[USG- SA- 2003.001] USG Security Advisory (slocate)

-----BEGIN PGP SIGNED MESSAGE----- USG Security Advisory http://www.usg.org.uk/advisories/2003.001.txt [email protected] USG- SA- 2003.001 24- Jan- 2003 Package: slocate Vulnerability: local buffer overflow Type: local Risk: high, users can gain high privileges in the system. System tested:...

Perl 5.6.0 (on Linux) getpwuid() leave /etc/shadow opened

I'm not sure how serious this issue is, but I think it may cause problems in some environments. The system is Linux, RedHat 7.0, Perl 5.6.0, glibc 2.2.4, latest updates. Recently I run 'lsof' on unprivileged Apache httpd process running modperl application and was pretty surprised to see...

IBM Informix SE 7.25 sqlexec - Local Buffer Overflow (2)

source: https://www.securityfocus.com/bid/4891/info Informix is an enterprise database distributed and maintained by IBM. A buffer overflow vulnerability has been reported for Informix-SE for Linux. The overflow is due to an unbounded string copy of the INFORMIXDIR environment variable to a local...

EZNE.NET Ezboard 2000 - Remote Buffer Overflow

source: https://www.securityfocus.com/bid/4068/info Ezboard 2000 is a web based bulletin board system. It is available for Linux systems. A vulnerability has been reported in some versions of Ezboard. In some CGI programs, user supplied data is written to a staticly sized array with a sprintf cal...

CVE-2000-0867

Kernel logging daemon klogd in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages...

Mandriva Linux Mandrake 7.0 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/1265/info The linux cdrecorder binary is vulnerable to a locally exploitable buffer overflow attack. When installed in a Mandrake 7.0 linux distribution, it is by default setgid "cdburner" which is a group, gid: 80, that is created for the application...

DoS-атака через доменные сокеты UNIX в Linux

: Большой объем информации посланный с помощью sendto через сокет в /dev/log приводит к краху системы...

sshd-1.x-2.x-login.txt

Date: Sat, 23 Jan 1999 17:06:44 -0500 From: KuRuPTioN To: [email protected] Subject: SSH 1.x and 2.x Daemon There seems to be incomplete code in the SSH daemon in both versions 1.2.27 and 2.0.11 only tested. The bug simply allows users who with expired accounts in /etc/shadow to continue to...

CVE-1999-1381

Buffer overflow in dbadmin CGI program 1.0.1 on Linux allows remote attackers to execute arbitrary commands...

Fred N. van Kempen dip 3.3.7 - Local Buffer Overflow (1)

// source: https://www.securityfocus.com/bid/86/info A buffer overflow resides in 'dip-3.3.7o' and derived programs. This is a problem only on systems where 'dip' is installed setuid. The culpable code is an 'sprintf' in line 192 in 'main.c': sprintfbuf, "%s/LCK..%s", PATHLOCKD, nam; -----...