CVE List
| Id | CVE No. | Status | Description | Phase | Votes | Comments | Actions |
|---|---|---|---|---|---|---|---|
| 6925 | CVE-2003-0096 | Candidate | Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY parameter to the BFILENAME function. | Modified (20071016) | ACCEPT(4) Baker, Cole, Frech, Wall | NOOP(2) Christey, Cox | Christey> Modify the description to omit 8.0.6, as the Oracle advisory | does not list it. (However, NGSSoftware does, perhaps as the | result of a typo or cut-and-paste error in their advisory). | | CIAC:N-046 | URL:http://www.ciac.org/ciac/bulletins/n-046.shtml | BID:6850 | URL:http://www.securityfocus.com/bid/6850 | BID:6847 | URL:http://www.securityfocus.com/bid/6847 | BID:6848 | URL:http://www.securityfocus.com/bid/6848 | MISC:http://www.nextgenss.com/advisories/ora-bfilebo.txt | MISC:http://www.nextgenss.com/advisories/ora-tzofstbo.txt | MISC:http://www.nextgenss.com/advisories/ora-tmstmpbo.txt | View |
| 4555 | CVE-2002-0162 | Candidate | LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory. | Modified (20020817-01) | ACCEPT(4) Armstrong, Cole, Cox, Green | MODIFY(1) Frech | NOOP(3) Christey, Foat, Wall | Christey> Modify the desc: it"s temporary *directory* creation. | | XF:logwatch-tmp-race-condition(8652) | URL:http://www.iss.net/security_center/static/8652.php | BID:4374 | URL:http://online.securityfocus.com/bid/4374 | Frech> XF:logwatch-tmp-race-condition(8652) | View |
| 2104 | CVE-2000-0527 | Candidate | userreg.cgi CGI program in MailStudio 2000 2.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters. | Proposed (20000712) | ACCEPT(2) Baker, Levy | MODIFY(1) Frech | NOOP(4) Christey, LeBlanc, Ozancin, Wall | Christey> Modify description - explicitly mention %0a string; other | metachar"s are filtered | Frech> XF:mailstudio-cgi-input-vaildation(4739) | View |
| 8683 | CVE-2004-0255 | Candidate | Xlight 1.52, with log to screen enabled, allows remote attackers to cause a denial of service by requesting a long directory consisting of . (dot) and / (slash) characters, which causes the server to crash when the administrator views the log file, possibly triggering a buffer overflow. | Proposed (20040318) | NOOP(4) Armstrong, Cole, Cox, Wall | REVIEWING(1) Christey | Christey> MISC:http://www.xlightftpd.com/forum/viewtopic.php?t=40 | In the above URL, the vendor says that only one of 3 bugs | reported in February 2004 were an "actual server bug," and the other 2 | "traced back into windows" dll and they won"t happen if windows | service pack is installed. | | The "actual server bug" is CVE-2004-0287. The demonstration | for *this* issue shows that the application breaks in comctl32.dll. | So, this candidate may be erroneous, and an interesting side effect of | another bug that"s not related to xlight at all. | | Thus, this candidate may need to be REJECTED. | View |
| 5210 | CVE-2002-0820 | Candidate | FreeBSD kernel 4.6 and earlier closes the file descriptors 0, 1, and 2 after they have already been assigned to /dev/null when the descriptors reference procfs or linprocfs, which could allow local users to reuse the file descriptors in a setuid or setgid program to modify critical data and gain privileges. | Proposed (20020830) | ACCEPT(2) Baker, Cole | NOOP(4) Christey, Cox, Foat, Wall | Christey> MISC:http://www.guninski.com/freebsd2.html | Christey> Other OSes besides FreeBSD are affected. | | HP:SSRT0845U | URL:http://marc.theaimsgroup.com/?l=bugtraq&m=104800750626108&w=2 | | CERT-VN:VU#809347 | Need to more closely examine the relationship between | CVE-2002-0820 and CVE-2002-0572, especially with respect to | references. | View |
Page 298 of 20943, showing 5 records out of 104715 total, starting on record 1486, ending on 1490
