1916 matches found
Abyss Web Server 1.0 - File Disclosure
source: https://www.securityfocus.com/bid/4466/info Abyss Web Server is a freely available personal web server. It is maintained by Aprelium Technologies and runs on Microsoft Windows operating systems, as well as Linux. It is possible for a remote attacker to disclose the contents of arbitrary...
NetBSD 1.x - 'TalkD' User Validation
source: https://www.securityfocus.com/bid/4419/info talkd is a client-server application shipped with many Unix and Linux variants that is used for communication between users locally or remotely. talkd does not perform adequate validation of users making talk requests. As a result, it is possibl...
Colbalt-RAQ-v4-Bugs&Vulnerabilities
------oOo---------------- Cobalt RAQ 4 Server Management, Cross Site Scripting , Directory Traversal & DoS Vulnerabilities. ------oOo---------------- Company Affected: www.cobalt.com & www.sun.com Version: RAQ 4 Server Management. Dowload: http://www.cobalt.com/products/raq/index.html OS Affected...
Переполнение буфера в at под linux (buffer overflow)
Переполнение кучи...
Linux, too, sot of (Windows MS-DOS Device Name DoS vulnerabilities)
Using img src="file:///dev/tty0" on my Linux machine caused Netscape and Mozilla both to eat all the keyboard input. I had to use another machine to kill it. I expected Netscape to NOT open file URIs from within a page fetched via !file http, https, ftp, gopher, etc.. -jwb...
Security Bug in InoculateIT for Linux (fwd)
Dear Bugtraq Readers, We believe we have discovered a security flaw a /tmp race condition in Computer Associates' InoculateIT product, a good virus scanner for Microsoft and UNIX platforms which is free for personal use. The vulnerability allows local users to deny service to the system or possib...
BeroFTPD 1.3.4(1) (Linux x86) - Remote Code Execution
BeroFTPD 1.3.41 Linux x86 - Remote Code Execution / BeroFTPD 1.3.41 Linux x86 remote root exploit by qitest1 - 5/05/2001 BeroFTPD is an ftpd derived from wuftpd sources. This code exploits the format bug of the site exec cmd, well known to be present in wuftpd-2.6.0 and derived daemons. BeroFTPD...
Innfeed Buffer Overflow
====================================================================== Defcom Labs Advisory def-2001-19 innfeed buffer overflow Author: Enrique A. Sanchez Montellano @defcom.com Author: Alex Hernandez [email protected] Release Date: 2001-04-18...
Sendmail 8.11.x (Linux/i386) - Local Privilege Escalation
/ sendmail 8.11.x exploit i386-Linux by [email protected] sd@ircnet This code exploits well-known local-root bug in sendmail 8.11.x, 8.12.x may be vulnerable too, but I didn't test it. It gives instant root shell with +s sendmail 8.11.x, x 6 We're using objdump, gdb & grep in order to obtain VECT, so make...
University of Washington Pico 3.x4.x - File Overwrite
University of Washington Pico 3.x4.x - File Overwrite source: https://www.securityfocus.com/bid/2097/info A vulnerability exists in several versions of University of Washington's Pico, a widely-distributed text editor shipped with most versions of Linux / Unix. Under very specific circumstances, ...
Debian 2.12.2 Mandrake 6.06.17.0 RedHat 6.x - rpc.lockd Remote Denial of Service
Debian 2.12.2 Mandrake 6.06.17.0 RedHat 6.x - rpc.lockd Remote Denial of Service source: https://www.securityfocus.com/bid/1372/info A denial of service attack exists in the NFS lock daemon supplied with Linux. By connecting to the port rpc.lockd is running on, and supplying random input, it will...
Elm Development Group ELM 2.42.5.1 Mail for UNIX - ELM Buffer Overflow (2)
Elm Development Group ELM 2.42.5.1 Mail for UNIX - ELM Buffer Overflow 2 // source: https://www.securityfocus.com/bid/1276/info Buffer overflow vulnerabilities exist in elm Electronic Mail for Unix. / Elm 2.5 PL3 exploit Tested Under Linux Slackware 3.6, 4.0, 7.0 By xfer [email protected] ...
Newsletter 35
RSA Web site defaced Amazon.com, eBay & CNN all targeted with DDoS President Clinton convenes meeting on internet security Infosec professionals like yourself can't afford to miss out on late breaking news, in-depth analysis, product reviews and more in each issue of Information Security Magazine...
CVE-2000-0206
The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges...
OpenLinux 2.32.4 RedHat 6.06.1 SCO eServer 2.3 - Denial of Service
OpenLinux 2.32.4 RedHat 6.06.1 SCO eServer 2.3 - Denial of Service // source: https://www.securityfocus.com/bid/1377/info gpm is a program that allows Linux users to use the mouse in virtual consoles. It communicates with a device, /dev/gpmctl, via unix domain STREAM sockets and is vulnerable to ...
kki.inactive.connections.txt
Date: Wed, 28 Apr 1999 13:59:28 +0200 From: Lukasz Luzar To: [email protected] Subject: KKIS.28041999.002.b S E C U R I T Y Contacts KKI Security Team Cracow Commercial Internet http://www.security.kki.pl http://www.kki.pl mailto:[email protected] mailto:[email protected] Informations Raport...