CVE-2008-4589

Heap-based buffer overflow in the tvtumin.sys kernel driver in Lenovo Rescue and Recovery 4.20, including 4.20.0511 and 4.20.0512, allows local users to execute arbitrary code via a long file name...

CVE-2008-4451

The SysInspector AntiStealth driver esiasdrv.sys 3.0.65535.0 in ESET System Analyzer Tool 1.1.1.0 allows local users to execute arbitrary code via a certain METHODNEITHER IOCTL request to \Device\esiasdrv that overwrites a pointer...

CVE-2008-4451

The SysInspector AntiStealth driver esiasdrv.sys 3.0.65535.0 in ESET System Analyzer Tool 1.1.1.0 allows local users to execute arbitrary code via a certain METHODNEITHER IOCTL request to \Device\esiasdrv that overwrites a pointer...

FreeBSD Ports: cyrus-sasl

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2008-3577

Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the "-g" parameter in the ttdmain function. NOTE: it is unlikely that this issue would cross privilege boundaries in typical environments...

Integer overflow

Integer signedness error in the ipsetsrcfilter function in the IP Multicast Filter in uts/common/inet/ip/ipmulti.c in the kernel in Sun Solaris 10 and OpenSolaris before snv92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large val...

CVE-2008-2710

Integer signedness error in the ipsetsrcfilter function in the IP Multicast Filter in uts/common/inet/ip/ipmulti.c in the kernel in Sun Solaris 10 and OpenSolaris before snv92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large val...

CVE-2008-2230

Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...

QEMU Buffer overflow via crafted "net socket listen" option

Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of...

DEBIAN-CVE-2008-2147

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

CVE-2008-2147

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

Open Office.org 2.31 swriter Local Code Execution Exploit

No description provided by source. / Open Office.org 2.31 swriter local code execution exploit. This bug has been patched in OOo 2.4. Spawns calc.exe if successful. [email protected] / include stdio.h include string.h include stdlib.h...

Open Office.org 2.31 - swriter Local Code Execution

Open Office.org 2.31 - swriter Local Code Execution / Open Office.org 2.31 swriter local code execution exploit. This bug has been patched in OOo 2.4. Spawns calc.exe if successful. [email protected] / include include include / win32exec - EXITFUNC=process CMD=calc.exe Size=164...

Open Office.org 2.31 swriter Local Code Execution Exploit

Exploit for unknown platform in category local exploits...

Open Office.org 2.31 - swriter Local Code Execution

/ Open Office.org 2.31 swriter local code execution exploit. This bug has been patched in OOo 2.4. Spawns calc.exe if successful. [email protected] / include include include / win32exec - EXITFUNC=process CMD=calc.exe Size=164 Encoder=PexFnstenvSub http://metasploit.com / unsigned char...

Buffer overflow in moxa driver

Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver moxa.c in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value...

mswork-insecure.txt

BKIS Research 21/04/2008 - Microsoft Work ActiveX Insecure Method Exploit - ====================================================================== Table of Contents Affected Software....................................................1...

CVE-2008-1671

startkdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" probably command-line arguments that cause startkdeinit to send SIGUSR1 signals to other processes...

PT-2008-2682 · Microsoft · Windows Server +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000 SP4 through Vista SP1 Microsoft Windows Server versions 2003 SP1 through 2008 Description: The issue is related to improper input validation in the Windows kernel, allowing local users to execute arbitrary code...

server: insecure permissions on fedora/redhat-idm-console

Red Hat Directory Server 8.0, when running on Red Hat Enterprise Linux, uses insecure permissions for the redhat-idm-console script, which allows local users to execute arbitrary code by modifying the script...