MidnightBSD

Advisories for data_general

CVE-1999-0009 HIGH

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sgi irix 3.3.2
ibm aix 4.1.2
sgi irix 4.0.4
redhat linux 5.0
bsdi bsd_os 2.0
redhat linux 4.2
netbsd netbsd 1.2.1
sgi irix 4.0
sun sunos 5.5
sgi irix 4.0.4t
sgi irix 4.0.5a
sgi irix 4.0.5e
sgi irix 6.3
sgi irix 5.2
nec asl_ux_4800 64
caldera openlinux 1.0
redhat linux 4.1
netbsd netbsd 1.0
sgi irix 4.0.5f
ibm aix 4.1.1
ibm aix 4.3
sgi irix 4.0.5d
ibm aix 4.1.4
data_general dg_ux 5.4_3.0
sgi irix 6.1
sgi irix 3.3.3
netbsd netbsd 1.1
netbsd netbsd 1.3.1
sgi irix 5.0
redhat linux 4.0
sgi irix 4.0.5_iop
sco unixware 2.1
sgi irix 4.0.5_ipr
netbsd netbsd 1.2
data_general dg_ux 5.4_4.11
sun sunos 5.3
sgi irix 4.0.2
sgi irix 3.2
sgi irix 4.0.4b
sgi irix 5.3
netbsd netbsd 1.3
sgi irix 5.1.1
sgi irix 4.0.1t
ibm aix 4.1
sgi irix 4.0.1
data_general dg_ux 5.4_4.1
sgi irix 4.0.5g
bsdi bsd_os 2.1
sun solaris 2.6
sun sunos 5.4
sgi irix 6.0
isc bind 8.1
data_general dg_ux 5.4_3.1
sgi irix 5.0.1
bsdi bsd_os 2.0.1
sun solaris 2.5
sco open_desktop 5.0
sgi irix 3.3.1
ibm aix 4.1.5
sgi irix 4.0.5h
sun sunos -
sco unixware 7.0
sgi irix 4.0.5
ibm aix 4.1.3
isc bind 4.9.6
ibm aix 4.2.1
sgi irix 5.1
isc bind 8.1.1
sco open_desktop 3.0
sun solaris 2.5.1
sgi irix 6.2
sgi irix 3.3
sun sunos 5.5.1
sgi irix 4.0.3
ibm aix 4.2
CVE-1999-0010 MEDIUM

Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun sunos 5.3
sco openserver 5.0
redhat linux 5.0
netbsd netbsd 1.3
ibm aix 4.1
redhat linux 4.2
sun sunos 5.4
sun sunos 5.6
sun sunos 5.5
data_general dg_ux y2k_patchr4.11mu05
isc bind 4.9
data_general dg_ux y2k_patchr4.12mu03
isc bind 8
ibm aix 4.3
nec asl_ux_4800 13
sco unixware 7.0
data_general dg_ux y2k_patchr4.20mu02
netbsd netbsd 1.3.1
sco unix 3.2v4
data_general dg_ux y2k_patchr4.20mu01
sco open_desktop 3.0
nec asl_ux_4800 11
sco unixware 2.1
sun sunos 5.5.1
ibm aix 4.2
data_general dg_ux y2k_patchr4.20mu03
CVE-1999-0011 HIGH

Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,CWE-1067,

Products Affected

Vendor Product Version
sun sunos 5.3
sco openserver 5.0
redhat linux 5.0
netbsd netbsd 1.3
ibm aix 4.1
redhat linux 4.2
sun sunos 5.4
sun sunos 5.6
sun sunos 5.5
data_general dg_ux y2k_patchr4.11mu05
isc bind 4.9
data_general dg_ux y2k_patchr4.12mu03
isc bind 8
ibm aix 4.3
nec asl_ux_4800 13
sco unixware 7.0
data_general dg_ux y2k_patchr4.20mu02
netbsd netbsd 1.3.1
sco unix 3.2v4
data_general dg_ux y2k_patchr4.20mu01
sco open_desktop 3.0
nec asl_ux_4800 11
sco unixware 2.1
sun sunos 5.5.1
ibm aix 4.2
data_general dg_ux y2k_patchr4.20mu03
CVE-1999-0019 MEDIUM

Delete or create a file via rpc.statd, due to invalid information.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun sunos 4.1.3
sun sunos 5.3
sco open_desktop 3
sco openserver 5.0
ibm aix 4.1
sun sunos 5.4
sun sunos 4.1.4
sun sunos 5.5
sgi irix 6.1
ncr mp-ras 2.03
nighthawk powerux *
ncr mp-ras 3.0
ibm aix 3.2
sco openserver 3.0
sco unixware 2
nighthawk cx_ux *
data_general dg_ux 4.11
sco open_desktop 2
CVE-1999-0038 HIGH

Buffer overflow in xlock program allows local users to execute commands as root.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,CWE-120,

Products Affected

Vendor Product Version
debian debian_linux 1.3
sun sunos 5.3
hp hp-ux 10.24
sgi irix 5.3
data_general dg_ux 2.0
data_general dg_ux 4.0
sgi irix 5.1.1
ibm aix 4.1
sgi irix 6.4
data_general dg_ux 6.0
bsdi bsd_os 2.1
sun sunos 5.4
sgi irix 6.0
sun sunos 5.5
hp hp-ux 10.08
debian debian_linux 0.93
sun solaris 2.4
sgi irix 5.0.1
hp hp-ux 10.10
hp hp-ux 10.20
sgi irix 6.3
sgi irix 5.2
sun solaris 2.5
hp hp-ux 10.34
hp hp-ux 10.00
data_general dg_ux 7.0
hp hp-ux 10.01
data_general dg_ux 5.0
sgi irix 6.0.1
debian debian_linux 1.1
sgi irix 6.1
debian debian_linux 1.2
hp hp-ux 10.30
sgi irix 5.1
sgi irix 5.0
ibm aix 3.2
data_general dg_ux 1.0
hp hp-ux 10.16
sun solaris 2.5.1
sun sunos 5.5.1
ibm aix 4.2
data_general dg_ux 3.0
CVE-1999-0046 HIGH

Buffer overflow of rlogin program using TERM environmental variable.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
sun sunos 4.1.3u1
ibm aix 4.1.2
next nextstep 2.0
bsdi bsd_os 1.1
bsdi bsd_os 2.0
freebsd freebsd 1.1.5.1
oracle solaris 8
digital ultrix 4.5
hp hp-ux 10.09
digital unix 4.0
digital ultrix 4.3
sun sunos 5.5
debian debian_linux 0.93
oracle solaris 2.6
next nextstep 3.2
hp hp-ux 10.10
hp hp-ux 10.20
next nextstep 1.0a
digital ultrix 4.0
digital ultrix 4.4
netbsd netbsd 1.0
ibm aix 4.1.1
hp hp-ux 10.01
ibm aix 4.1.4
next nextstep 2.1
netbsd netbsd 1.1
hp hp-ux 10.30
data_general dg_ux 1.0
digital ultrix 4.2
hp hp-ux 10.16
next nextstep 4.0
next nextstep 1.0
sun sunos 5.3
hp hp-ux 10.24
digital ultrix -
freebsd freebsd 2.0
data_general dg_ux 2.0
data_general dg_ux 4.0
next nextstep -
ibm aix 4.1
bsdi bsd_os 2.1
next nextstep 3.0
sun sunos 5.4
digital unix 3.2g
hp hp-ux 10.08
sun solaris 2.4
bsdi bsd_os 2.0.1
digital ultrix 4.1
sun solaris 2.5
digital unix 4.0a
digital unix 4.0b
hp hp-ux 10.34
hp hp-ux 10.00
next nextstep 3.1
ibm aix 4.1.5
digital ultrix 2.2
next nextstep 3.3
freebsd freebsd 2.0.5
oracle solaris -
freebsd freebsd 2.1.0
sun sunos 4.1.4
ibm aix 4.1.3
oracle solaris 7.0
ibm aix 3.2
digital ultrix 3.0
sun solaris 2.5.1
sun sunos 5.5.1
freebsd freebsd 2.1.5
digital ultrix 4.3a
data_general dg_ux 3.0
CVE-1999-0152 HIGH

The DG/UX finger daemon allows remote command execution through shell metacharacters.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
data_general dg_ux *