Unspecified vulnerability in Teamshare Teamtrack 3.0

TeamTrack web server allows remote attackers to read arbitrary files via a ..

5.0
1999-10-01 CVE-1999-0880 Bsdi
Caldera
Denial of service in WU-FTPD via the SITE NEWER command, which does not free memory properly.
5.0
1999-09-30 CVE-1999-0931 Mediahouse Software Unspecified vulnerability in Mediahouse Software Statistics Server 4.28/5.0

Buffer overflow in Mediahouse Statistics Server allows remote attackers to execute commands.

5.0
1999-10-01 CVE-1999-1236 True North Unspecified vulnerability in True North Internet Anywhere Mail Server 2.3.1/3.1

Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf.

4.6
1999-10-01 CVE-1999-0794 Microsoft Link Following vulnerability in Microsoft Excel

Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file.

4.6
1999-09-29 CVE-1999-1350 Arcad Systemhaus Unspecified vulnerability in Arcad Systemhaus Arcad 0.0785

ARCAD Systemhaus 0.078-5 installs critical programs and files with world-writeable permissions, which could allow local users to gain privileges by replacing a program with a Trojan horse.

4.6
1999-09-28 CVE-1999-1352 Linux Unspecified vulnerability in Linux Kernel 2.2.0

mknod in Linux 2.2 follows symbolic links, which could allow local users to overwrite files or gain privileges.

4.6
1999-10-01 CVE-1999-0877 Microsoft Information Exposure vulnerability in Microsoft Internet Explorer 4.01/5.0

Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME.

4.3

0 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS