IBM AIX <= 4.2.1, Sun Solaris <= 7.0 LC_MESSAGES libc Buffer Overflow Vulnerability (4)

No description provided by source. source: http://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges. This problem is found in both IBM...

Caldera UnixWare 7.1.1 - Message Catalog Environment Variable Format String

// source: https://www.securityfocus.com/bid/4060/info UnixWare is a commercially available Unix Operating System. It was originally developed by SCO, and is now distributed and maintained by Caldera. A format string vulnerability in the locale subsystem could lead to a user gaining elevated...

CVE-1999-0767

CVE-1999-0767 is a buffer overflow vulnerability described in Solaris components (libc, ufsrestore, and rcp) triggered via the LC_MESSAGES environment variable. The available connected records confirm the affected software and the root cause (buffer overflow), with the PT-1999-1338 entry reiterat...

solaris_LCmessages.txt

Subject: Question on Solaris LCMESSAGES libc exploit To: [email protected] Hello, A previous message stated that the LCMESSAGES bug in Solaris has been fixed in 7. However, I am still able to gain root with the below code on Sparc Solaris 7 5/99 Release boxes with MU2 and 7Recommended pat...

CVE-1999-0767

Buffer overflow in Solaris libc, ufsrestore, and rcp via LCMESSAGES environmental variable...

PT-1999-1338 · Oracle · Solaris

Name of the Vulnerable Software and Affected Versions: Solaris affected versions not specified Description: The issue is related to a buffer overflow in Solaris libc, ufsrestore, and rcp, which can be triggered via the LC MESSAGES environmental variable. Recommendations: At the moment, there is n...

IBM AIX 4.2.1 / Sun Solaris 7.0 - LC_MESSAGES libc Buffer Overflow (3)

/ source: https://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges. This problem is found in both IBM's AIX and Sun Microsystem's...

IBM AIX 4.2.1 Sun Solaris 7.0 - LC_MESSAGES libc Buffer Overflow (3)

IBM AIX 4.2.1 Sun Solaris 7.0 - LCMESSAGES libc Buffer Overflow 3 / source: https://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges...

IBM AIX 4.2.1 Sun Solaris 7.0 - LC_MESSAGES libc Buffer Overflow (2)

IBM AIX 4.2.1 Sun Solaris 7.0 - LCMESSAGES libc Buffer Overflow 2 // source: https://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges...