Digital Unix vulnerabilities

CVE-2001-0369 [HIGH] CVE-2001-0369: Buffer overflow in lpsched on DGUX version R4.20MU06 and MU02 allows a local attacker to obtain root Buffer overflow in lpsched on DGUX version R4.20MU06 and MU02 allows a local attacker to obtain root access via a long command line argument (non-existent printer name).

CVE-2001-0134 [CRITICAL] CVE-2001-0134: Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software product Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software products such as Insight Manager and Management Agents allows remote attackers to execute arbitrary commands via a long user name.

CVE-2000-0314 [MEDIUM] CVE-2000-0314: traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.

CVE-2000-0315 [MEDIUM] CVE-2000-0315: traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source ad traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks.

CVE-2000-0845 [MEDIUM] CVE-2000-0845: kdebug daemon (kdebugd) in Digital Unix 4.0F allows remote attackers to read arbitrary files by spec kdebug daemon (kdebugd) in Digital Unix 4.0F allows remote attackers to read arbitrary files by specifying the full file name in the initialization packet.

CVE-1999-0687 [HIGH] CVE-1999-0687: The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execut The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

CVE-1999-0691 [HIGH] CVE-1999-0691: Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.

CVE-1999-0714 [LOW] CVE-1999-0714: Vulnerability in Compaq Tru64 UNIX edauth command. Vulnerability in Compaq Tru64 UNIX edauth command.

CVE-1999-0358 [HIGH] CVE-1999-0358: Digital Unix 4.0 has a buffer overflow in the inc program of the mh package. Digital Unix 4.0 has a buffer overflow in the inc program of the mh package.

CVE-1999-1458 [HIGH] CVE-1999-1458: Buffer overflow in at program in Digital UNIX 4.0 allows local users to gain root privileges via a l Buffer overflow in at program in Digital UNIX 4.0 allows local users to gain root privileges via a long command line argument.

CVE-1999-1044 [MEDIUM] CVE-1999-1044: Vulnerability in Advanced File System Utility (advfs) in Digital UNIX 4.0 through 4.0d allows local Vulnerability in Advanced File System Utility (advfs) in Digital UNIX 4.0 through 4.0d allows local users to gain privileges.

CVE-1999-0513 [MEDIUM] CVE-1999-0513: ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denia ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

CVE-1999-1210 [HIGH] CVE-1999-1210: xterm in Digital UNIX 4.0B *with* patch kit 5 allows local users to overwrite arbitrary files via a xterm in Digital UNIX 4.0B *with* patch kit 5 allows local users to overwrite arbitrary files via a symlink attack on a core dump file, which is created when xterm is called with a DISPLAY environmental variable set to a display that xterm cannot access.

CVE-1999-1221 [LOW] CVE-1999-1221: dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attac dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attack on the dxchpwd.log file.

CVE-1999-0073 [CRITICAL] CVE-1999-0073: Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing a Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.