DEBIAN-CVE-2005-1632

Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/...

CVE-2004-2013

The CVE-2004-2013 vulnerability affects Linux kernels 2.4.25 and earlier, caused by an integer overflow in the SCTP_SOCKOPT_DEBUG_NAME SCTP socket option in socket.c. An optlen value of -1 allows kmalloc to allocate 0 bytes, enabling a local attacker to potentially execute arbitrary code. Documen...

CVE-2005-0594

The CVE-2005-0594 issue is a local buffer overflow in Apple Mac OS X Server’s NeST (NetInfo Setup Tool) triggered by an overly long -target command-line argument. The flaw allows a local user to execute arbitrary code with the NeST process’s privileges (typically root). Apple addressed this with ...

DEBIAN-CVE-2005-0073

Buffer overflow in queue.c in a support script for sympa 3.3.3, when running setuid, allows local users to execute arbitrary code...

security flaw

Stack-based buffer overflow in shar in GNU sharutils 4.2.1 allows local users to execute arbitrary code via a long -o command line argument...

DEBIAN-CVE-2005-0016

Buffer overflow in the exporteddisplay function in xatitv in gatos before 0.0.5 allows local users to execute arbitrary code...

CVE-2005-1009

Multiple buffer overflows in BakBone NetVault 6.x and 7.x allow 1 remote attackers to execute arbitrary code via a modified computer name and length that leads to a heap-based buffer overflow, or 2 local users to execute arbitrary code via a long Name entry in the configure.cfg file...

CVE-2002-1607

The CVE-2002-1607 entry describes a local-privilege escalation vulnerability in HP Tru64 UNIX: a buffer overflow in the ypmatch component affects Tru64 UNIX versions 5.1a, 5.1, 5.0a, 4.0g, and 4.0f, which could allow a local user to execute arbitrary code. The available sources confirm the affect...

CVE-2002-1602

CVE-2002-1602 describes a buffer overflow in the Braille module for GNU Screen 3.9.11 when HAVE_BRAILLE is defined. This vulnerability could allow local users to execute arbitrary code due to the overflow in the Braille support path. The affected component is the Braille module within GNU Screen;...

CVE-2005-0098

Multiple buffer overflows in the SDL port of abuse abuse-SDL before 2.00 allow local users to execute arbitrary code via the command line...

cutenews.txt

===================================================== cutenews 1.3.6: Remote XSS && Local Code Execution ===================================================== FraMe - frame at kernelpanik.org http://www.kernelpanik.org ===================================================== cutenews es un script...

CVE-2005-0504

Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver moxa.c in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value...

CVE-2005-0444

VMware before 4.5.2.8848-r5 searches for gdk-pixbuf shared libraries using a path that includes the rrdharan world-writable temporary directory, which allows local users to execute arbitrary code...

CVE-2005-0262

Buffer overflow in iplvaryon on AIX 5.1, 5.2, and 5.3 allows local users to execute arbitrary code via a long -d argument...

CVE-2004-0982

Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ at sign in a URL...

CVE-2004-1131

Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments...

CVE-2003-1057

Unknown vulnerability in CDE Print Viewer dtprintinfo for Sun Solaris 2.6 through 9 may allow local users to execute arbitrary code...

security flaw

Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to execute arbitrary code by setting the PERLIODEBUG variable and executing a Perl script whose full pathname contains a long directory tree...

CVE-2005-0240

Format string vulnerability in chdev on IBM AIX 5.2 allows local users to execute arbitrary code via format string specifiers in a command line argument, which is not properly handled when printing an error message...

DEBIAN-CVE-2005-0156

Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to execute arbitrary code by setting the PERLIODEBUG variable and executing a Perl script whose full pathname contains a long directory tree...