Status: Entry Reference: SGI:19981006-01-I Reference: URL:ftp://com/support/free/security/advisories/19981006-01-I Reference: CERT: CA-98.12.mountd Reference: CIAC: J-006 Reference: URL: Reference: BID:121 Reference: URL: Reference: XF:linux-mountd-bo Description: Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).Status: Entry Reference: NAI: NAI-29 Reference: CERT: CA-98.11.tooltalk Reference: SGI:19981101-01-A Reference: URL:ftp://com/support/free/security/advisories/19981101-01-A Reference: SGI:19981101-01-PX Reference: URL:ftp://com/support/free/security/advisories/19981101-01-PX Reference: XF:aix-ttdbserver Reference: XF:tooltalk Reference: BID:122 Reference: URL: Description: MIME buffer overflow in email clients, e.g. Status: Candidate Phase: Modified (19990621-01) Reference: CERT: CA-98.10.mime_buffer_overflows Reference: XF:outlook-long-name Reference: SUN:00175 Reference: MS: MS98-008 Reference: URL: This issue seems to have been rediscovered in BUGTRAQ:20000515 Eudora Pro & Outlook Overflow - too long filenames again l=bugtraq&m=95842482413076&w=2 Also see BUGTRAQ:19990320 Eudora Attachment Buffer Overflow l=bugtraq&m=92195396912110&w=2 Christey Description: Arbitrary command execution via IMAP buffer overflow in authenticate command.
Status: Entry Reference: CERT: CA-98.05.bind_problems Reference: SGI:19980603-01-PX Reference: URL:ftp://com/support/free/security/advisories/19980603-01-PX Reference: HP: HPSBUX9808-083 Reference: URL: Display.do? Web Servers Reference: XF:nt-web8.3 Description: Stolen credentials from SSH clients via ssh-agent program, allowing other local users to access remote accounts belonging to the ssh-agent user.doctype=coll&doc=secbull/170 Reference: ISS: June10,1998 Reference: XF:nisd-bo-check Description: Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.Status: Entry Reference: SGI:19980603-01-PX Reference: URL:ftp://com/support/free/security/advisories/19980603-01-PX Reference: HP: HPSBUX9808-083 Reference: URL: Display.do?doc Id=HPSBUX9801-075 Reference: SUN:00185 Reference: URL: doctype=coll&doc=secbull/185 Reference: CERT: CA-98.02. Teardrop_Land Reference: OVAL:oval:org.mitre.oval:def:5579 Reference: URL:https://oval.cisecurity.org/repository/search/definition/oval:org.mitre.oval:def:5579 Reference: XF:teardrop Votes: MSKB: Q154174 MSKB: Q154174 (CVE-1999-0015) and MSKB: Q179129 (CVE-1999-0104) indicate that CVE-1999-0015 was fixed in NT SP3, but CVE-1999-0104 was not.Thus CD: SF-LOC suggests that the problems keep separate candidates because one problem appears in a different version than the other.