CVE-2004-0530

The PHP package in Slackware 8.1, 9.0, and 9.1, when linked against a static library, includes /tmp in the search path, which allows local users to execute arbitrary code as the PHP user by inserting shared libraries into the appropriate path...

PHP local security issue

New PHP packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a security issue. These fix a problem in previous Slackware php packages where linking PHP against a static library in an insecure path under /tmp could allow a local attacker to place shared libraries at this locatio...

Important: Red Hat Security Advisory: kdelibs security update

Updated kdelibs packages that fix telnet URI handler and mailto URI handler file vulnerabilities are now available. The kdelibs packages include libraries for the K Desktop Environment. KDE Libraries include: kdecore KDE core library, kdeui user interface, kfm file manager, khtmlw HTML widget, ki...

[security bulletin] SSRT3613 rev.0 HP-UX B6848AB GTK+ Support Libraries - elevated privileges

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 HP SECURITY BULLETIN HPSBUX01034 REVISION: 0 SSRT3613 rev.0 HP-UX B6848AB GTK+ Support Libraries elevated privileges ----------------------------------------------------------------- NOTICE: There are no restrictions for distribution of this Bulletin...

CVE-2004-2133

Certain third-party packages for CVSup 16.1h, such as SuSE Linux, contain untrusted paths in the ELF RPATH fields of certain executables, which could allow local users to execute arbitrary code by causing cvsup to link against malicious libraries that are created in world-writable directories suc...

Important: Red Hat Security Advisory: : Updated XFree86 packages provide security and bug fixes

Updated XFree86 packages for Red Hat Linux 7.3 and 8.0 provide security fixes to font libraries and XDM. XFree86 is an implementation of the X Window System providing the core graphical user interface and video drivers in Red Hat Linux. XDM is the X display manager. Multiple integer overflows in...

Important: Red Hat Security Advisory: : Updated XFree86 packages provide security and bug fixes

Updated XFree86 packages for Red Hat Linux 7.1 and 7.2 provide security fixes to font libraries and XDM. XFree86 is an implementation of the X Window System providing the core graphical user interface and video drivers in Red Hat Linux. XDM is the X display manager. Multiple integer overflows in...

Multiple vulnerabilities in S/MIME implementations

Overview Multiple vulnerabilities exist in different vendors' S/MIME Secure/Multipurpose Internet Mail Extensions implementations. The impacts of these vulnerabilities are varied and range from denial of service to potential remote execution of arbitrary code. Description The U.K. National...

SSH Communications Secure Shell vulnerable to DoS via malformed BER/DER packet

Overview SSH Communications' Secure Shell contains vulnerabilities in ASN.1 libraries that may allow remote attackers to cause a denial-of-service situation, or potentially execute arbitrary code on the server. Description SSH Communications' Secure Shell contains a vulnerability in the decoding ...

RealOne Player for Linux 2.2 Alpha - Insecure Configuration File Permission Privilege Escalation

// source: https://www.securityfocus.com/bid/8571/info The configuration files for the RealOne Player are installed in the a hidden folder in a users home directory. The issue presents itself, because configuration files stored in this directory are installed with insecure permissions. This means...

RealPlayer 9 *nix - Local Privilege Escalation

RealPlayer 9 nix - Local Privilege Escalation / rp9-priv-esc.c A local privilege escalation attack against the community supported version of Real.com's Realplayer, version 9. Written by: Jon Hart warchild spoofed.org By default, configuration files are stored in $USER/.realnetworks/, but all the...

RealPlayer 9 *nix Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits ==================================================== RealPlayer 9 nix Local Privilege Escalation Exploit ==================================================== / rp9-priv-esc.c A local privilege escalation attack against the community supported...

CVE-2003-0730

Multiple integer overflows in the font libraries for XFree86 4.3.0 allow local or remote attackers to cause a denial of service or execute arbitrary code via heap-based and stack-based buffer overflow attacks...

Multiple integer overflows in XFree86 (local/remote)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Remote and local vulnerabilities in XFree86 font libraries Product: XFree86 4.3.0 Impact: Potential privilege escalation / remote code execution Bug class: Integer overflow Vendor notified: Yes Fix available: Yes see end of advisory Details: I have...

XFree86 libraries integer overflow

Integer overflows on font server functions...

CVE-2003-0449

Progress Database 9.1 to 9.1D06 trusts user input to find and load libraries using dlopen, which allows local users to gain privileges via 1 a PATH environment variable that points to malicious libraries, as demonstrated using libjutil.so inproapsv, or 2 the -installdir command line parameter, as...

IBM DB2 - Shared Library Injection

IBM DB2 - Shared Library Injection source: https://www.securityfocus.com/bid/8346/info IBM DB2 ships with a number of shared libraries, stored in a directory owned by the user and group 'bin'. As setuid root utilities are linked to these libraries, their ownership by a user and group of a lower...

CVE-2003-0449

Progress Database 9.1 to 9.1D06 trusts user input to find and load libraries using dlopen, which allows local users to gain privileges via 1 a PATH environment variable that points to malicious libraries, as demonstrated using libjutil.so inproapsv, or 2 the -installdir command line parameter, as...

Important: Red Hat Security Advisory: : : : Updated bind packages fix buffer overflow in resolver library

Updated BIND packages that fix a number of vulnerabilities are now available for Red Hat Linux on IBM iSeries and pSeries systems. ISC BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP...

Progress Database 9.1 - Environment Variable Privilege Escalation

// source: https://www.securityfocus.com/bid/7916/info It has been reported that Progress database does not properly handle untrusted input when opening shared libraries. Specifically, the dlopen function used by several Progress utilities checks the user's PATH environment variable when includin...