771 matches found
AlsaPlayer 0.99.71 - Local Buffer Overflow
// source: https://www.securityfocus.com/bid/5767/info Alsaplayer is a PCM player that utilizes the ALSA libraries and drivers. It is availabe for Linux and Unix platforms. A vulnerability has been discovered in Alsaplayer. By specifying an overly long "add-on path", it is possible for an attacke...
PT-2002-1858 · Cvs · Cvs
Name of the Vulnerable Software and Affected Versions: CVSD versions prior to 1.11.2 Description: The issue is related to an off-by-one overflow in the CVS PreservePermissions of rcs.c, which allows local users to execute arbitrary code. Recommendations: For versions prior to 1.11.2, update to...
security flaw
Off-by-one buffer overflow in the sslcompatdirective function, as called by the rewritecommand hook for modssl Apache module 2.8.9 and earlier, allows local users to execute arbitrary code as the Apache server user via .htaccess files with long entries...
Повышение привелегий через scoadminreg.cgi в Unixware (privelege escalation)
Суид-приложение scoadminreg.cgi может быть запущено локально...
CVE-2001-0944
DDE in mIRC allows local users to launch applications under another user's account via a DDE message that executes a command, which may be executed by the other user's process...
Progress Database 8.39.1 - Multiple Buffer Overflows
Progress Database 8.39.1 - Multiple Buffer Overflows source: https://www.securityfocus.com/bid/3404/info Progress is a commercial database for Microsoft Windows and Unix systems. Locally exploitable buffer overflows are prevalent throughout many Progress Database programs. This is largely due to...
Solaris 7/8 - 'kcms_configure' Command-Line Buffer Overflow (1)
// source: https://www.securityfocus.com/bid/2558/info The Kodak Color Management System, or KCMS, is a package that ships with workstation installations of Solaris 7 and 8. kcmsconfigure, a part of KCMS, is vulnerable to a buffer overflow if it is passed an overly long string on the command-line...
CVE-2000-0340
Affected software: Gnomelib on SuSE Linux 6.3. Vulnerability: buffer overflow in Gnomelib that allows local users to execute arbitrary commands via the DISPLAY environment variable. Root cause: buffer overflow; Impact: local arbitrary command execution. Remediation: no patch/version details provi...
CVE-2000-0388
FreeBSD libmytinfo buffer overflow (CVE-2000-0388) allows local users to execute commands by supplying a long TERMCAP environment variable. The PT-1990-1010 entry confirms this issue in FreeBSD libmytinfo; however, the connected PTSecurity note does not specify affected versions or a fixed versio...
CVE-1999-0038
CVE-1999-0038 describes a buffer overflow in the xlock program that allows local users to execute commands as root. The connected sources (Red Hat CVE entry, PT Security listing, and multiple feeds) corroborate a local-privilege escalation due to a buffer overflow in xlock, but the documents do n...
BEA Weblogic Multiple Buffer Overflow Vulnerabilities
Advisory ID Internal CORE-081300 Bugtraq ID: 1570 CVE Name: CVE-2000-0681 Title: BEA Weblogic Multiple Buffer Overflow Vulnerabilities Class: Boundary Error Condition Buffer Overflow Remotely Exploitable: Yes Locally Exploitable: Yes Vulnerability Description: BEA Systems Inc. Weblogic server...