Weekly Vulnerabilities Reports > September 24 to 30, 2001

Overview

12 new vulnerabilities reported during this period, including 1 critical vulnerabilities and 3 high severity vulnerabilities. This weekly summary report vulnerabilities in 13 products from 11 vendors including Com2001, IBM, Redhat, Openbsd, and PGP. Vulnerabilities are notably categorized as .

  • 10 reported vulnerabilities are remotely exploitables.
  • 12 reported vulnerabilities are exploitable by an anonymous user.
  • Com2001 has the most reported vulnerabilities, with 2 reported vulnerabilities.
  • PGP has the most reported critical vulnerabilities, with 1 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

1 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2001-09-28 CVE-2001-1252 PGP Authentication Bypassing vulnerability in NAI PGP Keyserver Web Administration Interface

Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin for the programs (1) console, (2) cs, (3) multi_config and (4) directory.

10.0

3 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2001-09-27 CVE-2001-1254 Com2001 Unspecified vulnerability in Com2001 Alexis Server 2.0/2.1

Web Access component for COM2001 Alexis 2.0 and 2.1 in InternetPBX sends username and voice mail passwords in the clear via a Java applet that sends the information to port 8888 of the server, which could allow remote attackers to steal the passwords via sniffing.

7.5
2001-09-24 CVE-2001-1035 Slrn Development Team Unspecified vulnerability in Slrn Development Team Slrn

Binary decoding feature of slrn 0.9 and earlier allows remote attackers to execute commands via shell scripts that are inserted into a news post.

7.5
2001-09-24 CVE-2001-1032 Francisco Burzi Remote File Copy vulnerability in PHPNuke

admin.php in PHP-Nuke 5.2 and earlier, except 5.0RC1, does not check login credentials for upload operations, which allows remote attackers to copy and upload arbitrary files and read the PHP-Nuke configuration file by directly calling admin.php with an upload parameter and specifying the file to copy.

7.5

8 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2001-09-26 CVE-2001-1383 Redhat Unspecified vulnerability in Redhat Linux 7.1

initscript in setserial 2.17-4 and earlier uses predictable temporary file names, which could allow local users to conduct unauthorized operations on files.

6.2
2001-09-29 CVE-2001-1170 Amtote International Unspecified vulnerability in Amtote International Homebet

AmTote International homebet program stores the homebet.log file in the homebet/ virtual directory, which allows remote attackers to steal account and PIN numbers.

5.0
2001-09-27 CVE-2001-1382 Openbsd Remote Security vulnerability in OpenSSH

The "echo simulation" traffic analysis countermeasure in OpenSSH before 2.9.9p2 sends an additional echo packet after the password and carriage return is entered, which could allow remote attackers to determine that the countermeasure is being used.

5.0
2001-09-27 CVE-2001-1031 Charles Clark Directory Traversal vulnerability in Charles Clark Meteor Ftpd 1.0

Directory traversal vulnerability in Meteor FTP 1.0 allows remote attackers to read arbitrary files via (1) a ..

5.0
2001-09-26 CVE-2001-1293 3Com Denial of Service vulnerability in 3Com HomeConnect Cable Modem External with USB

Buffer overflow in web server of 3com HomeConnect Cable Modem External with USB (#3CR29223) allows remote attackers to cause a denial of service (crash) via a long HTTP request.

5.0
2001-09-25 CVE-2001-1033 Compaq Denial of Service vulnerability in Compaq Tru64 and Trucluster

Compaq TruCluster 1.5 allows remote attackers to cause a denial of service via a port scan from a system that does not have a DNS PTR record, which causes the cluster to enter a "split-brain" state.

5.0
2001-09-24 CVE-2001-0998 IBM Denial of Service vulnerability in IBM AIX and Hacmp

IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection to HACMP ports (e.g., using a port scan) that does not send additional data, which causes a failure in snmpd.

5.0
2001-09-27 CVE-2001-1253 Com2001 Local Security vulnerability in Alexis Server 2.0/2.1

Alexis 2.0 and 2.1 in COM2001 InternetPBX stores voicemail passwords in plain text in the com2001.ini file, which could allow local users to make long distance calls as other users.

4.6

0 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS