BSD mailx 8.1.1-10 - Local Buffer Overflow (1)

BSD mailx 8.1.1-10 - Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/1305/info Some Linux distributions ship with BSD mailx 8.1.1-10 On Slackware 7.x it can be found as /usr/bin/Mail. A vulnerability exists in the 'mail' program, part of the Berkeley mailx package. The 'mail'...

BSD 'mailx' 8.1.1-10 - Local Buffer Overflow (1)

// source: https://www.securityfocus.com/bid/1305/info Some Linux distributions ship with BSD mailx 8.1.1-10 On Slackware 7.x it can be found as /usr/bin/Mail. A vulnerability exists in the 'mail' program, part of the Berkeley mailx package. The 'mail' program contains a buffer overflow condition...

CVE-2000-0461

The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call...

Серьезная локальная DoS-атака против *BSD

Недокументированный системный вызов, используемый в ipcs, неиспользующий проверку ACL позволяет любому пользователю заблокировать выход приложений...

CVE-2000-0094

procfs in BSD systems allows local users to gain root privileges by modifying the /proc/pid/mem interface via a modified file descriptor for stderr...

CVE-1999-0001

CVE-1999-0001 concerns a DoS in BSD-derived TCP/IP stacks: ip_input.c can crash or hang when remote attackers send crafted packets. The description across connected sources reiterates that remote packet crafting triggers a denial of service, with no publicly stated exploit details or mitigation i...

CVE-1999-0061

CVE-1999-0061 concerns the BSD line printer daemon (lpd). Multiple sources confirm a vulnerability in lpd related to file creation and deletion and remote execution. Affected software is BSD-derived lpd implementations; the root cause is not explicitly detailed in the provided documents. Reported...

CVE-1999-0001

ipinput.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service crash or hang via crafted packets...

CVE-1999-0061

File creation and deletion, and remote execution, in the BSD line printer daemon lpd...

FreeBSD 3.4 NetBSD 1.4.1 OpenBSD 2.6 - proc FileSystem

FreeBSD 3.4 NetBSD 1.4.1 OpenBSD 2.6 - proc FileSystem // source: https://www.securityfocus.com/bid/940/info Certain BSD derivative operating systems use an implantation of the /proc filesystem which is vulnerable to attack from malicious local users. This attack will gain the user root access to...

FreeBSD 3.4 / NetBSD 1.4.1 / OpenBSD 2.6 - '/proc' FileSystem

// source: https://www.securityfocus.com/bid/940/info Certain BSD derivative operating systems use an implantation of the /proc filesystem which is vulnerable to attack from malicious local users. This attack will gain the user root access to the host. The proc file system was originally designed...

CVE-2000-0092

The BSD make program allows local users to modify files via a symlink attack when the -j option is being used...

CVE-1999-0304

CVE-1999-0304 concerns the BSD mmap vulnerability where local attackers in the kmem group can modify kernel memory via devices. The connected sources repeat the description but do not provide concrete product versions, patches, or specific exploit details. The Red Hat, CVE, NVD, and related entri...

CVE-1999-0674

CVE-1999-0674 affects the BSD profiling system call. A local user can modify the internal data space of a program via profiling and execve, with potential impact on confidentiality, integrity, and availability as noted in the sources. No remediation steps or concrete exploit details are provided ...

CVE-1999-0304

mmap function in BSD allows local attackers in the kmem group to modify memory through devices...

CVE-1999-0674

The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve...

CVE-1999-1102

lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times...

CVE-1999-0001

ipinput.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service crash or hang via crafted packets...

CVE-1999-0006

Qpopper-based POP servers are vulnerable to a buffer overflow via a long PASS command that can allow a remote attacker to gain root access. The records consistently describe BSD/Qualcomm qpopper implementations with this issue; specific affected versions are not enumerated in the provided documen...

CVE-1999-0032

Buffer overflow in lpr used on BSD-based systems including Linux allows local users to execute arbitrary code as root via a long -C option. Root cause: overflow in handling the -C classification argument. Impact: local code execution with root privileges. No remediation details are provided in th...