1402 matches found
Solaris 2.5.1 - kcms Local Buffer Overflow (2)
Solaris 2.5.1 - kcms Local Buffer Overflow 2 / source: https://www.securityfocus.com/bid/452/info There is an unchecked sprintf call in the versions of /usr/openwin/bin/kcmsconfigure shipped with solaris 2.5, 2.5.1 and 2.6. Unfortunately, kcmsconfigure is installed setuid root, making it possible...
Solaris 2.5.1 - kcms Local Buffer Overflow (1)
Solaris 2.5.1 - kcms Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/452/info There is an unchecked sprintf call in the versions of /usr/openwin/bin/kcmsconfigure shipped with solaris 2.5, 2.5.1 and 2.6. Unfortunately, kcmsconfigure is installed setuid root, making it possibl...
Solaris 2.5.1 - 'kcms' Local Buffer Overflow (2)
/ source: https://www.securityfocus.com/bid/452/info There is an unchecked sprintf call in the versions of /usr/openwin/bin/kcmsconfigure shipped with solaris 2.5, 2.5.1 and 2.6. Unfortunately, kcmsconfigure is installed setuid root, making it possible for an attacker to overflow the buffer and...
CVE-1999-0139
Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access...
Solaris 2.5.1 - License Manager
Solaris 2.5.1 - License Manager source: https://www.securityfocus.com/bid/461/info The Solaris License Manager that ships with versions 2.5.1 and 2.6 is vulnerable to multiple symlink attacks. License Manager creates lockfiles owned by root and set mode 666 which it writes to regularily. It follo...
Linux libc 5.3.125.4 (RedHat Linux 4.0) - vsyslog() Local Buffer Overflow
Linux libc 5.3.125.4 RedHat Linux 4.0 - vsyslog Local Buffer Overflow // source: https://www.securityfocus.com/bid/475/info A buffer overflow is present in linux libc 5.4.32 and below that allows a user to obtain local root access under some conditions. The overflow is in the function vsyslog and...
Exim Buffer 1.6.21.6.51 - Local Overflow
Exim Buffer 1.6.21.6.51 - Local Overflow / source: https://www.securityfocus.com/bid/1859/info A potential local root yielding buffer overflow vulnerability exists in Exim mail client version 1.62. A buffer used in processing filenames of message attachments can be overflowed by a...
Exim Buffer 1.6.2/1.6.51 - Local Overflow
/ source: https://www.securityfocus.com/bid/1859/info A potential local root yielding buffer overflow vulnerability exists in Exim mail client version 1.62. A buffer used in processing filenames of message attachments can be overflowed by a maliciously-formed filename. As a result, the excessive...
Solaris 5.5.1 X11R6.3 xterm (-xrm) Local Root Exploit
Exploit for solaris platform in category local exploits ===================================================== Solaris 5.5.1 X11R6.3 xterm -xrm Local Root Exploit ===================================================== / X11R6.3 xterm exploit for solaris 5.5.1 by DCRH 28/5/97 / include include inclu...
IRIX 5.3 /usr/sbin/iwsh Local Root Buffer Overflow
Exploit for irix platform in category local exploits ================================================== IRIX 5.3 /usr/sbin/iwsh Local Root Buffer Overflow ================================================== / /usr/sbin/iwsh.c exploit by DCRH 27/5/97 Tested on: R3000 Indigo Irix 5.3 R4400 Indy Irix...
AIX lquerylv Local Root Buffer Overflow Exploit
Exploit for aix platform in category local exploits =============================================== AIX lquerylv Local Root Buffer Overflow Exploit =============================================== include include include char prog100="/usr/sbin/lquerylv"; char prog230="lquerylv"; extern int execv;...
BSDOS 2.13.0 Larry Wall Perl 5.0 03 RedHat 4.04.1 SGI Freeware 1.02.0 SUIDPerl - Local Overflow (2)
BSDOS 2.13.0 Larry Wall Perl 5.0 03 RedHat 4.04.1 SGI Freeware 1.02.0 SUIDPerl - Local Overflow 2 source: https://www.securityfocus.com/bid/708/info Several buffer overflows were found in the Perl helper application 'suidperl' or 'sperl'. When this program is installed setuid root the overflows m...
BSDOS 2.13.0 Larry Wall Perl 5.0 03 RedHat 4.04.1 SGI Freeware 1.02.0 SUIDPerl - Local Overflow (1)
BSDOS 2.13.0 Larry Wall Perl 5.0 03 RedHat 4.04.1 SGI Freeware 1.02.0 SUIDPerl - Local Overflow 1 source: https://www.securityfocus.com/bid/708/info Several buffer overflows were found in the Perl helper application 'suidperl' or 'sperl'. When this program is installed setuid root the overflows m...
BSD/OS 2.1/3.0 / Larry Wall Perl 5.0 03 / RedHat 4.0/4.1 / SGI Freeware 1.0/2.0 SUIDPerl - Local Overflow (2)
source: https://www.securityfocus.com/bid/708/info Several buffer overflows were found in the Perl helper application 'suidperl' or 'sperl'. When this program is installed setuid root the overflows may lead to a local root compromise...
Slackware Linux 3.1 - usrX11binSuperProbe Local Buffer Overflow
Slackware Linux 3.1 - usrX11binSuperProbe Local Buffer Overflow / source: https://www.securityfocus.com/bid/364/info superprobe is an program supplied with XFree86 that helps determine video hardware. It is shipped with Slackware Linux 3.1 and is installed setuid root. There is an exploitable...
Slackware Linux 3.1 - '/usr/X11/bin/SuperProbe' Local Buffer Overflow
/ source: https://www.securityfocus.com/bid/364/info superprobe is an program supplied with XFree86 that helps determine video hardware. It is shipped with Slackware Linux 3.1 and is installed setuid root. There is an exploitable strcpy buffer overflow in the TestChip function which allows for a...
BSD and Linux lpr Command Local Root Exploit
Exploit for linux platform in category local exploits ============================================ BSD and Linux lpr Command Local Root Exploit ============================================ -------------------------------------- linuxlprexploit.c ---------- include include include define...
Xt Library Local Root Command Execution Exploit
Exploit for linux platform in category local exploits =============================================== Xt Library Local Root Command Execution Exploit =============================================== include include include define DEFAULTOFFSET 0 define BUFFERSIZE 1491 long getespvoid asm"movl...
Linux & BSD umount Local Root Exploit
Exploit for multiple platform in category local exploits ===================================== Linux & BSD umount Local Root Exploit ===================================== / Reminder - Be sure to fix the includes /str0ke / -------------------------------------- linuxumountexploit.c ----------...
sudo.bin NLSPATH Local Root Exploit
Exploit for linux platform in category local exploits =================================== sudo.bin NLSPATH Local Root Exploit =================================== include include include include include define PATHSUDO "/usr/bin/sudo.bin" define BUFFERSIZE 1024 define DEFAULTOFFSET 50 ulong getesp...