1471 matches found
xcode-select 13.4.0 Buffer Overflow
Exploit Title: xcode-select - buffer overflow Description: xcode-select controls the location of the developer directory used by xcrun1, xcodebuild1, cc1, and other Xcode and BSD development tools. Date: Tuesday 23 2014 Exploit Author: Juan Sacco Vendor Homepage: https://developer.apple.com...
Ettercap 0.6.3 .1 Large Packet Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4104/info Ettercap is a multipurpose packet sniffer for Linux and BSD based systems. It includes support for features such as character injection and packet filtering. Ettercap has been ported to Windows. A remotely...
Multiple BSD Distributions 'gdtoa/misc.c' Memory Corruption Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/35510/info Multiple BSD distributions are prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. Attackers may exploit this issue to execute arbitrary...
BSD PPP 'pppx.conf' - Local Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28090/info BSD PPP is prone to a local denial-of-service vulnerability because it fails to perform adequate boundary checks on user-supplied input. Attackers can leverage this issue to crash the application and deny servi...
File 3.x Local Stack Overflow Code Execution Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/7008/info It has been reported that a stack overflow exists in the file program. Although details of this issue are currently unavailable, it is likely that this issue could be exploited to execute code as the user invoki...
Observer 0.3.2.1 - Multiple Remote Command Execution Vulnerabilities
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl observer = 0.3.2.1 Remote Command Execution Script: Observer is an autodiscovering PHP/MySQL/SNMP/CDP...
BSD lpr 2000.05.07/0.48/0.72,lpr-ppd 0.72 Local Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/7025/info It has been reported that a vulnerability in the handling of some types of requests exists in lprm. When an attacker sends a maliciously crafted string to a configured printer through the lprm command, it may be...
Salim Gasmi GLD 1.x Postfix Greylisting Daemon Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13129/info It is reported that GLD contains a buffer overflow vulnerability. This issue is due to a failure of the application to properly ensure that a fixed-size memory buffer is sufficiently large prior to copying...
Rogue 5.3 - Local Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5837/info Rogue is a game included with BSD distributions including FreeBSD and NetBSD. By passing an overly long value when restoring a saved game, it is possible for an attacker to corrupt memory. Exploitation of this...
NetBSD <= 1.4,OpenBSD <= 2.5,Solaris <= 7.0 profil(2) Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/570/info Some BSD's use a profil2 system call that dates back to version 6 unix. This system call arranges for the kernel to sample the PC and increment an element of an array on every profile clock tick. The security iss...
Multiple BSD Distributions 'printf(3)' Memory Corruption Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/36885/info Multiple BSD distributions are prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. An attacker can exploit this issue to cause application...
OpenBSD 2.x-2.8 ftpd glob() Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/2548/info The BSD ftp daemon and derivatives such as IRIX ftpd or the ftp daemon shipped with Kerberos 5 contain a number of buffer overflows that may lead to a compromise of root access to malicious users. During parsing...
SGI IRIX <= 6.4 netprint Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/395/info A vulnerability exists in the netprint program, shipping with Irix 6.x and 5.x by Silicon Graphics. The netprint program calls the disable command via a system call, without specifying an explicit path. Therefore...
OpenBSD 2.x fstat Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1746/info fstat is a program shipped with BSD unix variants that is used to list the open files on a system. It is installed sgid kmem so it can access information about open files from the kernel memory structures. A use...
FreeBSD 2.2-4.2,NetBSD 1.2-4.5,OpenBSD 2.x ftpd glob() Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/2548/info The BSD ftp daemon and derivatives such as IRIX ftpd or the ftp daemon shipped with Kerberos 5 contain a number of buffer overflows that may lead to a compromise of root access to malicious users. During parsing...
Solaris 2.x/7.0/8,IRIX 6.5.x,OpenBSD 2.x,NetBSD 1.x,Debian 3,HP-UX 10 Telnetd Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/3064/info A boundary condition error exists in telnet daemons derived from the BSD telnet daemon. Under certain circumstances, the buffer overflow can occur when a combination of telnet protocol options are received by th...
ACME Labs thttpd 2.20 Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4601/info thttpd is a web server product maintained by ACME Labs. thttpd has been compiled for Linux, BSD and Solaris, as well as other Unix like operating systems. Cross Site Scripting issues has been reported in some...
BSD lpr 2000.05.07/0.48/0.72,lpr-ppd 0.72 Local Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/7025/info It has been reported that a vulnerability in the handling of some types of requests exists in lprm. When an attacker sends a maliciously crafted string to a configured printer through the lprm command, it may be...
OS X 10.x, FreeBSD 4.x,OpenBSD 2.x,Solaris 2.5/2.6/7.0/8 exec C Library Standard I/O File Descriptor Closure
No description provided by source. source: http://www.securityfocus.com/bid/4568/info It has been reported that BSD-based kernels do not check to ensure that the C library standard I/O file descriptors 0-2 are valid open files before execing setuid images. Consequently, I/O that are opened by a...
BSD-Games 2.x Monop Player Name Local Buffer Overrun Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/8501/info Monop included in bsd-games is prone to a locally exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of player names. Monop is typically installed setgid games, so it is possib...