1471 matches found
OpenSSH/PAM 3.6.1p1 - 'gossh.sh' Remote Users Ident
!/bin/sh OpenSSH " exit 1 Verify the arguments. $ != 2 && usage Variables. USER="$1" HOST="$2" =-=-=-=-=-=-=-=-=-=-=-=-= Expect script functions =-=-=-=-=-=-=-=-=-=-=-=-= Expect script for password. expasswd cat expasswd spawn $SSHCMD expect password: send '\r' interact EOF Expect script for erro...
Sendmail <= 8.12.8 prescan() BSD Remote Root Exploit
Exploit for linux platform in category remote exploits ==================================================== Sendmail include include include include include include include include int maxarch=1; struct arch char os; // The OS int pos; // The position of ebp in the stack, with the last byte being...
Sendmail <= 8.12.8 prescan() BSD Remote Root Exploit
No description provided by source. / Sendmail 8.12.8 prescan PROOF OF CONCEPT exploit by bysin This is to prove that the bug in sendmail 8.12.8 and below is vulnerable. On sucessful POC exploitation the program should crash with the following: Program received signal SIGSEGV, Segmentation fault...
Multiple Vulnerabilities in BSD LPR Subsystem on IRIX update
-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title : Multiple Vulnerabilities in BSD LPR Subsystem Number : 20030406-02-P Date : April 25, 2003 Reference: CERT VU39001 Reference: CERT VU30308 Reference: CERT VU293305 Reference: CVE CAN-2003-0144 Reference: SGI Security Advisory...
CVE-2002-0824
CVE-2002-0824 affects BSD pppd, where a symlink attack on a file specified as a tty device allows local users to change permissions of arbitrary files. The description states this is a local privilege/subversion of permissions vulnerability, but the connected documents do not provide additional t...
CVE-2002-0701
Technical details (affected products, versions, root cause, fixes) are not publicly available in the provided connected documents; monitor for updates.
CVE-2002-0381
The CVE-2002-0381 entry concerns the TCP implementation in various BSD operating systems (tcp_input.c) that fails to properly block connections to broadcast addresses. This allows remote attackers to bypass filters by sending packets with a unicast link-layer address to an IP broadcast address. A...
CVE-2002-0381
The TCP implementation in various BSD operating systems tcpinput.c does not properly block connections to broadcast addresses, which could allow remote attackers to bypass intended filters via packets with a unicast link layer address and an IP broadcast address...
CVE-2002-0701
ktrace in BSD-based operating systems allows the owner of a process with special privileges to trace the process after its privileges have been lowered, which may allow the owner to obtain sensitive information that the process obtained while it was running with the extra privileges...
CVE-2002-0824
BSD pppd allows local users to change the permissions of arbitrary files via a symlink attack on a file that is specified as a tty device...
DSA-275 lpr-ppd - buffer overflow
Bulletin has no description...
EEYE: XDR Integer Overflow
XDR Integer Overflow Release Date: March 19, 2003 Severity: High Remote Code Execution/Denial of Service Systems Affected: Sun Microsystems Network Services Library libnsl BSD-derived libraries with XDR/RPC routines libc GNU C library with sunrpc glibc Description: XDR is a standard for the...
BSD in.lpd File Name Handling Remote Overflow
The remote bsd-lpd daemon might be vulnerable to a buffer overflow when sent a too long file name and then asked to show the print queue when the file is being printed. An attacker may use this flaw to gain a shell on this host. Because of the conditions to positively check for this flaw are very...
Frisk F-Prot AntiVirus 3.12b - Command Line Scanner Buffer Overflow
source: https://www.securityfocus.com/bid/6969/info Frisk's F-Prot Antivirus for Linux and BSD is prone to a buffer overflow in file name parameters that are passed to the command line scanner. If a backup script is launched by a privileged user to scan the filesystem scans a file with an unusual...
Remote root vuln in HSphere WebShell
Hi all, Below is an advisory on a remote and local root vulnerability in the HSphere product by Positive Software which is used by many web-hosting providers. The vulnerability is in the WebShell component installed by default. Proof of concept exploits are provided and links to patched versions ...
CVE-2002-1915
tip on multiple BSD-based operating systems allows local users to cause a denial of service execution prevention by using flock to lock the /var/log/acculog file...
RealServer 7-9 Describe Buffer Overflow
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
RealServer 7-9 - Describe Buffer Overflow (Metasploit)
RealServer 7-9 - Describe Buffer Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
RealServer 7-9 - Describe Buffer Overflow (Metasploit)
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'msf/core/exploit/http'...
CUPS 1.1.x - Negative Length HTTP Header
CUPS 1.1.x - Negative Length HTTP Header source: https://www.securityfocus.com/bid/6437/info A vulnerability has been reported for CUPS that if exploited may result in a DoS or the execute of code on affected systems. An attacker can exploit this vulnerability by connecting to a vulnerable system...