Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0022. Reason: This candidate is a duplicate of CVE-1999-0022. Notes: All CVE users should reference CVE-1999-0022 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage

In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system parameters.

In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.

When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records.

Linux implementations of TFTP would allow access to files outside the restricted directory.

Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password.

The wall daemon can be used for denial of service, social engineering attacks, or to execute remote commands.

in.rshd allows users to login with a NULL username and execute commands.

Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share.

Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a long query string.

The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs.

The Webgais program allows a remote user to execute arbitrary commands.

The convert.bas program in the Novell web server allows a remote attackers to read any file on the system that is internally accessible by the web server.

The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack.

FormMail CGI program can be used by web servers other than the host server that the program resides on.

FormMail CGI program allows remote execution of commands.

Denial of service in syslog by sending it a large number of superfluous messages.

Remote attackers can mount an NFS file system in Ultrix or OSF, even if it is denied on the access list.

NFS allows attackers to read and write any file on the system by specifying a false UID.

The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the portmapper despite export restrictions.