Weekly Vulnerabilities Reports > November 12 to 18, 2001

Overview

12 new vulnerabilities reported during this period, including 0 critical vulnerabilities and 3 high severity vulnerabilities. This weekly summary report vulnerabilities in 22 products from 11 vendors including Microsoft, Acme, GNU, Cisco, and Midnight Commander. Vulnerabilities are notably categorized as and "Exposure of Resource to Wrong Sphere".

  • 10 reported vulnerabilities are remotely exploitables.
  • 12 reported vulnerabilities are exploitable by an anonymous user.
  • Microsoft has the most reported vulnerabilities, with 2 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

0 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS

3 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2001-11-18 CVE-2001-1228 GNU Buffer Overflow vulnerability in GNU Gzip 1.2.4/1.2.4A/1.3

Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.

7.5
2001-11-16 CVE-2001-0899 Phpnuke
Rick Fournier
Network Tools 0.2 for PHP-Nuke allows remote attackers to execute commands on the server via shell metacharacters in the $hostinput variable.
7.5
2001-11-14 CVE-2001-0724 Microsoft Unspecified vulnerability in Microsoft Internet Explorer 5.5

Internet Explorer 5.5 allows remote attackers to bypass security restrictions via malformed URLs that contain dotless IP addresses, which causes Internet Explorer to process the page in the Intranet Zone, which may have fewer security restrictions, aka the "Zone Spoofing Vulnerability variant" of CVE-2001-0664.

7.5

9 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2001-11-14 CVE-2001-0723 Microsoft Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0

Internet Explorer 5.5 and 6.0 allows remote attackers to read and modify user cookies via Javascript, aka the "Second Cookie Handling Vulnerability."

6.4
2001-11-18 CVE-2001-0900 Francisco Burzi Directory Traversal vulnerability in Bharat Mediratta Gallery

Directory traversal vulnerability in modules.php in Gallery before 1.2.3 allows remote attackers to read arbitrary files via a ..

5.0
2001-11-15 CVE-2001-0898 Opera Software Unspecified vulnerability in Opera Software Opera web Browser

Opera 6.0 and earlier allows remote attackers to access sensitive information such as cookies and links for other domains via Javascript that uses setTimeout to (1) access data after a new window to the domain has been opened or (2) access data via about:cache.

5.0
2001-11-15 CVE-2001-0897 Infopop Cross-Site Scripting vulnerability in Ultimate Bulletin Board

Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via an [IMG] tag that references an about: URL with an onerror field.

5.0
2001-11-15 CVE-2001-0895 Cisco Local Interface ARP Denial of Service vulnerability in Cisco

Multiple Cisco networking products allow remote attackers to cause a denial of service on the local network via a series of ARP packets sent to the router's interface that contains a different MAC address for the router, which eventually causes the router to overwrite the MAC address in its ARP table.

5.0
2001-11-13 CVE-2001-0893 Acme Exposure of Resource to Wrong Sphere vulnerability in Acme Mini Httpd

Acme mini_httpd before 1.16 allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.

5.0
2001-11-13 CVE-2001-0892 Acme Exposure of Resource to Wrong Sphere vulnerability in Acme Thttpd

Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.

5.0
2001-11-13 CVE-2001-1415 Openbsd Local Security vulnerability in Openbsd 2.9/3.0

vi.recover in OpenBSD before 3.1 allows local users to remove arbitrary zero-byte files such as device nodes.

4.6
2001-11-12 CVE-2001-1429 Midnight Commander Denial-Of-Service vulnerability in Midnight Commander Midnight Commander 4.5.1

Buffer overflow in mcedit in Midnight Commander 4.5.1 allows local users to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a crafted text file.

4.6

0 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS