2624 matches found
CVE-2003-0454
Multiple buffer overflows in xgalaga 2.0.34 and earlier allow local users to gain privileges via a long HOME environment variable...
CVE-2003-0382
Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable...
CVE-2003-0382
Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable...
DEBIAN-CVE-2003-0382
Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable...
GNU GNATS 3.113 - Environment Variable Buffer Overflow
GNU GNATS 3.113 - Environment Variable Buffer Overflow // source: https://www.securityfocus.com/bid/8005/info It has been reported that GNATS is prone to a buffer overflow condition when parsing certain environment variables. An attacker can exploit this vulnerability by setting an overly long...
Progress Database 9.1 - Environment Variable Privilege Escalation
// source: https://www.securityfocus.com/bid/7916/info It has been reported that Progress database does not properly handle untrusted input when opening shared libraries. Specifically, the dlopen function used by several Progress utilities checks the user's PATH environment variable when includin...
CVE-2003-0382
Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable...
Mandrake Linux 8.2 /usr/mail local exploit (d86mail.pl)
Exploit for linux platform in category local exploits ======================================================= Mandrake Linux 8.2 /usr/mail local exploit d86mail.pl ======================================================= !/usr/bin/perl Mandrake 8.2 /usr/mail local exploit Usage: perl d86mail.pl...
Zblast 1.2 - Username Local Buffer Overrun
Zblast 1.2 - Username Local Buffer Overrun // source: https://www.securityfocus.com/bid/7836/info A vulnerability has been reported for zblast, an svgalib-based game. The problem occurs when copying data from a user-supplied environment variable into a static memory buffer. By storing excessive...
CVE-2003-0269
Buffer overflow in youbin allows local users to gain privileges via a long HOME environment variable...
CVE-2003-0337
The ckconfig command in lsadmin for Load Sharing Facility LSF 5.1 allows local users to execute arbitrary programs by modifying the LSFENVDIR environment variable to reference an alternate lsf.conf file, then modifying LSFSERVERDIR to point to a malicious lim program, which lsadmin then executes...
AIX 4.3/5.1 - diagrpt Arbitrary Privileged Program Execution
source: https://www.securityfocus.com/bid/2916/info AIX ships with a diagnostic reporting utility called 'diagrpt'. This utility is installed setuid root by default. When 'diagrpt' executes, it relies on an environment variable to locate another utility which it executes. This utility is executed...
CVE-2003-0269
Buffer overflow in youbin allows local users to gain privileges via a long HOME environment variable...
CVE-2003-0269
CVE-2003-0269: Buffer overflow in youbin enables local privilege escalation when a long HOME environment variable is supplied. Described as LOCAL attack, with LOW complexity and no authentication required; impact is complete confidentiality, integrity, and availability. No remediation details are...
ListProc 8.2.9 - Catmail ULISTPROC_UMASK Buffer Overflow
ListProc 8.2.9 - Catmail ULISTPROCUMASK Buffer Overflow source: https://www.securityfocus.com/bid/7533/info ListProc catmail has been reported prone to a buffer overflow vulnerability when handling a ULISTPROCUMASK environment variable of excessive length. The issue is likely due to a lack of...
ListProc 8.2.9 - Catmail ULISTPROC_UMASK Buffer Overflow
source: https://www.securityfocus.com/bid/7533/info ListProc catmail has been reported prone to a buffer overflow vulnerability when handling a ULISTPROCUMASK environment variable of excessive length. The issue is likely due to a lack of sufficient bounds checking performed when copying the...
Youbin 2.53.03.4 - HOME Buffer Overflow
Youbin 2.53.03.4 - HOME Buffer Overflow source: https://www.securityfocus.com/bid/7503/info It has been reported that youbin is vulnerable to a locally exploitable buffer overflow. The problem is said to occur while processing environment variables. Specifically, an internal memory buffer may be...
CVE-2003-0171
DirectoryServices in MacOS X trusts the PATH environment variable to locate and execute the touch command, which allows local users to execute arbitrary commands by modifying the PATH to point to a directory containing a malicious touch program...
CVE-2003-0171
Summary (CVE-2003-0171) : Mac OS X DirectoryService is vulnerable because it uses system(2) to run touch(1) without a full path, allowing a local attacker to alter PATH and execute a malicious touch as root. This can lead to privilege escalation and DoS. The attack is mediated by terminating Dire...
CVE-2002-1414
Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMINTEMPLATEDIR environment variable...