Beyond-Security's SecuriTeam.com
 

 SecuriTeam Home
 About SecuriTeam
 Ask the Team
 Advertising info
 Security News
 Security Reviews
 Exploits
 Tools
 UNIX focus
 Windows NT focus
 


 Jun / 2003  Exploits
  1. ATFTPd Exploit Code Release (Long Filename)
  2. Exploit Code Release for lsmcode Vulnerability
  3. Exploit Code Released for errpt
  4. Exploit Code Released for diagrpt Vulnerability
  5. Apache 2.x APR Exploit Code
  6. Magic Winmail Server Format String Vulnerability (Exploit)
  7. IIS WebDAV Exploit New Release
 May / 2003  Exploits
  1. Maelstrom Vulnerable to a Local Buffer Overflow (Another Exploit)
  2. WsMp3d Remote Exploit for Heap Overflow Vulnerability (CHA)
  3. Maelstrom Vulnerable to a Local Buffer Overflow (Exploit)
  4. Cdrecord Format String Vulnerability
  5. Remote BZFlag Server DoS
  6. Vulnerabilities in Kerio Personal Firewall (Exploit)
  7. Polycom 6100-4 NetEngine Denial of Service Attack (TFTP)
  8. Pi3Web Vulnerable to a DoS (Multiple /)
 Apr / 2003  Exploits
  1. PoPToP PPTP Server Remote Exploit Code Released
  2. Snort TCP Stream Reassembly Integer Overflow Exploit
  3. ATM on Linux Exploit Code Release (les, local)
  4. Half-Life Exploit Code Released (Malformed Packet)
  5. Remote BSD Samba call_trans2open i386 Buffer Overflow Exploit
  6. Local Exploit for Sendmail's prescan() Function
  7. Remote Multiple Buffer Overflow Vulnerabilities in Passlogd Sniffer
 Mar / 2003  Exploits
  1. Chindi DoS Exploit Code
  2. Remote BitchX/Epic Exploit Code (Serverside)
  3. OpenSSL Ptrace Exploit Code
  4. WebDAV Exploit Code Released
  5. Ptrace Exploit Code Released
  6. Locator Service Buffer Overflow Exploit Code
  7. Exploit Released for the Intel PXE Buffer Overflow
  8. PGP4Pine Exploit Mail Generator
  9. Exploit Released for SUNWlldap Library Buffer Overflow
  10. TCPDUMP ISAKMP Denial of Service Exploit Released
  11. MySQL's Default Configuration Allows Modification of MySQL's Execution Owner (FILE Permissions)
  12. OpenBSD lprm(1) Exploit
  13. Win32hlp Exploit for : ":LINK overflow"
  14. XFree86 XLOCALEDIR Exploit Code
  15. Buffer Overflow Vulnerability Found in file (Exploit Code)
  16. DoS Vulnerability in Eudora
 Feb / 2003  Exploits
  1. STMKFont Exploit Code Released
  2. NetHack 'games' Privileges Escalation Exploit Code (-s)
  3. RealServer 8 Remote Buffer Overflow Vulnerability (Exploit, SETUP, RTSP)
  4. Exploit for CVS Double free() for Linux pserver
 Jan / 2003  Exploits
  1. MS-SQL Vulnerability Exploiting Trusted Connections
  2. Solaris 'at' Exploit Code
  3. Outlook Remote Code Execution in Preview Pane (S/MIME, PoC)
  4. MSSQL2000 Remote UDP Exploit
  5. Local and Remote Exploit For ISC DHCPd Format String (Update Log)
  6. Stunnel Format String Vulnerability (Exploit)
  7. Local and Remote Exploit for MySQL (Password Scrambling)
  8. Psunami Bulletin Board CGI Remote Command Execution
  9. Security Vulnerability Found in S8Forum
  10. Tanne Format String Exploit Code
  11. OpenBSD and NetBSD LKM That Hides Files by Patching getdirentries()
  12. Ptrace() Injector (Malaria)
  13. Smart Search CGI Remote Command Execution Exploit
  14. CUPS Integer Overflow Exploit
 Dec / 2002  Exploits
  1. PUTTY SSH-Client Exploit
  2. zkfingerd Remote Exploit
  3. Melange Chat System Remote Exploit Code Released
  4. Remote Heap malloc/free and Multiple Overflow Vulnerability in WSMP3 (Exploit)
  5. Exploit for Sendmail Local Root Vulnerability (FreeBSD, -d)
  6. Pfinger Exploit Code Released
  7. Pc-cillin pop3trap.exe Buffer Overflow Exploit
  8. Cobalt RaQ4 Remote Root Exploit (overflow.cgi)
  9. Zeroo Webserver Remote Directory Traversal Exploit
  10. BigFun Remote DoS Attack
  11. VNC Man in the Middle Exploit Code
 Nov / 2002  Exploits
  1. Apache Scoreboard Shared Memory
  2. Oracle TNS SEH Exploit
  3. Calisto Internet Talker DoS
  4. Linux Rsync Remote Exploit Code
  5. Local Root Exploit for cifslogin on HP-UX
  6. i386 Linux Kernel DoS (Local)
  7. vBulletin Calendar Improved Exploit Code
  8. Exploit Code for IP Smart Spoofing
  9. QNX Timer Implementation Vulnerable to DoS
  10. Xsun (Sparc) Local Exploit (RGB_DB)
 Oct / 2002  Exploits
  1. Windows RPC DoS Exploit Code (from SPIKE to C)
  2. Sendmail Local Exploit Code (GDB support)
  3. GetAd, NetDDE Exploit Code (WM_COPYDATA)
  4. Mod_SSL Off-By-One Exploit Code (htaccess)
  5. Linux Traceroute Exploit Code Released (GDB)
  6. Proof of Concept Exploit of Windows Help Overflow
  7. Windows Help Buffer Overflow PoC
  8. FreeBSD File Descriptors Bug (Iosmash2)
  9. Telnet/SSH Command Injection via PTrace
 Sep / 2002  Exploits
  1. Local Root Exploit Found in gds_lock_mgr
  2. OpenSSL Exploit Code (Slapper)
  3. Buffer Overruns in SQL Server 2000 Resolution Service Could Enable Code Execution (Exploit)
  4. vBulletin Calendar Command Execution Vulnerability (Exploit)
  5. AlsaPlayer Buffer Overflow Exploit
  6. Local Root Exploit for Cisco VPN 5000 Client
  7. Remote Exploitable Heap Overflow in Null HTTPd
  8. Cisco VPN Concentrator 3000 ISAKMP DoS details
  9. Linuxconf Locally Exploitable Buffer Overflow Vulnerability (Exploit)
  10. PerlCal cal_make.pl Directory Traversal
  11. EFStool Local Root Exploit for Linux/x86
  12. KSTAT (and Maybe Others) Bypass (Phantasmagoria)
  13. Zero Width GIF (Exploit)
  14. pwck Local Buffer Overflow
 Aug / 2002  Exploits
  1. Caldera Xserver Exploit Code (xkbcomp)
  2. GDAM123 Exploit Code Released
  3. Exploit Code Release for Apache Directory Traversal (non-UNIX)
  4. Windows SMB Nuker
  5. Denial of Service against MySQLd (Multiple Connections)
  6. Advanced Windows Shellcode
  7. Buffer Overflow in MyWebServer (Exploit, GET)
  8. Cisco IOS Heap Exploit Proof of Concept
  9. IMAP4rev1 Remote Exploit Code Released (LSUB)
  10. Remote Exploit Code for Solaris SPARC TelnetD
  11. Cobalt Linux Local Root Exploit (authenticate)
  12. Citrix and Terminal Server Multiple Exploits
  13. Tool allows Hijacking Kernel Symbols and Functions to Hide Binary Files
  14. Winhlp32.exe Buffer Overflow Exploit Code
  15. Trillian IRC Event 001 Buffer Overflow Vulnerability (Exploit)
  16. Exploit Code Released for su Vulnerability (Tru64)
 Jul / 2002  Exploits
  1. IPSwitch IMail Multiple Security Vulnerabilities (GET, HTTP/1.0)
  2. Arbitrary Code Execution Vulnerability in VanDyke SecureCRT
  3. How to Reproduce PHP Segfault
  4. Nanog Traceroute Format String Exploit
  5. PHP Resource Exhaustion Denial of Service
  6. TrendMicro's VirusWall Space Gap (Exploit)
  7. Stealing Hotmail.com Cookie and User Login
  8. IIS Administration Web Site Redirect Exploits
  9. 2fax Local Exploit Code Released (-bpcx)
  10. Exploit Code Released for MFC ISAPI Framework Buffer Overflow (BadBlue PWS)
  11. Exploit for Previously Reported DoS Issues in Shambala Server
  12. KCMS Configure Tool Security Vulnerability (Exploit)
  13. Remote Winamp Exploit (Product Updates)
  14. OpenBSD SSHd Remote Root Exploit
 Jun / 2002  Exploits
  1. PsyBNC DoS Exploit Code (Long Password)
  2. Wu-FTPd Remote Heap Overflow Exploit (In Java)
  3. Telindus Router 10xx and 11xx Remote Exploit
  4. Multiple Exploit Codes for Apache Chunked Buffer Vulnerability
  5. Cisco VPNclient Buffer Overflow
  6. TrACESroute GOLD Local Format String Exploit
  7. Ciscokill Exploit Code Released
  8. QNX Multiple Security Vulnerabilities (ptrace, SIGSEGV, phgrafx, phlocale)
  9. Mnews Exploit Code Released
 May / 2002  Exploits
  1. Remote Exploit for UW-IMAPd Capability (IMAP4)
  2. YoungZSoft CMailServer Buffer Overflow
  3. Multiple Vulnerabilities in CISCO VoIP Phones (Additional details)
  4. cURL Remote Exploit Code Released
  5. Windows 2000 Server IIS 5.0 .ASP Overflow Exploit
  6. Bruteforcing support for PPPD (Patch)
  7. LabVIEW Web Server DoS Vulnerability Exploit Code Released
  8. 3CDaemon DoS Exploit
 Apr / 2002  Exploits
  1. Suid Application Execution May Give Local Root (Testing App)
  2. Matu FTP Remote Buffer Overflow Vulnerability
  3. psyBNC Vulnerable to a DoS Attack (Exploit)
  4. Suid Application Execution May Give Local Root (Exploit Code)
  5. Gawk Contains an Exploitable Buffer Overflow
  6. Posadis Format String and Buffer Overflow Exploit Codes
  7. An Alternative Method to Check for LKM Backdoor/Rootkit
  8. /usr/bin/mail OpenBSD Local Root Compromise (Escaping Tilde, Exploit)
  9. INN Security Problems Allow Gaining of news Privileges
  10. Exploiting the Race Conditions in LogWatch
  11. Exploit for Tarantella Enterprise 3 Installations
  12. ICECast Remote Exploit Code (GET Overflow)
 Mar / 2002  Exploits
  1. Oracle9i TSN Vulnerable to a DoS Attack
  2. Root Compromise through LogWatch (Exploit code)
  3. Exploiting the Zlib Bug in OpenSSH
  4. Solaris Login Remote Exploit (via telnetd)
  5. phpBB2 Remote Execution Command (db.php)
  6. SunSolve CD CGI Scripts Allows Remote Command Execution
  7. XTux Arena Vulnerable To a Denial of Service
  8. Citadel/UX Server Remote DoS Attack Vulnerability
  9. MTR Allows Local Users to Gain Root Privileges
  10. Windows SMTP Service Denial of Service (BDAT)
  11. Apache & PHP Proof of Concept Exploit
  12. Details and Exploitation of a Buffer Overflow in mshtml.dll (SRC)
 Feb / 2002  Exploits
  1. Kazaa, Grokster and Morpheus Remote Denial of Service
  2. Alcatel 4400 PBX Hack
  3. Bypassing Content Filtering Software (Exploit)
  4. CodeBlue Vulnerable to an Exploitable Buffer Overflow
  5. SiteNews Remote Add User
  6. Avirt Gateway Remote Buffer Overflow Proof of Concept
  7. Format String Vulnerability in VXPrint Allows Gaining of Arbitrary Privileges
  8. Hanterm Exploit Code Released
  9. Sastcpd 'authprog' Local Root Compromise
  10. User-mode-Linux Security Flaws
  11. PHP Safe Mode Filesystem Circumvention Problem
  12. Multiple pwck/grpck Privilege Elevation Vulnerabilities (Exploit code)
  13. NETGEAR RO318 HTTP Filter Vulnerability
  14. mIRC irc:// Vulnerability and Nickname Buffer Overflow
 Jan / 2002  Exploits
  1. SHOUTcast Vulnerable to Malformed CGI Request (admin.cgi)
  2. BadBlue Contains Multiple Security Vulnerabilities (Exploit code)
  3. UnixWare 7.1.1 Scoadminreg.cgi Local Exploit
  4. Improved UUCP Exploit Code Released
  5. Sniffit Exploit Code Released (normmail)
  6. Chinput Buffer Overflow Vulnerability Exploit Code Released
  7. /usr/bin/at Exploit Code Released
  8. UnixWare 7.1.1 rpc.cmsd Remote Exploit
  9. Eterm SGID 'utmp' Local Buffer Overflow
  10. UPNP Denial of Service (Joint code, Chargen, Initiator)
  11. Cross-Site Scripting Vulnerability Found in PostNuke
  12. BOOZT! Standard CGI Vulnerability (Exploit Released)
  13. Improper Input Validation in Bugzilla (Exploit)
  14. XTerm UnixWare Exploit Code Released (-xrm)
  15. /usr/dt/bin/dtterm Exploit Code Released (-xrm parameter)
  16. Solaris /bin/login Remote Exploit Code
  17. UPNP Exploit Code Released
  18. AIM Buffer Overflow Exploit
 Dec / 2001  Exploits
  1. ATPHTTPd Buffer Overflow Exploit Code
  2. Windows 2000 IKE DoS Exploit Code
  3. OpenSSH UseLogin Bug Proof of Concept Exploit
  4. Lucent ORiNOCO Registry Decryption
  5. Microsoft IIS/5.0 Content-Length DoS Exploit Code
  6. Race Condition in FreeBSD AIO Implementation
  7. OpenBSD Local DoS (Bad Syscalls Releases)
  8. UUCP Family Exploit (uucp / uuparams / uuname)
  9. IIS Server Side Include Buffer Overflow (Exploit)
  10. Compaq Insight Manager Remote SYSTEM Shell (Exploit)
 Nov / 2001  Exploits
  1. Firewall-1 Remote SYSTEM Shell Buffer Overflow
  2. PowerFTP Directory Traversal and DoS Vulnerabilities
  3. Digital UNIX CDE dtaction Vulnerability (proof of concept code, -user)
  4. ActivePerl PerlIS.dll Exploit Code Released
  5. More Problems with RADIUS (Protocol and Implementations, exploit code)
  6. RunAs Service Pipe Authentication Failure (exploit code)
 Oct / 2001  Exploits
  1. Remote DoS in 6tunnel
  2. Weak Authentication in iBill's Password Management CGI
  3. Response Header Overflow Exploit Code Released
  4. Oracle9iAS Web Cache Multiple DoS and Buffer Overflow
  5. TYPSoft FTP Server STOR/RETR Denial of Service Vulnerability
  6. HylaFax Format String Vulnerabilities (Exploit Code)
  7. UnixWare 7 lpsystem Exploit Code Released
  8. Site Protector Password Cracker
  9. A Security Vulnerability in AIM Causes a DoS (Exploit)
  10. 3Com OfficeConnect 812/840 Router DoS Exploit Code
  11. CGIEmail's Command Execution Vulnerability (cgicso)
 Sep / 2001  Exploits
  1. Digital UNIX msgchk Multiple Vulnerabilities (Username Overflow, One Liner)
  2. Kazaa / Morpheus Denial of Service Attack (Flood)
  3. AOLserver Exploit Code Released (ParseAuth)
  4. HP UNIX /usr/sbin/swverify Exploit Code
  5. JavaScript Can Write Anything to the Windows' Registry
 Aug / 2001  Exploits
  1. Solaris Patchadd Symlink Exploit
  2. AOLserver Vulnerable To Host Buffer Overflow
  3. BSDi Reboot Machine Code as Any User
  4. Exploit Code Released For the Apache Server Address Disclosure Vulnerability
  5. Solaris Xlock Heap Overflow Vulnerability (Exploit, XUSERFILESEARCHPATH)
  6. Security Vulnerability found in /usr/bin/locate (Exploit Code)
  7. ARPNuke, Windows Network Nuker
  8. Denial of Service Vulnerability in SHOUTcast Server (User Agent, Host)
  9. Quake 3 Arena Security Vulnerability (CHAR 255, Exploit)
 Jul / 2001  Exploits
  1. Pic LPd Remote Exploit (QUEUE)
  2. Solaris DTmail Buffer Overflow Vulnerability (MAIL Environment)
  3. Exploit Code Released for the SMTP Attachment Protection Bypass
  4. DIP Exploit Code Still Works After 3 Years
  5. FreeBSD TOP Kill/Renice Format String Vulnerability
  6. Linux Man Malicious Cache File Creation Vulnerability (Exploit)
  7. Exploit Code Released for the Small MSS Denial of Service
  8. ArGoSoft FTP Server Weak Password Encryption
  9. 3Com TelnetD Password Brute Forcing
  10. Messenger and Hotmail MITM Exploit (Arptool and Neaky)
  11. Xman Exploit Code Released
  12. Quake Spoofed Unconnected Users Denial of Service (Exploit Code)
  13. Samsung ML-85G Printer Linux Driver Binary Exploit
  14. FireWall-1 RDP Bypass Vulnerability Exploit Code Released
  15. Xloadimage Remote Vulnerability (Exploit)
  16. Multiple Exploit Codes Released for the CFingerD Vulnerability
  17. Causing CylantSecure to Delay Response
  18. LMail Local Root Exploit
  19. Exploits Released for the Solaris Libsldap Buffer Overflow (LDAP_OPTIONS)
  20. Exploit Code Released for Solaris 'at' Arbitrary Command Execution (Format String)
  21. Solaris Whodo Buffer Overflow Vulnerability (Exploit, SOR, CFTIME)
  22. Xvt Buffer Overflow Vulnerability (-T, -name)
  23. Cisco IOS HTTP Authorization Exploit Code
  24. Solaris Mailtool Buffer Overflow Exploit Code (OPENWINHOME)
  25. Exploit Code Released for the MS Windows 9x NETBIOS Password Verification Vulnerability
 Jun / 2001  Exploits
  1. Exploit Code for the Buffer Overflow in XInetD Released (log.c)
  2. Exploit Code Released for the Index Server ISAPI Extension Vulnerability (IDQ)
  3. LPRng and Tetex Temp Files Race Vulnerability (UID LP Exploit)
  4. eXtremail Remote Format String Security Vulnerability
  5. KTVision Symlinks Vulnerability Leads to Root Compromise
  6. Suid Scotty (ntping) Buffer Overflow
  7. Buffer Overflow Found in GazTek HTTP Daemon (GET)
  8. Additional Details Released on the IIS Remote Buffer Overflow (Indexing Service, IDA)
  9. Apache Artificially Long Slash Directory Listing Exploit Code
  10. Rxvt Buffer Overflow Vulnerability
  11. WebStore Remote Command Execution
  12. BiblioWeb's Built-in Web Server Vulnerable to DoS (long URL)
  13. HPUX Old-style Exploit for Cau
  14. Exploit Code for Su-Wrapper Released
  15. Sudo Voodoo (Exploit)
  16. Man and Man-db MANPATH Exploit Code Released
  17. HP OpenView NNM Buffer Overflow Exploit Code Released (restore_config)
  18. /usr/bin/mail Buffer Overflow ($HOME)
  19. TWIG Unquoted SQL Query Vulnerability
  20. OmniHTTPd Source Viewing Exploit Code
 May / 2001  Exploits
  1. Solaris Tip Buffer Overflow Vulnerability (Exploit Code)
  2. X-Chat Vulnerable to a Format String Attack (nickname)
  3. NetBIOS Session Request Flooder Exploit Code Released
  4. Netscape Enterprise Server Method and URI Overflow
  5. Microsoft FTP Server Wildcard Processing DoS (Exploit Code)
  6. IIS CGI Decode Vulnerability Exploit Code Released
  7. Sendfile Daemon Bugs
  8. Vixie Cron File Editing Security Vulnerability
  9. CFingerD Remote Format String Vulnerability (Advance Exploit Code)
  10. IISHACK2000 - Remote ISAPI Printer Buffer Overflow Exploit Code (Perl)
  11. Solaris mailx Vulnerability (-F option)
  12. Cisco's HSRP is vulnerable to a DoS attack
  13. IIS 5.0 ".printer" Exploit Code Released
 Apr / 2001  Exploits
  1. Netprint Security Vulnerability Leads to Root Compromise (-n option)
  2. Proof of Concept DoS Code against Novell Border Manager Enterprise Edition
  3. PHP-Nuke Bad SQL Query Filtering Exploit Code Released
  4. DTSession Local Root Compromise (LANG environment)
  5. KCMS_configure Local Root Compromise (-o parameter, exploit)
  6. WFTPD Pro Vulnerable to a Buffer Overflow Attack (RETR, CWD)
  7. Globbing Exploit Code Released
  8. Exploit Code for HylaFAX Vulnerability Released (-q parameter)
  9. Oracle TNSLSNR DoS (Garbage, TCP 1521)
  10. Exploit code for Websweeper DoS (GET Request)
  11. Email List Generator security vulnerability (command execution)
  12. Exploit code released for CrazyWWWBoard vulnerability (User-Agent)
  13. Exploit code released for the M3U playlist overflow
  14. PTrace Improved Exploit Code Released (Race condition)
 Mar / 2001  Exploits
  1. Silent Runner Collector Vulnerable to a Buffer Overflow (Large HELO)
  2. JavaServer Web Development Kit Directory Traversal Vulnerability
  3. Inframail DoS vulnerability (Large POST)
  4. PHP-Nuke vulnerability in XML parser
  5. Pi3Web Server vulnerable to a buffer overflow and path exposure
  6. Ikonboard v2.1.7b "show files" vulnerability
  7. Half-life Server Buffer Overflows and String Formatting Vulnerabilities
  8. INDEXU Authentication Bypass
  9. WarFTP Directory Traversal Vulnerability
  10. SlimServe HTTPd vulnerable to directory traversal
  11. Vulnerability in Muscat Empower exposes physical path
  12. WFTPd Pro Buffer Overflow Vulnerability (CWD)
  13. ROADS search system "show files" vulnerability with "null bite" bug
  14. SunFTP Vulnerable to chroot Breaking
  15. SurgeFTP vulnerable to a DoS (Malformed ls request)
  16. MERCUR Mailserver Buffer Overflow Vulnerability (EXPN)
  17. Exploit for the SSH CRC-32 Compensation Attack Detector Vulnerability
  18. Ja-elvis & Ko-helvis local root exploit
 Feb / 2001  Exploits
  1. WebReflex HTTPd buffer overflow
  2. APC management card vulnerable to a DoS attack (1 at a time, Lockout timeout)
  3. Licq vulnerable to a DoS
  4. ELM exploit code released (-f parameter)
  5. WebSPIRS CGI script "show files" vulnerability
  6. Fore/Marconi ASX Switches DoS exploit code released
  7. Chili!Soft ASP contains multiple vulnerabilities
  8. BIND TSIG exploit code released
  9. NetSuite web server vulnerable to a buffer overflow attack
  10. Sedum HTTP Server vulnerable to directory traversal
  11. Vulnerability in Action Quake2 makes it vulnerable to a DoS
  12. Free Java Web Server vulnerable to directory traversal
  13. Resin Webserver vulnerable to directory traversal
  14. Thinking Arts Store.cgi Directory Traversal
  15. Winlogon Vulnerability Enables Local Users to Crash Windows NT/2000 (Exploit Code)
  16. Bajie HTTP JServer vulnerable to Shell Command Execution and Directory Traversal
  17. HIS Auktion "show files" and remote command execute vulnerabilities
  18. Workaround for the Unintended JSP Execution when using Oracle, Apache and JServ
  19. Potential Vulnerability in the execution of JSPs outside doc_root (Patch Available)
  20. Oracle Java Virtual Machine Vulnerability when granting file permission
  21. DC20Ctrl exploit code released
  22. Environment and Setup Variables can be access through WebPage.cgi
  23. Winsock Mutex vulnerability exploit code released
  24. SQLExec allows easy exploitation of default SQL passwords
  25. Buffer overflow and Directory Traversal Vulnerabilities in BiblioWeb Server
  26. Traversal Vulnerability found in Picserver
  27. Nobreak Technologies CrazyWWWBoard vulnerable to a buffer overflow
  28. XMail CTRLServer remote buffer overflow vulnerability
  29. Multiple vulnerabilities in Prospero CGI
  30. QNX RTP FTPd stack overflow
  31. IBM WebSphere vulnerable to CSS vulnerability
  32. Solaris ximp40 shared library buffer overflow
 Jan / 2001  Exploits
  1. AudioGalaxy stores passwords insecurely
  2. BBS Forum vulnerable to showcode vulnerability
  3. Solaris mailx(1) lockfile bug
  4. Mac OS 9 Multiple Users Control Panel password vulnerability
  5. BS Scripts Multiple CGI Vulnerabilities
  6. Oracle Database Server vulnerable to a Denial of Service attack
  7. Netscape Enterprise Server REVLOG request problem
  8. Netopia R9100 Router vulnerable to a DoS (self-telnet)
  9. Format bugs in icecast allow remote code execution
  10. Borderware Firewall ping DoS vulnerability (Smurf exploit)
  11. SCO OpenServer /usr/bin/mscreen local exploit
  12. Tru64 (OSF/1) /usr/bin/su local exploit
  13. Buffer overflow in iPlanet Web Server 4 server side SHTML parsing module (Exploit)
  14. Matt's ICQ Clone Security Holes
  15. Solaris /usr/bin/write exploit code released
  16. jaZip exploitable buffer overflow (DISPLAY)
  17. Tcpdump remote root vulnerability (AFS parsing overflow)
  18. Exploit code released for the Memory leakage in ProFTPD (SIZE FTP)
  19. getgrnam() function exploit code released (Exploit)
  20. IRIX's fcagent daemon is vulnerable to a Denial of Service attack.
  21. CU parameter overflow vulnerability (Exploit code, -l command line argument)
  22. Fancylogin exploit code released (-h parameter)
  23. Another remote heap buffer overflow in oops (domain_name, Exploit)
  24. STonX exploit code released (HOME and STONEX environment variables)
 Dec / 2000  Exploits
  1. Exploit code for xconq has been released (XCONQCONFIG)
  2. HP OpenView OmniBack II generic remote exploit
  3. C-Kermit exploit code released
  4. ITetris root exploit code released
  5. netToe vulnerable to a DoS
  6. Insecure input validation in everythingform.cgi, ad.cgi and simplestmail.cgi (command execution)
  7. PHP remote format string overflow vulnerability (Exploit code)
  8. IBM Net.Data Local Path Disclosure
  9. /usr/bin/pppd vulnerable to a buffer overflow (exploit code)
  10. File Upload via Form exploit code released
  11. BroadVision One-To-One Enterprise Path disclosure vulnerability
  12. BSDI /usr/contrib/mh/bin/inc local root exploit
  13. /usr/X11R6/bin/mogrify exploit code released (HOME env)
  14. BSDI /usr/bin/suidperl local root exploit
  15. Wingate MSG_OOB flag DoS (exploit code)
  16. Exploit code for Exchange content="" vulnerability
  17. PhoneBook exploit code released
 Nov / 2000  Exploits
  1. glibc LANGUAGE exploit has been released
  2. Vulnerabilities found in PTlink (IRCd) and PTlink (Services)
  3. CGIForum allows reading of local files (thesection parameter)
  4. RCP shell escape bug allows execution of arbitrary commands
  5. rcvtty local exploit (for BSDI)
  6. Koules root exploit released
  7. Buffer overflow vulnerability in Oracle cmctl (exploit code)
  8. SmartServer password encryption cracked
  9. BrowseGate Password encryption cracked
  10. Bad password encryption in Cart32
  11. Vixie cron fopen() and preserved umask vulnerability
  12. WatchGuard Firebox Firewall DoS (resource depletion)
  13. BSDI Elm exploit code has been released (EXEC and TERM)
  14. Sockv5 exploit code has been released
  15. Cons.saver local DoS attack (NULL overwrite)
  16. BSDI Filter exploit code has been released
  17. Gnomehack exploit code has been released
  18. PHF Buffer overflow exploit code has been released
  19. GBook.cgi allows remote command execution
  20. RideWay PN Telnet DoS (garbled hostname)
  21. Security vulnerabilities in Small HTTP Server (DoS)
  22. Modutils and Netkit allow gaining of root access
  23. GSX vulnerable to a DoS (multiple connections)
  24. BIND 8.2.2-P5 DoS vulnerability (exploit, BIND_ZXFR)
  25. HP-UX resource monitor service (exploit)
  26. Authentix Input Validation security hole
  27. Quake World server buffer overflow (rcon)
  28. Exploit code released for the nasty XFree DoS
  29. Poll It CGI vulnerable to arbitrary command execution
  30. Remote command execution via KW Whois
  31. Exploit released for dump/restore vulnerability
  32. Bypassing Serv-U FTP Server's Anti-Hammering Protection
  33. Unify eWave ServletExec DoS
  34. Listmail exploit code released
  35. FormNow exploit code released
  36. Ultraseek Remote DoS Vulnerability (malformed request)
 Oct / 2000  Exploits
  1. Mailing List & News remote security vulnerability exposed
  2. 'Host' command vulnerable to buffer overflow
  3. NTop -w vulnerability as an example for finding ESPs
  4. News Update's password protection can be bypassed
  5. Additional details about the IIS remote execution vulnerability
  6. JRun's vulnerabilities explained (command execution, file retrieval, WEB-INF)
  7. Multiple vulnerabilities in Half-life Dedicated Server for Linux
  8. HP-UX crontab temporary file symbolic link vulnerability
  9. NTop -w remote buffer overflow (exploit code)
  10. Avirt Mail vulnerable to a DoS (SMTP session)
  11. Xlock -d format string exploit code has been released
  12. Linux Napster remote DoS exploit code has been released
  13. Tin exploit code has been released (TERM variable)
  14. Route (/sbin/route) exploit has been released (add parameter)
  15. Linux Oracle security vulnerability (ORACLE_HOME)
  16. Linux /usr/X11R6/bin/bitmap exploit code has been released (-stipple)
  17. Linux /usr/games/zarch and /usr/games/splumber exploit code has been released
  18. Dopewars vulnerability allows gaining of privileged access (popen, HOME)
  19. Slrnpull exploit code has been released (SLRNPULL_ROOT)
  20. Makewhatis exploit code released
  21. DoS in Intel Corporation InBusiness eMail Station
  22. Vulnerability in Oracle Internet Directory
  23. DoS attack against computers running Microsoft NetMeeting (Additional details)
  24. Comprehensive exploit for PHP Format String vulnerability released
  25. Shred does not really wipe the file
  26. Bytes Interactive's Web Shopper (shopper.cgi) Directory Traversal Vulnerability
  27. Mail File POST vulnerability
  28. eXtropia WebStore Directory Traversal vulnerability (file viewing)
  29. PINE exploit has been released (periodical check)
  30. Ncurses buffer overflows (exploit code)
  31. Multiple OpenBSD products vulnerable to string format attacks (fstat, photurisd, talkd, eeprom)
  32. Klogd exploit using Envcheck
  33. Godmessage 4 exploit code has been released
  34. Glibc and userhelper can be used to gain local root
  35. OpenBSD xlock exploit code has been released
  36. OpenBSD vulnerable to an ARP-request DoS
  37. Local file exposure in Moreover.com's Cached_Feed.cgi
  38. BSD chpass exploit code released
  39. /bin/su local libc exploit yielding a root shell
  40. Webteacher's Webdata local files browsing vulnerability
 Sep / 2000  Exploits
  1. Exploit code released for the WebTV DoS
  2. Extent RBS directory Transversal
  3. Harassing ICUII clients
  4. Immunix OS exploit code for the glibc 'format' string bug
  5. Exploiting Eudora and the double click Office vulnerability (DLL)
  6. IBM WebSphere 'Host:' vulnerability
  7. Another Horde library $from bug
  8. SCO UnixWare 7 / Double Vision local root exploit
  9. DoS in FUR HTTP Server
  10. Mobius DocumentDirect exploit code has been released
  11. MultiHTML vulnerability allows local files retrieval
  12. Sambar Server search CGI vulnerability
  13. Robotex Viking Server exploit code has been released
  14. TYPSoft FTP Server remote DoS
  15. YaBB security vulnerability ($num)
  16. AnyPortal (php) allows access to local files
  17. Unsafe passing of variables to mailform.pl in MailForm
  18. WinSMTPD remote exploit and DoS (HELO)
  19. NetMailshar Denial of Service Vulnerability
  20. Tetrinet for Linux Denial of Service attack
  21. PhpPhotoAlbum file access vulnerability (explorer, getalbum)
  22. Exploit code for screen root compromise has been released (string bug)
  23. Windows 9x share service file handle vulnerability
  24. EFTP vulnerable to two DoS attacks
  25. CPMdaemon password brute force attack
  26. WFTPD contains two security vulnerabilities (%C and upper characters)
 Aug / 2000  Exploits
  1. More problems with Auction Weaver & CGI Script Center (fromfile)
  2. SunFTP vulnerable to two Denial-of-Service attacks (long buffer, half-open)
  3. News Publisher CGI vulnerability (new authors)
  4. GoodTech's FTP Server vulnerable to a DoS (RNTO)
  5. DoS vulnerability in vqServer (long URL)
  6. SuidPerl exploit code and patch released
  7. Totalbill vulnerable to an exploitable buffer overflow
  8. Denial of Service problem with Pragma TelnetServer 2000 (DoS)
  9. Account Manager CGI vulnerability (Admin password)
  10. Subscribe Me users can modify the administrative password without knowing it
  11. Gopher+ contains an exploitable buffer overflow (halidate)
  12. Wais.pl parameter passing security problem (attack walkthrough)
  13. Exploitable buffer overflow in Darxite password authentication (DoS, Buffer overflow)
  14. Diablo 2 TCP/IP Sever DoS
  15. HtGrep CGI vulnerable to arbitrary file viewing
  16. Omron Worldview root compromise (Environment)
  17. Netauth vulnerable to dotdotdot traversal (password file retrieval)
  18. Imail Web Service remote DoS attack (HOST)
  19. An exploitable stack overflow in procps's top (HOME)
  20. Statistics Server exploitable buffer overflow (Large GET)
  21. LSD releases numerous exploits for IRIX
  22. A new advanced exploit code for the string formating vulnerability in StatD
  23. Firewall-1 Session Agent security hole still exist (DoS and password recovery)
  24. Serv-U FTP Server vulnerable to NULL byte attack (DoS)
  25. Kon2 vulnerable to a locally exploitable root compromise (CHARSET_REGISTRY)
  26. PHP Path Revealing Vulnerability
 Jul / 2000  Exploits
  1. TelServ reveals usernames and passwords
  2. Kaufman Mail Warrior's weak encryption has been cracked
  3. AnalogX Proxy DoS (USER, HELO, SOCK4)
  4. Winamp M3U playlist parser buffer overflow vulnerability
  5. Multiple vulnerabilities in WFTPD (STAT, REST, MLST)
  6. StatD string format parsing root exploit code
  7. GAMSoft's TelSrv vulnerable to a DoS
  8. Gatekeeper remote exploit code has been released
  9. Input Validation FTPD vulnerabilities explained and summarized
  10. Guild FTPd allows remote checking for files existence
  11. WFTPD vulnerable to a remotely exploitable DoS (RNTO)
  12. Remote DoS attack on WircSrv Irc Server
  13. Poll It CGI exposes local files
  14. Remote DoS problem found in LocalWEB HTTP Server
 Jun / 2000  Exploits
  1. LeafChat IRC client Denial of Service
  2. IP options exploit code has been released
  3. Polish SMS Gateway vulnerable to remotely exploitable buffer overflow
  4. XFree86 libICE DoS
  5. Trivial DoS attack of LDAP services ('*' attack)
  6. WuFTPD remote root exploit code has been released (MKD, CWD, SITE EXEC)
  7. NetWin's Dmailweb Denial of Service attack (pophost, username)
  8. GPM Denial of Service attack
  9. iMesh vulnerable to remote code execution
  10. MDaemon vulnerable to a remote DoS (UIDL)
  11. AnalogX SimpleServer vulnerable to remote DoS
  12. Dragon Server vulnerable to several DoS attacks
  13. Buffer overflow problem in the Small HTTP Server
  14. Dump exploit code has been released (-R)
  15. Splitvt exploit code has been released
  16. SoftHead A-FTP vulnerable to DoS attack
  17. Exploit code has been released for the Remote Registry Access Authentication vulnerability
  18. INNd remote news user/group exploit code released
  19. Snoop vulnerable to a remotely exploitable buffer overflow
  20. WebBanner CGI allows executing of arbitrary commands
  21. Mercur Mail server large buffer exploit code has been released
  22. MailStudio remote code execution exploit code
  23. Path revealing vulnerabilities in Ceilidh bulletin board
  24. Sendmail local root exploit using the Linux Capabilities bug
  25. MS Access 97's poor password encryption
  26. EServ's logging mechanism contains a heap overflow problem
  27. DoS vulnerability in IMate WebMail Server
  28. Savant Webserver exposes CGI script source
  29. DoS vulnerability in IMate WebMail Server
  30. Buffer Overrun problem in ITHouse Mail Server
  31. Majordomo exploit code released
  32. Media Streaming Broadcast Distribution DoS exploit code released
  33. /usr/bin/Mail exploit code for Slackware released
  34. Netwin DSMTP server exploit code released
  35. Deerfield Communications MDaemon Mail Server DoS (long username)
  36. gdm exploit code has been released (xdmcp)
  37. IPX 'storm' Denial of Service
  38. Xterm Denial of Service attack
  39. A new DoS attack against Real Server (template)
 May / 2000  Exploits
  1. cdrecord exploitable buffer overflow
  2. Additional majordomo security vulnerabilities
  3. Kdesud root compromise
  4. Jolt2 - a new Windows DoS attack
  5. Ezboard vulnerable to remotely exploitable DoS attack
  6. gdm remote hole can lead to root compromise
  7. Infosrch.cgi exploit code creates an "interactive" shell
  8. MDBMS remote exploit code has been released
  9. Gauntlet Firewall exploit code has been released
  10. Fdmount local exploit code has been released
  11. Lotus Domino Server allows documents to be modified remotely
  12. Xsolider exploitable buffer overflow
  13. New exploit code for AntiSniff "patched" version
  14. ksu and krshd exploit code released
  15. Lotus ESMTP Service vulnerable to DoS
  16. Intel Express router vulnerable to remote DoS
  17. Remote Denial of Service against Axent NetProwler
  18. klogin remote exploit code has been released
  19. KSCD exploit code released
  20. Matt Kruse Calendar script allows remote code execution
  21. CProxy DoS code released
  22. Argosoft FTP Server contains several security vulnerabilities
  23. Proxy Plus insecure defaults
  24. NiteServer FTPd DoS
  25. AntiSniff can be attacked to execute arbitrary code
  26. Banner Rotation 01's password exposure
  27. Mining BlackICE with RFPickAxe
  28. BreezeCOM adapters use factory set passwords
  29. Emurl's User ID generation mechanism cracked
  30. Eudora Pro and Outlook vulnerable to long filename vulnerability
  31. PCAnywhere configuration files use weak passwords encryption
  32. Root compromise bug in Bugzilla (unchecked system() call)
  33. NetBSD unaligned IP options DoS
  34. FormMail discloses environment variables information
  35. Solaris root exploit for /usr/lib/lp/bin/netpr
  36. Internet Explorer Opens the Cookie Jar
  37. Netopia DSL Router Vulnerability
  38. AOL Instant Messenger path disclosure
  39. Microsoft Office 2000 UA Control Scripting exploit code
  40. Cisco's "show" command shows too much
  41. NetStructure 7180 backdoor vulnerability
  42. WebWho CGI can compromise system security
  43. Remote DoS attack using the "Malformed Extension Data in URL" vulnerability
  44. DNewsweb exploit code released
  45. Cayman 3220-H DSL Router vulnerable to a DoS (long username/password)
  46. Timbuktu Pro exploit code released
  47. Remotely exploitable buffer overflow in Sniffit
  48. IIS Denial-of-Service vulnerability (MaxClientRequestBuffer)
  49. Tcpdump found to be vulnerable to a DoS
  50. Source code to mstream, a DDoS tool, has been released
  51. Listserv web archives exploitable buffer overflow
  52. Dmailweb buffer overflow vulnerability allows remote code execution
  53. CASSANDRA NNTPServer vulnerable to remote DoS
  54. New Windows 95/98 Denial of Service discovered (NULL source name)
  55. Gnomelib exploit code has been released
 Apr / 2000  Exploits
  1. Solaris lpset dlopen vulnerability
  2. Novell's remote administration service vulnerable to a buffer overflow (8008, DoS)
  3. IC Radius suffers from a buffer overflow vulnerability
  4. Cisco router vulnerable to an HTTP based DoS
  5. SuSE vulnerability allows impermissible file deletion by local users (MAX_DAYS_IN_TMP)
  6. Piranha default password exploit code
  7. HP printers vulnerable to remote DoS (spooler port)
  8. CVS vulnerable to DoS
  9. Sendmail's mail.local vulnerability (unsafe fgets)
  10. Solaris x86 Xsun overflow
  11. Solaris 7 x86 lp exploit
  12. Solaris 7 x86 lpset exploit
  13. Hylafax version 4.0.2 vulnerable to a local root exploit
  14. Remote vulnerability in LCDproc 0.4 (shell access)
  15. Panda Security found to contain multiple security vulnerabilities
  16. DoS attack against HP JetDirect Printers
  17. Windows 9x's explorer.exe contains a buffer overflow (long filenames)
  18. ZoneAlarm Firewall can be easily scanned for open ports
  19. AdTran's MX2800 M13 found to be vulnerable to a DoS (Ping Flood)
  20. QNX's crypt, encryption algorithm has been cracked
  21. AVM's Ken! Proxy vulnerable to two security holes (DoS, dotdotdot traversing)
  22. IMAPd vulnerable to a remotely exploitable buffer overflow
  23. Remote DoS attack in Real Networks' RealServer (412 magic)
  24. More vulnerabilities in FP (CERN Image Map Dispatcher)
  25. Netscape JavaScript-in-cookies security hole
  26. StarOffice can be caused to crash by a simply embedding a URL
  27. htDig reveals web server configuration paths
  28. DVWSSR.DLL found to contain a remotely exploitable buffer overflow
  29. TrendMicro's Interscan vulnerable to remotely exploitable DoS (HELO, 4075)
  30. TalentSoft Web+ input validation bug vulnerability
  31. IE is still vulnerable to Cross-frame security when Javascript is enabled
  32. XFServer vulnerable to DoS attack (Xwrapper)
  33. Dvwssr.dll allows downloading of ASP source code ('Netscape engineers are weenies')
  34. CRYPTOCard PalmToken PIN Extraction code released
  35. SalesLogix Eviewer Web App vulnerable to remote DoS
  36. BeOS network process DoS
  37. Infonautics getdoc.cgi allows unauthorized access to local documents
  38. BizDB Search Script exposes server to remote command execution
  39. Eicon's ISDN Modem is vulnerable to a Denial-of-Service attack
  40. WebObjects application server DoS attack
  41. FCheck system() vulnerability
  42. New CGI vulnerabilities uncovered.
 Mar / 2000  Exploits
  1. Windows TCP/IP Print Request Server vulnerable to DoS
  2. MS Index Server vulnerability allows viewing of ASP source code
  3. Exploit code released for the objectserver security vulnerability
  4. Linux gpm setgid vulnerability
  5. vqSoft's vqServer stores passwords in plaintext
  6. Local Denial of Service attack against Linux (/dev/log & socket)
  7. GNQS vulnerable to local root compromise
  8. PIX DMZ Denial of Service (TCP Resets)
  9. OfficeScan exposes local networks to centralized DoS
  10. Netscape Enterprise Server and '?wp' tags
  11. Several exploits for the wmcdplay vulnerability
  12. Netscape Messenger sends out sensitive information (LiveConnect)
  13. Cross Site Scripting exploit code released (Internet Explorer)
  14. Several security bugs in Netscape Navigator
  15. Exploit code released for the userhelper security vulnerability
  16. Abuse.man CGI security vulnerability allows remote command execution
  17. IMWheel allows gaining of local root privileges
  18. Kreatecd vulnerable to local root compromise
  19. Sojourn search engine vulnerable to directory traversal
  20. Mercur POP3 / IMAP server vulnerable to DoS
  21. Navigator interprets HTML in ftp directory listings
  22. Mercur's WebView WebMail Client vulnerable to DoS attack
  23. Extending the FTP "ALG" vulnerability to any FTP client
  24. IrcII-4.4 DCC Chat buffer overflow
  25. ICQ's web based Guestbook CGI can crash the ICQ client
  26. Atsadc vulnerable to local root compromise
  27. Wmcdplay vulnerable to a local root compromise
  28. Pocsag allows remote access via a default password
  29. Simple HTML code can crash Internet Explorer (steelblue)
  30. StarScheduler (StarOffice) remote security vulnerabilities
  31. ClipArt Gallery exploit code released
  32. InfoSrch.cgi vulnerable to remote command execution
  33. Corel Linux 1.0 configuration error leads to root compromise
  34. AOL Instant Messenger DoS vulnerability
  35. TrendMicro OfficeScan contains numerous security holes (remote files modification)
  36. TrendMicro's InterScan can be remotely uninstalled
  37. ht://Dig information exposure
  38. Axis StorPoint CD authentication mechanism can be bypassed
 Feb / 2000  Exploits
  1. DoS in Trendmicro OfficeScan
  2. man bug allows privileges elevation
  3. EZ Shopper 3.0 vulnerable to remote command execution
  4. NetGear ISDN RT34x router vulnerable to several DoS attacks
  5. Corel xconf allows gaining of local root
  6. Wordpad vulnerability allows executing of arbitrary commands
  7. Exploit code released for Firewall-1 FTP PASV security vulnerability
  8. Remotely exploitable buffer overflow in InterAccess's TelnetD
  9. GrabRtrConf - an automated script that downloads router configuration files
  10. Crashing IIS by creating a long filename in the \mailroot\pickup directory
  11. UltimateBB security hole discovered
  12. FireWall-1 stateful inspection vulnerability allows attacking of internal hosts
  13. Novell BorderManager 3.5 vulnerable to remote DoS attack
  14. MySQL password handling problem exploit code released
  15. CGI.pm and the untrusted-URL problem
  16. Many name servers are vulnerable to traffic amplification and NS route discovery
  17. Zeus Web server allows remote attacker to view source code of CGIs
  18. Remote access vulnerability in MySQL server
  19. Bypassing AXIS 700 Network Scanner's authentication scheme
  20. GroupWise Web Access servlet Denial of Service attack
  21. Hacking wwwthreads via SQL (Exploit code included)
  22. SHGetPathFromIDList() causes Windows programs to crash (DoS)
  23. Webspeed security vulnerability (WSISA vulnerability)
  24. "The Finger Server" security flaw allows remote code execution
  25. Majordomo vulnerable to local exploit (resend vulnerability)
  26. BIND NXT remote overflow exploit code has been released
  27. Security concerns when developing a dynamically generated web site
  28. Sybergen SyGate security hole (TCP 7323)
  29. Tiny FTPd allows execution of arbitrary code
  30. Outlook Express 5 allows remote e-mailers to retrieve local email messages
 Jan / 2000  Exploits
  1. Checkpoint FireWall-1 Script Strip algorithm can be bypassed
  2. Breaking Cobalt's RaQ2 password CGI
  3. QPopper POP3 server remotely exploitable security vulnerability (LIST)
  4. BSD systems procfs vulnerability
  5. BNC IRC Proxy Server buffer overflow
  6. Vpopmail (qmail add-on) is vulnerable to remote root exploit (vpopmail, vchkpw)
  7. Exploit code for the ppptalk security vulnerability has been released
  8. Nortel Contivity package CGI vulnerability
  9. ZBServer Pro vulnerable to a remotely exploitable buffer overflow (GET)
  10. Cobalt RaQ web server vulnerability (patch available)
  11. Visual CASEL allows execution of unauthorized applications
  12. PowerScripts PlusMail password vulnerability (password change)
  13. Super Mail Transfer Package vulnerable to remote DoS
  14. Yet another Hotmail security hole - injecting JavaScript in IE using "@import url(javascript:...)"
  15. CuteFTP's password storage insecurity
  16. CuteFTP's password storage insecurity
  17. SolutionScripts.com Home Free CGI package vulnerability (search CGI)
  18. IMail IMonitor vulnerable to a remote DoS attack (CGI)
  19. UnixWare's pis utility can be used to gain root
  20. Solaris sadmind remote buffer overflow vulnerability
  21. QPopper vulnerable to a remotely exploitable buffer overflow (AUTH)
  22. Multiple DoS attack vulnerabilities in MDaemon Server
  23. Netscape FastTrack server remote exploit (long GET)
  24. IRIX sound player security vulnerability
  25. UnixWare rtpm exploit
 Dec / 1999  Exploits
  1. CSM Mail Server vulnerable to a DoS attack (long HELO)
  2. RedHat's initscripts allows local users to execute arbitrary code as other users
  3. IBM NetStation/UnixWare local root exploit (HTTP interface)
  4. Savant Web Server is vulnerable to remote DoS attack (GET NULL)
  5. Sendmail vulnerable to ETRN DoS attack
  6. IMail's password encryption scheme
  7. Internet Explorer's cross-frame vulnerability (NavigateAndFind)
  8. Rover POP3 Server is vulnerable to a DoS attack (long USER)
  9. Remote buffer overflow in miniSQL (w3-msql)
  10. Netscape Navigator/Communicator 4.5 buffer overflow
  11. Multiple vulnerabilities in glFtpD
  12. Quake servers can be used to 'Smurf up' attacks
  13. RealMedia server vulnerable to remote DoS attack (ramgen)
  14. Wmmon under FreeBSD can be used to compromise kmem privileges
  15. Solaris 2.7 dmispd local/remote vulnerabilities
  16. UnixWare i2odialogd remote root exploit
  17. Linuxconf contains remotely exploitable buffer overflow
  18. Lotus Domino HTTP contains three security vulnerabilities (CGI and Denial-of-Service)
  19. Remote DoS in DNS PRO for WinNT
  20. FTP conversions on misconfigured systems (specifically wu-ftpd) posses a security threat
  21. GroupWise Web Interface 'HELP' hole
  22. Norton Email Protection Remote Buffer Overflow
  23. War FTP Daemon security vulnerability (60 connections & USER)
  24. SSH 1.2.27 Exploit code has been released
  25. FreeBSD 3.3 xsoldier root exploit
  26. Infoseek's Ultraseek for Windows NT is vulnerable to a remote buffer overflow
  27. VDO Live Player 3.02 contains an exploitable buffer overflow (vdo://)
  28. Several FTP Servers are vulnerable to multiple PORT commands DoS
  29. GoodTech Telnet Server NT vulnerable to a remote DoS
  30. UnixWare pkg* command exploits
  31. NT WinLogon VM contains plaintext password visible in admin mode
  32. UnixWare allows gaining of root with non-su/gid binaries
  33. UnixWare pkg vulnerability
  34. HP Secure Web Console is not so secure after all
  35. Phorum 3.0.x multiple vulnerabilities
  36. UnixWare core dumps follow symlinks
  37. CommuniGate Pro vulnerable to a remote DoS attack
  38. UnixWare 7 uidadmin vulnerable to an exploitable buffer overflow
  39. FreeBSD gated local exploit
  40. Solaris 'chkperm' & 'arp' security vulnerabilities
  41. Several FreeBSD-3.3 vulnerabilities have been found (seyon, xmindpath)
  42. UnixWare 7 gethostbyname() overflow
  43. FTP Serv-U vulnerable to a remotely exploitable buffer overflow (SITE)
 Nov / 1999  Exploits
  1. MS SQL Server vulnerable to "Magic" packet attack
  2. Local users can cause Linux kernel to panic (syslogd)
  3. Oracle Database Server root exploit code has been released
  4. IrFan image viewer 3.07 vulnerable to a buffer overflow
  5. RealNetworks RealServer G2 username/password buffer overflow
  6. BisonWare FTP Server 3.5 contains several vulnerabilities
  7. Solaris7 dtmail/dtmailpr/mailtool exploitable buffer overflow
  8. MDaemon Server is vulnerable to multi-connection security vulnerability
  9. Solaris7 'kcms_configure' vulnerable to an exploitable buffer overflow (NETPATH)
  10. Mail-Gear 1.0 web interface is vulnerable to Directory Traversal
  11. UnixWare 7's xlock vulnerable to an exploitable buffer overflow
  12. UnixWare 7's su vulnerable to an exploitable buffer overflow
  13. UnixWare 7's Xsco vulnerable to an exploitable buffer overflow
  14. Denial of Service Vulnerability in Cabletron's SmartSwitch Router (SSR)
  15. An improved Wu-FTPD exploit code has been released (WUFTPD)
  16. Remote DoS attack in Vermillion FTP Daemon (VFTPD)
  17. Tektronix PhaserLink Webserver gives out the administrator password
  18. HP JetDirect web server vulnerable to long URL attack
  19. ZetaMail POP3/SMTP server vulnerable to a remote DoS attack
  20. W4 Server CGI remote buffer overflow
  21. E-MailClub 'FROM' remote buffer overflow
  22. WebBBS login & password Buffer Overflow Vulnerability
  23. Remote DoS Attack against G6 FTP Server v2.0 (beta 4/5)
  24. DeleGate vulnerable to a remotely exploitable buffer overflow
  25. Network Solutions encrypted 'NIC update' password can be easily recovered
  26. TransSoft's Broker Ftp Server vulnerable to a remote DoS attack
  27. FreeBSD 3.3 'seyon' utility vulnerability
  28. FormHandler CGI template vulnerability
  29. WU-FTP 2.4.x leaks user information
  30. NFS Server MAX_PATH exploit code has been released
  31. Remote DoS attack on QVT/Term
  32. Artisoft XtraMail vulnerable to DoS attacks
  33. FTGate Version 2.1 and Eserv 2.5 vulnerable to Directory Traversal
  34. BIG/ip 'view_textfile' and 'default user' security vulnerabilities
  35. StackGuard security vulnerability fixed
  36. Interscan VirusWall NT 3.23/3.3 buffer overflow
  37. KVIrc client vulnerable to local file browsing
  38. IPSwitch IMAIL POP3 vulnerable to a remotely exploitable buffer overflow (USER)
  39. Guestbook.pl and SSI don't mix
  40. BFTelnet Server ver 1.1 vulnerable to remote DoS
  41. Alibaba Web Server vulnerable once again to a remote buffer overflow
  42. Bash 1.x command substitution vulnerability
  43. WFTPd 'MKD' exploit code released
  44. Cisco Routers' NAT support exposes the router for DoS attacks
  45. Xitami web server vulnerable to remote DoS via the administrative port
  46. MacOS Programmer's Window Vulnerability
  47. Alibaba Web Server vulnerable to remote command execution
  48. Sendmail 8.9.x vulnerable to SIGKILL alias file killing
  49. Windows NT remote denial of service (RFPoison)
  50. Amanda backup local root compromises
  51. Multiple vulnerabilities in UNIX & Windows 9x/NT applications
  52. Avirt Mail Server 3.x is vulnerable to a remote buffer overflow attack
  53. Palm HotSync Manager is vulnerable to Denial of Service attack
  54. Express FS 2.x FTP Server is vulnerable to a remote buffer overflow
 Oct / 1999  Exploits
  1. Axent Raptor Firewall 'IP Options' DoS code released
  2. Netscape Messaging Server vulnerable to "RCPT TO" DoS
  3. IRCd vulnerable to oversize PTR record DoS
  4. FreeBSD vfs_cache vulnerable to a Denial-of-Service attack
  5. Netscape 4.7 and earlier vulnerable to "Huge Key" DoS
  6. OmniHTTPD Buffer Overflow Vulnerability
  7. Squid Web Proxy Authentication Failure Vulnerability
  8. Linux cwdtools Vulnerabilities
  9. WebSphere's Key Database password protection have been cracked
  10. OpenLink 3.2 vulnerable to a remote buffer overflow
  11. Netscape 4.5 and above are vulnerable to 'Dynamic Font' DoS
  12. 'xmonisdn' allows reading of any local files under RedHat 6.x
  13. Remote Denial-of-Service in Axent's Raptor Firewall 6.0
  14. FTP Serv-U Ver2.5 exploit code have been released
  15. NashuaTec D445 suffers from a number of security holes
  16. Detailed exploit code has been released for the "IFRAME ExecCommand" vulnerability
  17. Netscape browser is vulnerable to < and > character replacement
  18. Xerox DocuColor 4 LP is vulnerable to a DoS
  19. SCO OpenServer 5.0.5 'cancel' buffer overflow
  20. A bug in IRCd 2.10.x (qident) can be used for a Denial of Service attack
  21. EFNet IRCd allows shell access to the IRC server
  22. SCO Openserver XBase exploit code
  23. SCO OpenServer 5.0.5 'userOsa' scripts allow overwriting of the shadow file
  24. Novell Client 3.0 vulnerable to Denial of Service attack
  25. Remote buffer overflow in ftpd on AIX 4.3.x
  26. Hybrid Network's Cable Modems Security vulnerability
  27. Solaris 2.7 /usr/bin/mail exploit code released
  28. Patch Available for the Undocumented CFML Tags vulnerability
  29. RedHat 6.0 RPMMail security vulnerability
  30. iHTML Merchant security vulnerabilities
  31. Yahoo! Messenger remote Denial of Service
  32. SCO UnixWare 7.1 /usr/lib/merge/dos7utils local root exploit
  33. Linux cdda2cdr local exploit
  34. Sambar Web Server 4.2.1 vulnerable to a Denial of Service attack
  35. TeamTrack web server vulnerability
  36. Buffer Overflow problems in ActiveX controls
 Sep / 1999  Exploits
  1. Arkiea Backup HOME Environment Variable Vulnerability
  2. SuSE sscw Environment Variable Buffer Overflow Vulnerability
  3. CFingerD GECOS Buffer overflow vulnerability
  4. SCO 5.0.x Xt lib exploit code is available
  5. Exploit code and Patch released for 'dtaction' vulnerability on Digital UNIX
  6. SuSE 6.2 '/usr/bin/sccw' allows reading of any local file
  7. WWWBoard passwords vulnerability
  8. SSH 1.2.27 vulnerable to a Denial of Service attack
  9. Patch released for the new ProFTPd 1.2.0pre6 vulnerability
  10. Exploit code for the 'xterm' vulnerability has been released
  11. Exploit code for the 'XSco' vulnerability has been released
  12. Exploit code for the 'xlock' vulnerability has been released
  13. Exploit code for the patched 'SCOterm' has been released
  14. Exploit code for the SCOterm vulnerability has been released
  15. Exploit code released for the 'SCOlock' SCO Server vulnerability
  16. Exploit code released for the 'deliver' SCO Server vulnerability
  17. Exploit code for the AMD vulnerability has been released
  18. Another shared memory exploit script has been released (ShareDream)
  19. Sega's Dreamcast Web Browser Email Security Issue
  20. Vulnerability in Internet Explore 4/5 causes browser to crash
  21. New ProFTPd exploit code released (for version 1.2.0pre1,2,3)
  22. SCO 5.0.5 lpr local root exploit code released
  23. SunOS 4.1.1, 4.1.3 and 4.1.4 tmpfs Denial-of-Service
  24. Two new vulnerabilities in TenFour TFS SMTP 3.2
  25. IDs can be easily spoofed in Bluestone Sapphire/Web
  26. Netscape releases Netscape Enterprise Server 3.6sp2 patch
  27. An exploitable Heap Overflow in Windows 95/98 Telnet.exe
  28. Sun releases patches for LC_MESSAGES vulnerability
  29. SCO 5.0.5 doctor program allows local users to read /etc/shadow
  30. Windows 2000 COM handler allows attackers to start the Telnet service remotely
  31. Mars Netware Emulator contains buffer overflows
  32. Netscape Communicator EMBED tag vulnerability
  33. Two new exploit scripts released for Vixie CronD vulnerability
  34. TFS Gateway 4.0 vulnerable to a Denial of Service attack
 Aug / 1999  Exploits
  1. Lotus Notes Domino Server 4.6 vulnerable to Denial of Service Attack
  2. Lotus Notes vulnerable to a Denial of Service attack
  3. Patch released for Sun's 'rpc.cmsd' buffer overflow vulnerability
  4. IE 5.0 HTML Applications exploit code released
  5. WindowMaker buffer overflow vulnerabilities
  6. CiscoSecure Access Control Server allows unauthorized access
  7. QMS-2060 network printer contains a security hole
  8. XServer logon encryption can be easily decrypted
  9. Vulnerability in W3-msql cgi script
  10. New version of isdnutils fixes exploitable xmonisdn
  11. Dragon-Fire IDS Vulnerability
  12. WebTrends ERServer is vulnerable to a Denial of Service attack
  13. Exploit code for a bug in ircd2.10.x's qident has been released
  14. ALMail32 Buffer overflow vulnerability
  15. CheckPoint Firewall-1 is vulnerable to 'Port 0' Denial of Service attack
  16. 3Com's HiPer ARC vulnerable to a Denial of Service attack
  17. Cfingerd 1.3.2 and earlier is vulnerable to a root exploit
  18. Exploit code for the scosession vulnerability is available
  19. miniSQL w3-auth() buffer overflow
  20. Vulnerabilities in BO2K encryption Plugins
  21. Netscape Communicator 4.6 vulnerable to 'mailto:' Denial of Service
  22. Netware 5 client can be hijacked
  23. Insecurity in Apache installation as shipped on Debian 2.1 and Boa
 Jul / 1999  Exploits
  1. Java Hotspot Performance Engine vulnerable to attack
  2. mSQL multiple buffer overflows
  3. InterMute privacy enhancer exposes information to other users
  4. WS FTP Pro's weak password encryption algorithm
  5. Very long filenames can crash NT (updated)
  6. AMaViS virus scanner for Linux can be used to gain root
  7. IRC Networks can be easily crashed
  8. Patrol's SNMP Agent 3.2 can lead to root compromise
  9. AIX 4.2.X & 4.3.X can easily halted
  10. Pine remote exploit source code released
  11. HPUnix CDE installation leaves current directory in root PATH
  12. SDR vulnerable to attack
  13. VMware v1.0.1 exploit code released
  14. Netscape Communicator JavaScript crash
  15. Another Cold Fusion Server vulnerability
  16. 'Super' is susceptible to buffer overflow attack
  17. DosEMU buffer overflow assists in gaining root
  18. How to break IoMega's Zip Drive read/write password protection
  19. Patch Available for the "Unprotected IOCTLs" Vulnerability
  20. Moyari - a new Windows 95/98 Denial of Service attack
  21. Cognos PowerPlay Web Edition allows users to gain access to sensitive information
  22. klock Screen Saver can be bypassed
  23. CFingerD 1.3.2 is vulnerable to a remote buffer overflow
  24. Exploit code for Xi Graphics Accelerated X Server
 Jun / 1999  Exploits
  1. Cabletron Spectrum root-shell vulnerability
  2. Xi Graphics Accelerated X Server 4.x, 5.x vulnerable to buffer overflows
  3. IIS Remote Exploit injection code released
  4. Cisco IOS Software keyword parsing vulnerability
  5. KDE K-Mail File Creation Vulnerability
  6. TCPDump is vulnerable to Denial of Service attack
  7. Netware web server Denial of Service
  8. Vulnerability in 'statd' exposes vulnerability in automountd
  9. How to hack, flood, spoof, nuke and sniff ICQ
  10. Denial of Service attack against Windows NT PDC
  11. Weaknesses in DNS label decoding can cause a Denial of Service
  12. A new buffer overflows in smbvalid library
  13. RedHat 6.0 /dev/pts permissions bug can disrupt xterm sessions
  14. whois_raw cgi security vulnerability
  15. A remote exploit code for the POP2 daemon vulnerability
  16. CGI can cause MacOS X system panic
  17. Solaris sdtcm_convert program allows root access
  18. Broker FTP Server 3.0 is vulnerable to 'directory traveling'
  19. Netscape Communicator 4.6 JavaScript <TITLE> vulnerability
  20. IRIX MIDIKeys allows guest users root access
  21. Remote vulnerability in POP2 Daemon
 May / 1999  Exploits
  1. Buffer overflow in SmartDesk WebSuite v2.1
  2. Multiple Web Interface security holes
  3. Compaq Insight Manager exposes sensitive information
  4. Solaris LIBC exploit code
  5. Netfinity Remote Control software's security vulnerability
  6. Netscape Communicator's <TITLE> vulnerability
  7. WinAMP 2.x vulnerable to a buffer overflow
  8. HP's Trusted Gateway Agent is vulnerable to a Denial of Service attack
  9. INN server is vulnerable to a buffer overflow attack
  10. Netscape Navigator and Internet Explorer are vulnerable to Bookmark vulnerability
  11. Novell NetWare TTS is vulnerable to a Denial of Service attack
  12. Solaris 'lpset' buffer overflow can compromise the system
  13. Security problem with sockets in FreeBSD
  14. Solaris 'dtprintinfo' program contains a root exploit
  15. FTP Serv-U daemon is vulnerable to a buffer overflow
  16. Alibaba Web Server is vulnerable to path climbing
  17. Multiple file system vulnerabilities in Oracle 8
  18. An improved wu-ftpd exploit code released
  19. Patch Available for the "DHTML Edit" Vulnerability
  20. Exceed X Server versions 5.0 and 6.0 are vulnerable to a Denial of Service attack
  21. CSM Mail is vulnerable to Remote Buffer Overflow
  22. 'Discus' discussion group server permission hole
 Apr / 1999  Exploits
  1. Cold Fusion Server vulnerability scanner
  2. Bash 1.14.x vulnerable to 'exit code' parsing
  3. FFingerD vulnerable to privacy hole
  4. IPFilter file lock hazard
  5. Cisco routers vulnerable to information leakage
  6. Internet Explorer 5.0 '%01 security bug' found (new)
  7. NetBSD Kernel hangs in name lookup
  8. Another ICQ99 Web Sever security flaw
  9. Patrol 3.25 security weakness found
  10. Webcom's Guestbook CGI vulnerability
  11. Network Appliance NetCache 3.3.1 vulnerable to SNMP 'public' community
  12. Multiple WinGate Vulnerabilities
  13. SiteServer 3.0 DirectMail saves username and password in clear text
  14. Xylan OmniSwitch login can be easily bypassed
  15. Several X windows vulnerabilities allow users to change permission of system files
  16. ICQ99 Web Server vulnerable to Denial of Service
  17. WebRamp Denial of Service Attacks
 Mar / 1999  Exploits
  1. Wide spread infections of the 'Melissa' Macro Virus
  2. SuSE X11 directory permission overrun
  3. FTP Servers exploit
  4. NetBSD security vulnerability in umapfs
  5. NetBSD 'noexec' mount flag is not properly handled by non-root mount
  6. Netscape Communicator's talkback enhancement vulnerability
  7. Microsoft Exchange buffer overflow attack (patch available)
  8. AOL Server 2.2 password vulnerability
  9. Linux Blind TCP Spoofing demonstration code released
  10. WinFreeze, a Denial of Service attack against Windows
  11. Windows NT Screen Saver vulnerability (a patch is available)
  12. Windows NT Screen Saver vulnerability (a patch is available)
  13. Netscape communicator found() vulnerability
  14. XCMail remote vulnerability
  15. War FTP Deamon 1.70 beta1 saves passwords in 'clear' text.
  16. Gnuplot 3.5 can be compromised to gain root
  17. Oracle installation stores admin password in log file
  18. Vulnerabilities found in IMail
 Feb / 1999  Exploits
  1. AltaVista Firewall '97 is vulnerable to a DNS attack
  2. InterScan VirusWall can be bypassed (patch is available)
  3. A new Cuartango exploit
  4. Netscape Communicator Window Spoofing
  5. Macintosh version of Word '98 includes sensitive material in document files.
  6. Another ICQ 98a bug
  7. BackOffice installation exposes passwords
  8. PadLock-IT 1.01 bad password saving scheme
  9. IIS Remote FTP Denial of Service attack
  10. IIS 4.0 vulnerable to ExAir sample site Denial of Service
  11. Multiple vulnerabilities in ControlIT
  12. MiRC DCC Security hole
  13. IIS and Perl may be used to reveal true directory location
  14. Vulnerabilities found in Swish search engine
  15. WS_FTP Server Remote Denial of Service attack
  16. OShare, a new Windows Denial of Service attack
  17. RPCBind security vulnerability
 Jan / 1999  Exploits
  1. Quake II Server buffer overflow
  2. Linux 2.0.35/36 vulnerable to local port Denial of Service attack
  3. FoolProof found to be full of security glitches.
  4. Forms 2.0 (Fm20*.dll) ActiveX Control Security Fix
  5. Windows 95/98 FrontPage extension security vulnerability
  6. Solaris 2.5.1 and 2.6 vulnerable to ff.core exploit
  7. HTTP REQUEST_METHOD security flaw
  8. IIS 4.0 is vulnerable when upgraded from earlier versions
  9. Sendmail 8.9/8.8 vulnerable to two new attacks
  10. CGIc Library is vulnerable to a buffer overflow attack
  11. DPEC's Online Courseware vulnerable to attack
  12. Solaris AutoMountD vulnerable to a remote exploit
  13. Linux's urandom Denial of Service
  14. Solaris 2.7 allows finger bouncing
  15. Iomega's poor Jazz drive backup encryption
  16. Yahoo Pager vulnerable to Denial of Service attack
  17. ICQ 98a security flaw
  18. WFTPd vulnerable to a remotely exploitable buffer overflow
  19. SCO's CalServer vulnerable to a buffer overflow
  20. L0phtCrack 2.5 misplaces temporary password files
  21. suGuard 1.0 assists in gaining root access
  22. Tripwire buffer overflow
 Dec / 1998  Exploits
  1. KCMS Configure tool vulnerable to buffer overflow
  2. The LP daemon is susceptible to Denial of Service attacks.
  3. Linux Pluggable Authentication Modules (PAM) insecurity.
  4. IRIX tape device insecurity.
  5. Cookie Monster vulnerability
  6. Microsoft Explorer bug fixed.
  7. MSProxy 2.0 can be used to attack hosts on internal network
  8. Solaris DTmail vulnerable to buffer overflow attack.
  9. MacOS 8.5.1's Web Sharing Denial of Service attack.
  10. RealSystem G2 Server saves password in clear text.
  11. Microsoft's Network Monitor susceptible to Denial of Service attack.
  12. Bootp Daemon remote vulnerability.
  13. AutoFSD was found to be vulnerable to a remote exploit.
  14. EWS (Excite for Web Servers) 1.1 security compromises.
  15. Netscape browser bug allows reading of local files.
  16. Exceed 6.0.1.0 saves usernames and passwords in the clear.
  17. MkCookie program fault allow root compromise.
  18. Platinum PCM 7.0 Denial of Service.
 Nov / 1998  Exploits
  1. IPFW's logs can be made ineffective.
  2. IRIX's gr_osview race condition.
  3. SunOS's rdist program may assist in gaining root.
  4. Windows NT's SNMP service vulnerability.
  5. AIX's infod may assist in gaining root remotely.
  6. NetBSD's character device drivers enable direct access to memory and disks.
  7. Samba 1.9.18 security vulnerabilities.
  8. Multiple KDE security vulnerabilities.
  9. WinGate Denial of Service
  10. NFTP's string handling vulnerability.
  11. CA's Archserve Exchange DB Agent saves passwords in the clear.
  12. RPC's portmapper pmap_(un)set insecurities.
  13. BootP 2.4.3 daemon was found to be vulnerable to a race condition.
  14. XFree86 3.3.2' setup tool race condition.
  15. CatDOC 0.90 buffer overflows.
  16. Internet Explorer 4.x's Custom settings don't work.
  17. ICQ 98 beta sends out sensitive information.
  18. mSQL Denial of Service.
  19. Cisco 7xxx routers IP Datagrams mishaps.
  20. KLogd may assist malicious users in gaining root.
  21. Internet Explorer 4.x "width= height=" bug.
  22. Internet Explorer's DirectDraw support can cause a complete crash.
  23. Solstice Enterprise Agent SNMP vulnerability.
  24. CDE's dtappgather assists in gaining root.
  25. Netscape browser saves forms and emails in the clear.
  26. Netscape Communicator preference file found to be wide open.
  27. APC SmartUPS 2200 vulnerable to DoS.
  28. A GNU Text Utility (head) could cause Slackware to panic.
  29. RedHat 5.2's XWindows vulnerable to Cookie Hijacking.
  30. A possible buffer overflow in xlock.
 Oct / 1998  Exploits
  1. Lynx 2.8.x (including the latest development version) overflow.
  2. USR Netserver 8/16 vulnerable to nestea attacks.
  3. Solaris License Manager's lock files exploits.
  4. FreeBSD 3.0-Release vulnerable to nestea v2.
  5. Sendmail (till the latest version) Denial of Service.
  6. HP Unix doesn't log failed 'su' commands.
  7. Netscape Communicator 4.07 Javascript mishaps.
  8. Netscape Communicator 4.5P2 (UNIX) doesn't disable JavaScript.
  9. Mutt Mail user agent vulnerability.
  10. Netscape MIME Type buffer overflow.
  11. OSPF monitor may assist in gaining root.
  12. Internet Explorer 4.0 Security Zone compromise.
  13. RouteD "file create" exploit.
  14. Solaris /dev/rmt/* permission problem.
  15. Novell Netware 4.11 and 5.0 vulnerable to echo/chargen attack.
  16. Another Cuartango Security Hole (an Internet Explorer hole).
  17. Midnight Commander 4.5.xx file overrun.
  18. FreeBSD 2.2.x (before 2.2.8R) can be attacked by a RST Denial of Service.
  19. Netscape 4.x vulnerable to "internal/parser".
  20. Cuartango Security Hole (an Internet Explorer hole).
  21. AOL 4.0 Email crash.
  22. A Digital Unix 4.0D bug in cdfs found (xcd related).
 
Copyright © 1998-2003 Beyond Security Ltd. All rights reserved.
Terms of Use Site Privacy Statement.