FreeBSD : cyrus-sasl -- dynamic library loading and set-user-ID applications (92268205-1947-11d9-bc4a-000c41e2cdad)

The Cyrus SASL library, libsasl, contains functions which may load dynamic libraries. These libraries may be loaded from the path specified by the environmental variable SASLPATH, which in some situations may be fully controlled by a local attacker. Thus, if a set-user-ID application such as chsh...

MySQL dynamic functions loading vulnerability

It's possible to load dynamic library from any location; functions are still available after library is unloaded...

MySQL 4.0.17 UDF Dynamic Library Exploit

No description provided by source. / $Id: raptorudf.c,v 1.1 2004/12/04 14:44:39 raptor Exp $ raptorudf.c - dynamic library for dosystem MySQL UDF Copyright c 2004 Marco Ivaldi [email protected] This is an helper dynamic library for local privilege escalation through MySQL run with root...

Macrovision InstallShield InstallScript One-Click Install ActiveX code exectuion

Control allows to download and execute dynamic library from remote site...

tomboy code execution

Invalid dynamic library path...

Adobe Acrobat / Reader multiple security vulnerabilities

Multiple buffer overflows and integer overflows, unsafe methods, unsafe dynamic library loading...

IBM DB2 database server multiple security vulnerabilities

TCP/523 remote administration service memory corruption. Dynamic livrary loading by relative path...

MySQL 4.x/5.0 User-Defined Function Local Privilege Escalation Exploit

No description provided by source. / $Id: raptorudf2.c,v 1.1 2006/01/18 17:58:54 raptor Exp $ raptorudf2.c - dynamic library for dosystem MySQL UDF Copyright c 2006 Marco Ivaldi [email protected] This is an helper dynamic library for local privilege escalation through MySQL run with root...

IBM AIX utilities multiple security vulnerabilities

Multiple suid root ftp client buffer overflow, dynamic library loading via -R command line argument in pioout, buffer overflow with terminal control sequences in capture...

MySQL 4.x/5.0 (Linux) - User-Defined Function (UDF) Dynamic Library (2)

/ $Id: raptorudf2.c,v 1.1 2006/01/18 17:58:54 raptor Exp $ raptorudf2.c - dynamic library for dosystem MySQL UDF Copyright c 2006 Marco Ivaldi This is an helper dynamic library for local privilege escalation through MySQL run with root privileges very bad idea!, slightly modified to work with new...

MySQL 4.x5.0 (Linux) - User-Defined Function (UDF) Dynamic Library (2)

MySQL 4.x5.0 Linux - User-Defined Function UDF Dynamic Library 2 / $Id: raptorudf2.c,v 1.1 2006/01/18 17:58:54 raptor Exp $ raptorudf2.c - dynamic library for dosystem MySQL UDF Copyright c 2006 Marco Ivaldi This is an helper dynamic library for local privilege escalation through MySQL run with...

Gentoo Linux multiple ports privilege escalation

User from portage group can place dynamic library into search path of vulnerable library. Vulnerable ports are perl, Qt-UnixODBC, CMake...

Linux kernel msync race conditions

Race conditions allow inject dynamic library into process space...

PostgreSQL Database Server privilege escalation

By using LOAD command it's possible to load dynamic library with server process privileges. Buffer overflow on large cursor's arguments number. Protection bypass on functions execution...

MySQL 4.0.17 (Linux) - User-Defined Function (UDF) Dynamic Library (1)

/ $Id: raptorudf.c,v 1.1 2004/12/04 14:44:39 raptor Exp $ raptorudf.c - dynamic library for dosystem MySQL UDF Copyright c 2004 Marco Ivaldi This is an helper dynamic library for local privilege escalation through MySQL run with root privileges very bad idea!. Tested on MySQL 4.0.17. Code ripped...

MySQL 4.0.17 (Linux) - User-Defined Function (UDF) Dynamic Library (1)

MySQL 4.0.17 Linux - User-Defined Function UDF Dynamic Library 1 / $Id: raptorudf.c,v 1.1 2004/12/04 14:44:39 raptor Exp $ raptorudf.c - dynamic library for dosystem MySQL UDF Copyright c 2004 Marco Ivaldi This is an helper dynamic library for local privilege escalation through MySQL run with roo...

MySQL 4.0.17 UDF Dynamic Library Exploit

Exploit for linux platform in category local exploits ======================================== MySQL 4.0.17 UDF Dynamic Library Exploit ======================================== / $Id: raptorudf.c,v 1.1 2004/12/04 14:44:39 raptor Exp $ raptorudf.c - dynamic library for dosystem MySQL UDF Copyright...

FreeBSD : cyrus-sasl -- dynamic library loading and set-user-ID applications (35)

The following package needs to be updated: cyrus-sasl %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg92268205194711d9bc4a000c41e2cdad.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

cyrus-sasl -- dynamic library loading and set-user-ID applications

The Cyrus SASL library, libsasl, contains functions which may load dynamic libraries. These libraries may be loaded from the path specified by the environmental variable SASLPATH, which in some situations may be fully controlled by a local attacker. Thus, if a set-user-ID application such as chsh...

cdrdao.sh

!/bin/sh DIR=pwd echo "" echo "cdrdao local root exploit - gr doesn't protect you this time" echo "Karol Wiêsek " echo "" sleep 2 umask 000 echo -n " Checking if /etc/ld.so.preload doesn't exist ... " if -f /etc/ld.so.preload ; then echo "WRONG" echo "/etc/ld.so.preload exists, write another...