Lucene search
+L

138 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Solaris <= 2.6 Profiling File Creation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/659/info A vulnerability in the dynamic linkers while profiling a shared object allows local users to create arbitrary files in the system. It canno't be used to overwrite existing files. If the LDPROFILE environment...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/11/13 12:0 a.m.59 views

ESXi 5.0 < Build 515841 Multiple Vulnerabilities (remote check)

The remote VMware ESXi 5.0 host is affected by the following security vulnerabilities : - A security bypass vulnerability exists in the e1000 driver in the Linux kernel due to improper handling of Ethernet frames that exceed the MTU. An unauthenticated, remote attacker can exploit this, via...

7.8CVSS6.6AI score0.14323EPSS
Exploits4References12
RedHat Linux
RedHat Linux
added 2012/02/13 8:30 p.m.4 views

glibc: ld.so d_tag signedness error in elf_get_dynamic_info

Integer signedness error in the elfgetdynamicinfo function in elf/dynamic-link.h in ld.so in the GNU C Library aka glibc or libc6 2.0.1 through 2.11.1, when the --verify option is used, allows user-assisted remote attackers to execute arbitrary code via a crafted ELF program with a negative value...

5.1CVSS7.8AI score0.04514EPSS
Exploits0References4
exploitpack
exploitpack
added 2011/11/10 12:0 a.m.37 views

glibc - LD_AUDIT Arbitrary DSO Load Privilege Escalation

glibc - LDAUDIT Arbitrary DSO Load Privilege Escalation !/bin/sh I Can't Read and I Won't Race You Either by zx2c4 This is an exploit for CVE-2010-3856. A while back, Tavis showed us three ways to exploit flaws in glibc's dynamic linker involving LDAUDIT. 1 2 The first way involved opening a file...

7.2CVSS0.4AI score0.09454EPSS
Exploits24
Exploit DB
Exploit DB
added 2011/11/10 12:0 a.m.108 views

glibc - &#039;LD_AUDIT&#039; Arbitrary DSO Load Privilege Escalation

!/bin/sh I Can't Read and I Won't Race You Either by zx2c4 This is an exploit for CVE-2010-3856. A while back, Tavis showed us three ways to exploit flaws in glibc's dynamic linker involving LDAUDIT. 1 2 The first way involved opening a file descriptor and using fexecve to easily win a race with...

7.2CVSS8.6AI score0.09454EPSS
Exploits24
ATTACKERKB
ATTACKERKB
added 2011/04/08 3:17 p.m.3 views

CVE-2011-1658

ld.so in the GNU C Library aka glibc or libc6 2.13 and earlier expands the $ORIGIN dynamic string token when RPATH is composed entirely of this token, which might allow local users to gain privileges by creating a hard link in an arbitrary directory to a 1 setuid or 2 setgid program with this RPA...

6.9CVSS5.8AI score0.08747EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2011/04/04 8:17 p.m.9 views

glibc: ld.so insecure handling of privileged programs' RPATHs with $ORIGIN

ld.so in the GNU C Library aka glibc or libc6 2.13 and earlier expands the $ORIGIN dynamic string token when RPATH is composed entirely of this token, which might allow local users to gain privileges by creating a hard link in an arbitrary directory to a 1 setuid or 2 setgid program with this RPA...

3.7CVSS6.2AI score0.00311EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2010/11/24 12:0 a.m.30 views

CentOS 5 : glibc (CESA-2010:0793)

Updated glibc packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.2CVSS7.7AI score0.09454EPSS
Exploits24References3
RedHat Linux
RedHat Linux
added 2010/11/10 7:0 p.m.50 views

Important: Red Hat Security Advisory: glibc security and bug fix update

Updated glibc packages that fix two security issues and two bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

7.2CVSS7.2AI score0.09454EPSS
Exploits35References5
RedHat Linux
RedHat Linux
added 2010/11/10 7:0 p.m.6 views

glibc: ld.so insecure handling of $ORIGIN in LD_AUDIT for setuid/setgid programs

elf/dl-load.c in ld.so in the GNU C Library aka glibc or libc6 through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LDAUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object DSO located in an arbitrary...

6.9CVSS7.4AI score0.08747EPSS
Exploits20References4
RedHat Linux
RedHat Linux
added 2010/11/10 7:0 p.m.6 views

glibc: ld.so arbitrary DSO loading via LD_AUDIT in setuid/setgid programs

ld.so in the GNU C Library aka glibc or libc6 before 2.11.3, and 2.12.x before 2.12.2, does not properly restrict use of the LDAUDIT environment variable to reference dynamic shared objects DSOs as audit objects, which allows local users to gain privileges by leveraging an unsafe DSO located in a...

7.2CVSS7.2AI score0.09454EPSS
Exploits24References4
securityvulns
securityvulns
added 2010/10/26 12:0 a.m.90 views

GNU C dynamic linker privilege escalation

Invalid $ORIGIN processing allows to load user library into suid application...

7.2CVSS4.5AI score0.09454EPSS
Exploits35References2Affected Software1
securityvulns
securityvulns
added 2010/10/26 12:0 a.m.87 views

The GNU C library dynamic linker will dlopen arbitrary DSOs during setuid loads.

The GNU C library dynamic linker will dlopen arbitrary DSOs during setuid loads ------------------------------------------------------------------------------- Czesc, This advisory describes CVE-2010-3856, an addendum to CVE-2010-3847. Please see http://seclists.org/fulldisclosure/2010/Oct/257 fo...

7.2CVSS9AI score0.09454EPSS
Exploits35
CERT
CERT
added 2010/10/25 12:0 a.m.58 views

GNU C library dynamic linker expands $ORIGIN in setuid library search path

Overview Certain versions of glibc unsafely handle the $ORIGIN ELF substitution sequence which can be exploited to gain local privilege escalation. Description Tavis Ormandy's advisory states:"$ORIGIN is an ELF substitution sequence representing the location of the executable being loaded in the...

6.9CVSS8.9AI score0.08747EPSS
Exploits20References1
securityvulns
securityvulns
added 2010/10/24 12:0 a.m.101 views

The GNU C library dynamic linker expands $ORIGIN in setuid library search path

The GNU C library dynamic linker expands $ORIGIN in setuid library search path ------------------------------------------------------------------------------ Gruezi, This is CVE-2010-3847. The dynamic linker or dynamic loader is responsible for the runtime linking of dynamically linked programs...

7.2CVSS10AI score0.08747EPSS
Exploits22
OpenVAS
OpenVAS
added 2010/10/22 12:0 a.m.27 views

RedHat Update for glibc RHSA-2010:0787-01

Check for the Version of glibc OpenVAS Vulnerability Test RedHat Update for glibc RHSA-2010:0787-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

6.9CVSS9AI score0.08747EPSS
Exploits20References2
Packet Storm
Packet Storm
added 2010/10/22 12:0 a.m.72 views

GNU C Library Dynamic Linker Arbitrary DSO dlopen

The GNU C library dynamic linker will dlopen arbitrary DSOs during setuid loads ------------------------------------------------------------------------------- Cześć, This advisory describes CVE-2010-3856, an addendum to CVE-2010-3847. Please see http://seclists.org/fulldisclosure/2010/Oct/257 fo...

7.2CVSS0.2AI score0.09454EPSS
Exploits35
exploitpack
exploitpack
added 2010/10/22 12:0 a.m.74 views

GNU C Library 2.x (libc6) - Dynamic Linker LD_AUDIT Arbitrary DSO Load Privilege Escalation

GNU C Library 2.x libc6 - Dynamic Linker LDAUDIT Arbitrary DSO Load Privilege Escalation Source: http://marc.info/?l=full-disclosure&m=128776663124692&w=2 The GNU C library dynamic linker will dlopen arbitrary DSOs during setuid loads...

7.2CVSS1AI score0.09454EPSS
Exploits35
Cent OS
Cent OS
added 2010/10/21 9:47 a.m.83 views

glibc, nscd security update

CentOS Errata and Security Advisory CESA-2010:0787 Updated glibc packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base...

6.9CVSS7.3AI score0.08747EPSS
Exploits20References7
RedHat Linux
RedHat Linux
added 2010/10/20 11:26 p.m.42 views

Important: Red Hat Security Advisory: glibc security update

Updated glibc packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.9CVSS7.3AI score0.08747EPSS
Exploits20References2
Rows per page
Query Builder