MicroP 0.1.1.1600 - (.mppl) Local Stack Based Buffer Overflow

No description provided by source. !/usr/bin/env ruby Exploit Title:MicroP.mppl Local Stack Based Buffer Overflow Author:Necmettin COSKUN = twitter.com/babayarisi Blog : http://www.ncoskun.com http://www.grisapka.org Vendor :http://sourceforge.net/projects/microp/ Software...

FreeBSD 3.3 angband Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/840/info The version angband shipped with FreeBSD 3.3-RELEASE is vulnerable to a local buffer overflow attack. Since it is setgid games, a compromise of files and directories owned by group games is possible. / FreeBSD 3....

IBM DB2 db2govd Command Line Argument Local Overflow

No description provided by source. source: http://www.securityfocus.com/bid/8990/info IBM DB2 has been reported to be prone to multiple buffer overflow vulnerabilities that present themselves in binaries that are shipped with DB2. The vulnerabilities are likely caused due to a lack of sufficient...

HP-UX 10.x stmkfont Alternate Typeface Library Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/6836/info A buffer overflow vulnerability has been reported in the stmkfont utility shipped with HP-UX systems. The problem occurs due to insufficient bounds checking on user-suplied data to the alternate typeface library...

Martin Stover Mars NWE 0.99 Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/617/info There are several buffer overflows in the setuid root components of the Mars Netware Emulator package. They allow for a local root compromise through the overflowing of buffers without bounds checking. It is to b...

SoftiaCom WMailserver 1.0 - Local Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14212/info SoftiaCom WMailserver is prone to a local information disclosure vulnerability. The application stores passwords in the windows registry. A local attacker may exploit this issue to disclose potentially sensitiv...

Linux Kernel <= 2.4.23, <= 2.6.0 - "do_mremap" Local Proof of Concept

No description provided by source. / Proof-of-concept exploit code for domremap Copyright C 2004 Christophe Devine and Julien Tinnes This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software...

Notepad++ 5.4.5 - Local .C/CPP Stack Buffer Overflow PoC (0day)

No description provided by source. / 0dayNotepad++ 5.4.5 Local .C/CPP Stack Buffer Overflow POC by fl0 fl0w / / LATEST FIXES Notepad++ v5.4.5 fixed bugs from v5.4.4 : 1. Fix plugins shortcuts not working bug. 2. Fix the tooltip on toolbar display bug for the plugins icons. 3. Fix a crash that was...

Ubuntu: Security Advisory (USN-2230-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2014-0470

super.c in Super 3.30.0 does not check the return value of the setuid function when the -F flag is set, which allows local users to gain privileges via unspecified vectors, aka an RLIMITNPROC attack...

UBUNTU-CVE-2014-0470

super.c in Super 3.30.0 does not check the return value of the setuid function when the -F flag is set, which allows local users to gain privileges via unspecified vectors, aka an RLIMITNPROC attack...

dompdf 0.6.0 Arbitrary File Read

Vulnerability title: Arbitrary file read in dompdf CVE: CVE-2014-2383 Vendor: dompdf Product: dompdf Affected version: v0.6.0 Fixed version: v0.6.1 partial fix Reported by: Alejo Murillo Moyas Details: An arbitrary file read vulnerability is present on dompdf.php file that allows remote or local...

Ubuntu 12.04 LTS / 12.10 / 13.10 : icedtea-web vulnerability (USN-2131-1)

Michael Scherer discovered that IcedTea Web created temporary directories in an unsafe fashion. A local attacker could possibly use this issue to obtain or modify sensitive information from other local user sessions. Note that Tenable Network Security has extracted the preceding description block...

NVIDIA Graphics Driver Unspecified Privilege Escalation (Windows)

The remote host has a driver installed that is affected by an unspecified, local privilege escalation vulnerability. Using the vulnerability, it may be possible for a local attacker to gain complete control of the system. C Tenable Network Security, Inc. include"compat.inc"; if description...

Design/Logic Flaw

security/MemberLoginForm.php in SilverStripe 3.0.3 supports credentials in a GET request, which allows remote or local attackers to obtain sensitive information by reading web-server access logs, web-server Referer logs, or the browser history, a similar vulnerability to CVE-2013-2653...

OpenJDK: exclusive port binding (Networking, 7170730)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous...

USN-1953-1: polkit vulnerability

It was discovered that polkit didn't allow applications to use the pkcheck tool in a way which prevented a race condition in the UID lookup. A local attacker could use this flaw to possibly escalate privileges...

Linux Kernel 'perf_event.c'本地权限提升漏洞

Linux Kernel是一款开源的操作系统 Linux Kernel 'perfevent.c'存在一个安全漏洞，允许本地攻击者利用漏洞提升权限 0 Linux Kernel 3.11-rc4 厂商解决方案 用户可参考如下厂商提供的安全公告获得补丁信息： https://lkml.org/lkml/2013/8/7/259...

CVE-2013-4242

GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka Flush+Reload...

Oracle Linux 5 : kernel (ELSA-2009-0326)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-0326 advisory. - net fix icmpsend and icmpv6send host re-lookup code Jiri Pirko 489253 439670 CVE-2009-0778 - net skfpioctl inverted logic flaw Eugene Teo 486539 4865...