89 matches found
Mandrake Linux Security Advisory : nedit (MDKSA-2001:042)
A temporary file vulnerability exists in NEdit, the Nirvana Editor. When printing the entire text or selected parts of the text within the editor, nedit creates a temporary file in an insecure manner. This could be exploited to gain access to other user privileges including root. %NASLMINLEVEL...
Mandrake Linux Security Advisory : samba (MDKSA-2001:062)
Michal Zalewski has found a vulnerability in all versions of Samba prior to 2.0.10 where if a client sends an invalid netbios name Samba could be tricked into appending it's log to files writable by root. This can be very dangerous if combined with a symlink created by a local user. Note that the...
DSA-343 skk, ddskk - insecure temporary file
Bulletin has no description...
[SECURITY] [DSA-304-1] New lv packages fix local privilege escalation
-------------------------------------------------------------------------- Debian Security Advisory DSA 304-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 15th, 2003 http://www.debian.org/security/faq -...
Microsoft Mediaplayer ediaplayer .ASX/.NSC/.ASF buffer overflow, .WMS code execution
Oversized tag in .asx file causes buffer overflows. Skins allow code execution on client side with .WMS files...
ARCservIT 6.61/6.63 Client - asagent.tmp Arbitrary File Overwrite
source: https://www.securityfocus.com/bid/2741/info ARCservIT from Computer Associates contains a vulnerability which may allow malicious local users to overwrite arbitrary files. When it runs for the first time, 'asagent', opens and truncates it if it exists a file in /tmp called 'asagent.tmp'...
Проблема в apcupsd
Создается открытый на запись файл, в который записывается pid процесса. Это позволяет подменить pid, в результате чего при попытке остановить демон будет убит другой процесс...
Minicom 1.821.83 - Capture-file Group Ownership
Minicom 1.821.83 - Capture-file Group Ownership source: https://www.securityfocus.com/bid/1599/info Minicom is a unix terminal program often used for communication between computers with modems. It is often installed setgid uucp, as this access is required for regular users to use certain devices...
icq-hidden-files.txt
Date: Fri, 1 Jan 1999 14:20:34 +1100 From: Justin Clift To: [email protected] Subject: Win32 ICQ 98a flaw Hello everyone, A while ago I found a flaw in ICQ which I believe to be fairly serious and asked whom to notify. Thanks for everyone's assistance in this. :- I notified Mirabilis and they...