CVE-2002-0817

Format string vulnerability in super for Linux allows local users to gain root privileges via a long command line argument...

Important: Red Hat Security Advisory: : Updated 2.4 kernel fixes vulnerability

Updated kernel packages for Red Hat Linux 7.1, 7.2, 7.3, and 8.0 are now available. These packages fix a ptrace-related vulnerability that can lead to elevated root privileges. Updated 30 March 2003 Updated kernel packages for Red Hat Linux 7.2 ia64 have been added. Updated 28 May 2003 Replacemen...

Important: Red Hat Security Advisory: : Updated PostgreSQL packages fix security issues and bugs

Updated PostgreSQL packages are available for Red Hat Linux 7.3 and 8.0. These packages correct several security and other bugs. A separate advisory deals with updated PostgreSQL packages for Red Hat Linux 6.2, 7, 7.1, and 7.2. PostgreSQL is an advanced Object-Relational database management syste...

zkfingerd 0.9.1 - 'say()' Format String

// source: https://www.securityfocus.com/bid/6404/info zkfingerd is prone to a format string vulnerability. The affected function does not perform sufficient checks when displaying user-supplied input. It is possible to corrupt memory by passing format strings through the vulnerable function. Thi...

vpopmail CGIapps vadddomain multiple vulnerabilities

Centaura Technologies Security Research Lab Advisory Product Name: vpopmail-CGIApps Systems: Linux/OpenBSD/FreeBSD/NetBSD Severity: High Risk Remote: Yes Category: Insuficient input checking Vendor URL: http://diario.buscadoc.org/index.php?topic=Programas Advisory Author: Ignacio Vazquez Advisory...

SSA-2002-0731201128

The Slackware Linux Project: Slackware Security Advisories Slackware Security Advisories News Security Advisories /...

Protection bypass in linux

setgid call doesn't change saved gid...

WU-IMAP 2000.287(1-2) Remote Exploit

Exploit for linux platform in category remote exploits ==================================== WU-IMAP 2000.2871-2 Remote Exploit ==================================== / 7350owex- x86/linux WU-IMAP 2000.2871-2 remote exploit TESO CONFIDENTIAL - SOURCE MATERIALS This is unpublished proprietary source...

CVE-2002-0378

The default configuration of LPRng print spooler in Red Hat Linux 7.0 through 7.3, Mandrake 8.1 and 8.2, and other operating systems, accepts print jobs from arbitrary remote hosts...

IBM Informix SE 7.25 sqlexec - Local Buffer Overflow (1)

IBM Informix SE 7.25 sqlexec - Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/4891/info Informix is an enterprise database distributed and maintained by IBM. A buffer overflow vulnerability has been reported for Informix-SE for Linux. The overflow is due to an unbounded stri...

[RHSA-2002:070-06] Updated mod_python packages available

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated modpython packages available Advisory ID: RHSA-2002:070-06 Issue date: 2002-04-22 Updated on: 2002-05-02 Product: Red Hat Linux Keywords: modpython publisher imported...

Ecartis 1.0.00.129 a Listar - Multiple Local Buffer Overflow Vulnerabilities (1)

Ecartis 1.0.00.129 a Listar - Multiple Local Buffer Overflow Vulnerabilities 1 // source: https://www.securityfocus.com/bid/4271/info Ecartis is the new name for the Listar software product. Listar is a mailing list management package for Linux, BSD, and other Unix like operating systems. Multipl...

codeblue remote root

/ Demonstration linux-x86 remote root against codeblue v1.1 from file header Otherwise it's known as CodeBlue v4 This is a rather trivial to exploit... From getsmtpreply "We'll loop infinately, receiving 1 byte at a time until we receive a carriage return or line-feed character, signifying the en...

[ARL02-A02] DCP-Portal Root Path Disclosure Vulnerability

+/--------------- ALPER Research Labs -----/--------/+ +/--------------- Security Advisory ----/---------/+ +/--------------- ID: ARL02-A02 ---/----------/+ +/--------------- [email protected] --/-----------/+ Advisory Information -------------------- Name : DCP-Portal Root Path Disclosure...

Chinput 3.0 - Environment Variable Buffer Overflow

// source: https://www.securityfocus.com/bid/3896/info Chinput is an input server designed for Chinese characters. It is available on Linux and other Unix based systems. Chinput appears to be installed suid root by default. A vulnerability exists in Chinput. A local user with an extremely long HO...

Sudo 1.6.3 - Unclean Environment Variable Privilege Escalation

Sudo 1.6.3 - Unclean Environment Variable Privilege Escalation source: https://www.securityfocus.com/bid/3871/info Sudo is a freely available, open source permissions management software package available for the Linux and Unix operating systems. It is maintained by Todd C. Miller. Under some...

Sudo 1.6.3 - Unclean Environment Variable Privilege Escalation

source: https://www.securityfocus.com/bid/3871/info Sudo is a freely available, open source permissions management software package available for the Linux and Unix operating systems. It is maintained by Todd C. Miller. Under some circumstances, sudo does not properly sanitize the environment it...

CDRDAO 1.1.x - Home Directory Configuration File Symbolic Link (3)

source: https://www.securityfocus.com/bid/3865/info CDRDAO is a freely available, open source CD recording software package available for the Unix and Linux Operating Systems. It is maintained by Andreas Mueller. When CDRDAO saves it's configuration to the .cdrdao file in a user's home directory,...

Проблемы с encrypted loop device под linux (data injection)

Данные предохраняются от несанкционированного доступа, но возможно несанкционированное добавление данных...

Sudo 1.6.x - Password Prompt Heap Overflow

Sudo 1.6.x - Password Prompt Heap Overflow // source: https://www.securityfocus.com/bid/4593/info Sudo is a widely used Linux/Unix utility allow users to securely run commands as other users. Sudo is vulnerable to a heap overflow condition related to it's customizable password prompt feature. The...