Lucene search
+L

4892 matches found

Cvelist
Cvelist
added 2006/02/09 2:0 a.m.25 views

CVE-2006-0619

Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long 1 ABLPATH or 2 ABLANG environment variables in the libAP library libAp.so.2 or 3 a long PHOTONPATH environment variable to the setitem function in the libph library...

7.4AI score0.00497EPSS
Exploits0References10
Cent OS
Cent OS
added 2006/02/02 10:7 p.m.98 views

kernel security update

CentOS Errata and Security Advisory CESA-2006:0191-01 Updated kernel packages that fix a number of security issues as well as other bugs are now available for Red Hat Enterprise Linux 2.1 32 bit architectures This security advisory has been rated as having important security impact by the Red Hat...

6.6CVSS6.7AI score0.13429EPSS
Exploits10References8
Cvelist
Cvelist
added 2006/02/01 8:0 p.m.25 views

CVE-2003-1291

VMware ESX Server 1.5.2 before Patch 4 allows local users to execute arbitrary programs as root via certain modified VMware ESX Server environment variables...

7.1AI score0.00337EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2006/02/01 5:48 p.m.60 views

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix a number of security issues as well as other bugs are now available for Red Hat Enterprise Linux 2.1 64 bit architectures. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the...

6.6CVSS6.7AI score0.13429EPSS
Exploits11References15
Tenable Nessus
Tenable Nessus
added 2006/01/21 12:0 a.m.26 views

Ubuntu 4.10 / 5.04 / 5.10 : sudo vulnerability (USN-235-1)

Charles Morris discovered a privilege escalation vulnerability in sudo. On executing Perl scripts with sudo, various environment variables that affect Perl's library search path were not cleaned properly. If sudo is set up to grant limited sudo execution of Perl scripts to normal users, this coul...

4.6CVSS7.7AI score0.01077EPSS
Exploits1References1
Debian
Debian
added 2006/01/20 10:24 a.m.69 views

[SECURITY] [DSA 946-1] New sudo packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 946-1 [email protected] http://www.debian.org/security/ Martin Schulze January 20th, 2006 http://www.debian.org/security/faq -...

7.2CVSS6AI score0.01077EPSS
Exploits2
Debian
Debian
added 2006/01/20 10:24 a.m.69 views

[SECURITY] [DSA 946-1] New sudo packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 946-1 [email protected] http://www.debian.org/security/ Martin Schulze January 20th, 2006 http://www.debian.org/security/faq -...

7.2CVSS0.5AI score0.01077EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.25 views

Mandrake Linux Security Advisory : sudo (MDKSA-2005:234)

Charles Morris discovered a vulnerability in sudo versions prior to 1.6.8p12 where, when the perl taint flag is off, sudo does not clear the PERLLIB, PERL5LIB, and PERL5OPT environment variables, which could allow limited local users to cause a perl script to include and execute arbitrary library...

7.2CVSS7.7AI score0.01077EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.18 views

Mandrake Linux Security Advisory : uim (MDKSA-2005:198)

Masanari Yamamoto discovered that Uim uses environment variables incorrectly. This bug causes a privilege escalation if setuid/setgid applications are linked to libuim. The updated packages have been patched to address this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descripti...

4.6CVSS5.3AI score0.0041EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2006/01/09 8:32 p.m.55 views

USN-235-2: sudo vulnerability

USN-235-1 fixed a vulnerability in sudo's handling of environment variables. Tavis Ormandy noticed that sudo did not filter out the PYTHONINSPECT environment variable, so that users with the limited privilege of calling a python script with sudo could still escalate their privileges. For referenc...

4.6CVSS7.8AI score0.01077EPSS
Exploits1
exploitpack
exploitpack
added 2006/01/09 12:0 a.m.19 views

Sudo 1.6.x - Environment Variable Handling Security Bypass (2)

Sudo 1.6.x - Environment Variable Handling Security Bypass 2 source: https://www.securityfocus.com/bid/16184/info Sudo is prone to a security-bypass vulnerability that could lead to arbitrary code execution. This issue is due to an error in the application when handling environment variables. A...

Exploits0
securityvulns
securityvulns
added 2006/01/09 12:0 a.m.46 views

sudo privilege escalation

few envoronment vaqriables used by bash perl and python are not cleaned...

3AI score
Exploits0References4Affected Software1
exploitpack
exploitpack
added 2006/01/09 12:0 a.m.16 views

Sudo 1.6.x - Environment Variable Handling Security Bypass (1)

Sudo 1.6.x - Environment Variable Handling Security Bypass 1 source: https://www.securityfocus.com/bid/16184/info Sudo is prone to a security-bypass vulnerability that could lead to arbitrary code execution. This issue is due to an error in the application when handling environment variables. A...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2006/01/09 12:0 a.m.39 views

Sudo 1.6.x - Environment Variable Handling Security Bypass (1)

source: https://www.securityfocus.com/bid/16184/info Sudo is prone to a security-bypass vulnerability that could lead to arbitrary code execution. This issue is due to an error in the application when handling environment variables. A local attacker with the ability to run Python scripts can...

7.4AI score
Exploits0
Ubuntu
Ubuntu
added 2006/01/06 1:38 a.m.45 views

USN-235-1: sudo vulnerability

Charles Morris discovered a privilege escalation vulnerability in sudo. On executing Perl scripts with sudo, various environment variables that affect Perl's library search path were not cleaned properly. If sudo is set up to grant limited sudo execution of Perl scripts to normal users, this coul...

4.6CVSS7.8AI score0.01077EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2005/12/31 5:0 a.m.27 views

CVE-2005-4875

TYPO3 3.8.0 and earlier allows remote attackers to obtain sensitive information via a direct request to misc/phpcheck/, which invokes the phpinfo function and prints values of unspecified environment variables...

7.5CVSS6AI score0.01382EPSS
Exploits0References1
NVD
NVD
added 2005/12/31 5:0 a.m.29 views

CVE-2005-3629

initscripts in Red Hat Enterprise Linux 4 does not properly handle certain environment variables when /sbin/service is executed, which allows local users with sudo permissions for /sbin/service to gain root privileges via unknown vectors...

7.2CVSS6.5AI score0.0039EPSS
Exploits0References9
NVD
NVD
added 2005/12/11 2:3 a.m.17 views

CVE-2005-4158

Sudo before 1.6.8 p12, when the Perl taint flag is off, does not clear the 1 PERLLIB, 2 PERL5LIB, and 3 PERL5OPT environment variables, which allows limited local users to cause a Perl script to include and execute arbitrary library files that have the same name as library files that are included...

4.6CVSS6.6AI score0.01077EPSS
Exploits1References19
UbuntuCve
UbuntuCve
added 2005/12/11 2:3 a.m.29 views

CVE-2005-4158

Sudo before 1.6.8 p12, when the Perl taint flag is off, does not clear the 1 PERLLIB, 2 PERL5LIB, and 3 PERL5OPT environment variables, which allows limited local users to cause a Perl script to include and execute arbitrary library files that have the same name as library files that are included...

4.6CVSS7.2AI score0.01077EPSS
Exploits1References3
OSV
OSV
added 2005/12/11 2:3 a.m.7 views

CVE-2005-4158

Sudo before 1.6.8 p12, when the Perl taint flag is off, does not clear the 1 PERLLIB, 2 PERL5LIB, and 3 PERL5OPT environment variables, which allows limited local users to cause a Perl script to include and execute arbitrary library files that have the same name as library files that are included...

6.6AI score
Exploits0References22
Rows per page
Query Builder