repaironline-admin.txt

/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title :: Repair Online v1.2 sentout Create Admin...

Campus Bulletin Board v3.4 Multiple Remote Vulnerabilities

/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title :: Campus Bulletin Board v3.4 Multiple Remote...

excuseonline-sql.txt

/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title :: Excuse Online pwd SQL Injection...

Debian Security Advisory DSA 1011-1 (kernel-patch-vserver, util-vserver)

The remote host is missing an update to kernel-patch-vserver, util-vserver announced via advisory DSA 1011-1. Several vulnerabilities have been discovered in the Debian vserver support for Linux. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-4347 Bjø...

Debian Security Advisory DSA 499-1 (rsync)

The remote host is missing an update to rsync announced via advisory DSA 499-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Linux Mandrake <= 10.2 cdrdao Local Root Exploit (unfixed)

No description provided by source. !/bin/sh cdrdao local root exploit newbug at chroot.org IRC: irc.chroot.org chroot May 2005 echo "cdrdao private exploit" echo "This exploit only for Mandrake series" echo "newbug at chroot.org" echo "May 2005" echo "checking if cdrdao is setuid ..."; if ! -u...

SuSE 10 Security Update : rsync (ZYPP Patch Number 4798)

This update fixes a bug in rsync that allowed remote attackers to access restricted files outside a module's hierarchy if no chroot setup was used. CVE-2007-6199 Please read http://rsync.samba.org/security.html entry from November 28th, 2007 to get more information about a secure configuration of...

Rsync Use Chroot选项创建不安全文件漏洞

BUGTRAQ ID: 26638 rsync是一款对网站进行镜像备份的程序。 rsync在某种配置情况下以不安全的方式创建文件，本地攻击者可能利用此漏洞提升权限。 如果以"use chroot = no"选项运行可写的rsync守护程序的话，攻击者就可能通过符号链接诱骗rsync在模块之外创建文件。 rsync rsync 2.6.9 临时解决方法： 配置打开use chroot，或配置守护程序拒绝--links选项。 厂商补丁： rsync ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

CVE-2007-6199

rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy...

Apple Mac OS X v10.4.11之前版本多个安全漏洞

BUGTRAQ ID: 26444 CVECAN ID:...

Directory traversal

Directory traversal vulnerability in the kernel in Apple Mac OS X 10.4 through 10.4.10 allows local users to bypass the chroot mechanism via a relative path when changing the current working directory...

CVE-2007-4683

Directory traversal vulnerability in the kernel in Apple Mac OS X 10.4 through 10.4.10 allows local users to bypass the chroot mechanism via a relative path when changing the current working directory...

CVE-2007-4683

Apple Mac OS X 10.4.x kernels are affected by CVE-2007-4683, a local directory traversal vulnerability in the kernel that allows a local user to bypass chroot restrictions by using a relative path when changing the current working directory. The issue affects Mac OS X 10.4 through 10.4.10; impact...

CVE-2007-5471

libgssapi before 0.6-13.7, as used by the ISC BIND named daemon in SUSE Linux Enterprise Server 10 SP 1, terminates upon an initialization error, which allows remote attackers to cause a denial of service daemon exit via a GSS-TSIG request. NOTE: this issue probably affects other daemons that...

Code injection

The Chroot server in rMake 1.0.11 creates a /dev/zero device file with read/write permissions for the rMake user and the same minor device number as /dev/port, which might allow local users to gain root privileges...

CVE-2007-5194

The Chroot server in rMake 1.0.11 creates a /dev/zero device file with read/write permissions for the rMake user and the same minor device number as /dev/port, which might allow local users to gain root privileges...

CVE-2007-5194

The CVE-2007-5194 entry concerns the Chroot server in rMake 1.0.11. A local-priority issue arises because it creates a /dev/zero device file with read/write permissions for the rMake user and shares the minor device number with /dev/port, enabling potential local privilege escalation to root. The...

CVE-2007-5194

The Chroot server in rMake 1.0.11 creates a /dev/zero device file with read/write permissions for the rMake user and the same minor device number as /dev/port, which might allow local users to gain root privileges...

CVE-2006-1863

Directory traversal vulnerability in CIFS in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\" sequences, a similar vulnerability to CVE-2006-1864...

[Full-disclosure] OSNews

http://distrowatch.com/weekly.php?issue=../../../../../../../../../../../../../../../../../../../../../../../etc/passwd00 Someone forget their chroot soup this morning...