Weekly Vulnerabilities Reports > March 26 to April 1, 2001
Overview
30 new vulnerabilities reported during this period, including 8 critical vulnerabilities and 6 high severity vulnerabilities. This weekly summary report vulnerabilities in 37 products from 32 vendors including Debian, Redhat, Suse, Caldera, and Conectiva. Vulnerabilities are notably categorized as .
- 20 reported vulnerabilities are remotely exploitables.
- 30 reported vulnerabilities are exploitable by an anonymous user.
- Debian has the most reported vulnerabilities, with 4 reported vulnerabilities.
- Redhat has the most reported critical vulnerabilities, with 2 reported vulnerabilities.
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
EXPLOITABLE
EXPLOITABLE
AVAILABLE
ANONYMOUSLY
WEB APPLICATION
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
8 Critical Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2001-03-26 | CVE-2001-0233 | Matthew Smith Debian Redhat | Buffer overflow in micq client 0.4.6 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long Description field. | 10.0 |
2001-03-26 | CVE-2001-0223 | Spawar Navy MIL | Remote Security vulnerability in Wwwwais.25.C Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERY_STRING (HTTP GET request). | 10.0 |
2001-03-26 | CVE-2001-0209 | Shoutcast | Denial Of Service vulnerability in Shoutcast Dnas 1.7.1 Buffer overflow in Shoutcast Distributed Network Audio Server (DNAS) 1.7.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long description. | 10.0 |
2001-03-26 | CVE-2001-0207 | Pierre Beyssac | Unspecified vulnerability in Pierre Beyssac Bing Buffer overflow in bing allows remote attackers to execute arbitrary commands via a long hostname, which is copied to a small buffer after a reverse DNS lookup using the gethostbyaddr function. | 10.0 |
2001-03-26 | CVE-2001-0203 | Watchguard | Unspecified vulnerability in Watchguard Firebox II Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and administrative privileges, by accessing a file that contains hashed passphrases, and using the hashes during authentication. | 10.0 |
2001-03-26 | CVE-2001-0197 | Icecast Redhat | Format string vulnerability in print_client in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary commands. | 10.0 |
2001-03-26 | CVE-2001-0187 | Washington University | Unspecified vulnerability in Washington University Wu-Ftpd Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PASV port assignment. | 10.0 |
2001-03-26 | CVE-2001-0181 | Caldera | Unspecified vulnerability in Caldera products Format string vulnerability in the error logging code of DHCP server and client in Caldera Linux allows remote attackers to execute arbitrary commands. | 10.0 |
6 High Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2001-03-26 | CVE-2001-0166 | Macromedia | Unspecified vulnerability in Macromedia Shockwave Flash Plugin 6.0/7.0/8.0 Macromedia Shockwave Flash plugin version 8 and earlier allows remote attackers to cause a denial of service via malformed tag length specifiers in a SWF file. | 7.6 |
2001-03-26 | CVE-2001-0201 | Umut Gokbayrak | Unspecified vulnerability in Umut Gokbayrak Postaci 1.1.2/1.1.3 The Postaci frontend for PostgreSQL does not properly filter characters such as semicolons, which could allow remote attackers to execute arbitrary SQL queries via the deletecontact.php program. | 7.5 |
2001-03-26 | CVE-2001-0183 | Freebsd | Unspecified vulnerability in Freebsd ipfw and ip6fw in FreeBSD 4.2 and earlier allows remote attackers to bypass access restrictions by setting the ECE flag in a TCP packet, which makes the packet appear to be part of an established connection. | 7.5 |
2001-03-26 | CVE-2001-0190 | SUN | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0). | 7.2 |
2001-03-26 | CVE-2001-0176 | Voyant Technologies | Unspecified vulnerability in Voyant Technologies Sonata 3.0 The setuid doroot program in Voyant Sonata 3.x executes arbitrary command line arguments, which allows local users to gain root privileges. | 7.2 |
2001-03-26 | CVE-2001-0172 | Hans Reiser Suse | Buffer overflow in ReiserFS 3.5.28 in SuSE Linux allows local users to cause a denial of service and possibly execute arbitrary commands by via a long directory name. | 7.2 |
8 Medium Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2001-03-26 | CVE-2001-0232 | Ibrow | Remote Security vulnerability in Ibrow News Desk 1.2 newsdesk.cgi in News Desk 1.2 allows remote attackers to read arbitrary files via shell metacharacters. | 5.0 |
2001-03-26 | CVE-2001-0231 | Ibrow | Unspecified vulnerability in Ibrow News Desk 1.2 Directory traversal vulnerability in newsdesk.cgi in News Desk 1.2 allows remote attackers to read arbitrary files via a .. | 5.0 |
2001-03-26 | CVE-2001-0189 | Intranet Server | Unspecified vulnerability in Intranet-Server Localweb2000 1.1 Directory traversal vulnerability in LocalWEB2000 HTTP server allows remote attackers to read arbitrary commands via a .. | 5.0 |
2001-03-26 | CVE-2001-0188 | Goodtech | Unspecified vulnerability in Goodtech FTP Server 95 98 and FTP Server NT 2000 GoodTech FTP server 3.0.1.2.1.0 and earlier allows remote attackers to cause a denial of service via a flood of connections to the server, which causes it to crash. | 5.0 |
2001-03-26 | CVE-2001-0185 | Netopia | Denial of Service vulnerability in Netopia R9100 Router Netopia R9100 router version 4.6 allows authenticated users to cause a denial of service by using the router's telnet program to connect to the router's IP address, which causes a crash. | 5.0 |
2001-03-26 | CVE-2001-0182 | Checkpoint | Unspecified vulnerability in Checkpoint Firewall-1 4.1 FireWall-1 4.1 with a limited-IP license allows remote attackers to cause a denial of service by sending a large number of spoofed IP packets with various source addresses to the inside interface, which floods the console with warning messages and consumes CPU resources. | 5.0 |
2001-03-26 | CVE-2001-0177 | Webmaster | Unspecified vulnerability in Webmaster Conferenceroom 1.8.1 WebMaster ConferenceRoom 1.8.1 allows remote attackers to cause a denial of service via a buddy relationship between the IRC server and a server clone. | 5.0 |
2001-03-26 | CVE-2001-0175 | Netscape | Unspecified vulnerability in Netscape Fasttrack Server 4.0.1 The caching module in Netscape Fasttrack Server 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by requesting a large number of non-existent URLs. | 5.0 |