4826 matches found
IRIX /dev/ipfilter Denial of Service vulnerability
-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title: /dev/ipfilter Denial of Service vulnerability Number: 20020408-01-I Date: April 30, 2002 Reference: CAN-2002-0172 - ----------------------- - --- Issue Specifics --- - ----------------------- SGI has determined that the default...
CVE-2002-0041
CVE-2002-0041 affects SGI Mail for IRIX 6.5 through 6.5.15f (and possibly earlier) and is triggered when the -R option is used, allowing local and remote attackers to cause a core dump. The available sources identify the affected software as Mail for SGI IRIX and describe the vulnerability as a f...
Immunity Canvas: CACHEFSD_LPD
Name| cachefsdlpd ---|--- CVE| CVE-2002-0084 Exploit Pack| CANVAS Description| cachefsd .cfsmnt File Stack Overflow Notes| References: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F44309 CVE Name: CVE-2002-0084 VENDOR: Sun Development Notes: This vulnerability had been marked only as ...
CVE-2001-1148
CVE-2001-1148: Multiple buffer overflows in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (atcronsh, auditsh, authsh, backupsh, lpsh, sysadm.menu, or termsh); affected software is SCO OpenServer components used by scoadmin/sysadmsh....
CVE-1999-1507
Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash...
CVE-2001-0595
The CVE-2001-0595 issue affects Sun’s KCMS component on Solaris 7/8, where a buffer overflow in the kcsSUNWIOsolf.so library allows a local user to execute arbitrary commands via the KCMS_PROFILES environment variable (demonstrated by kcms_configure). OpenVAS entries describe the KCMS Profile Ser...
CVE-2001-0628
Summary : CVE-2001-0628 affects Microsoft Word 2000. The issue: Word 2000 does not check AutoRecovery (.asd) files for macros, allowing a local attacker to execute arbitrary macros with the Word user’s ID. What’s affected : Word 2000; vulnerability details describe macro execution via unverified ...
CVE-2001-0586
Affected software: Trend Micro ScanMail for Exchange 3.5 Evaluation. Vulnerability: local attacker can recover administrative credentials by exploiting unprotected registry keys and weakly encrypted passwords. Root cause: insecure credential storage in registry and weak encryption. Impact: potent...
CVE-2001-0565
CVE-2001-0565 affects Solaris mailx (/usr/bin/mailx). A buffer overflow via a long -F option could let a local attacker gain privileges (mail group). Public sources confirm impact is local privilege escalation. Remediation: Solaris update 110957-02 is available (OpenVAS entries). CERT/US-CERT gui...
CVE-2001-0567
The CVE concerns Zope 2.3.2 and earlier, where a local attacker can gain additional privileges by altering ZClass permission mappings for objects and methods within a ZClass. Public sources in connected documents corroborate that the vulnerability is tied to Zope’s ZClass permission mappings and ...
CVE-2001-0559
The CVE-2001-0559 issue affects Vixie cron up to 3.0.1. crontab fails to drop privileges correctly after a failed parsing of a modification operation, potentially enabling a local attacker to gain additional privileges when an editor is invoked to fix the error. Publicly documented references (De...
CVE-2001-0682
ZoneAlarm and ZoneAlarm Pro are affected by a local denial-of-service vulnerability wherein running a trojan can initialize a ZoneAlarm mutex object, preventing ZoneAlarm from starting. Affected product: ZoneAlarm / ZoneAlarm Pro (exact versions not specified in available sources).Root cause: ini...
CVE-2001-0547
CVE-2001-0547 describes a memory leak in the proxy service of Microsoft Internet Security and Acceleration (ISA) Server 2000 that allows local attackers to cause a denial of service through resource exhaustion. The affected product is ISA Server 2000 (proxy service component); the underlying caus...
CVE-2001-0594
kcmsconfigure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument...
CVE-2001-0990
Inter7 vpopmail 4.10.35 and earlier, when using the MySQL module, stores authentication data in cleartext inside the libvpopmail.a library. This enables local users to recover MySQL credentials by inspecting vpopmail programs linked against the library. Affected component: vpopmail (MySQL module)...
nn45-overflow.txt
This is a multi-part message in MIME format. ------=NextPart000001701BF4C70.00D57320 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Netscape Navigator/Communicator 4.5 buffer overflow advisory...
Sudo 1.6.x - Password Prompt Heap Overflow
Sudo 1.6.x - Password Prompt Heap Overflow // source: https://www.securityfocus.com/bid/4593/info Sudo is a widely used Linux/Unix utility allow users to securely run commands as other users. Sudo is vulnerable to a heap overflow condition related to it's customizable password prompt feature. The...
Sudo 1.6.x - Password Prompt Heap Overflow
// source: https://www.securityfocus.com/bid/4593/info Sudo is a widely used Linux/Unix utility allow users to securely run commands as other users. Sudo is vulnerable to a heap overflow condition related to it's customizable password prompt feature. The nature of the sudo utility requires that i...
Snes9x 1.3 - Local Buffer Overflow
Snes9x 1.3 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/3437/info Snes9x is a free Super Nintendo emulator that runs on a number of platforms. Snes9x is prone to a buffer overflow. This is due to improper bounds checking of rom names. In this case, 4089 characters are...
CVE-2001-0782
KDE ktvision 0.1.1-271 and earlier allows local attackers to gain root privileges via a symlink attack on a user configuration file...