1369 matches found
[EXPL] ATM on Linux Exploit Code Release (les, local)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion In the US? Contact Beyond Security at our new California office housewarming rates on automated network vulnerability scanning. We also...
[SECURITY] [DSA 292-2] New mime-support packages fix temporary file race conditions
-------------------------------------------------------------------------- Debian Security Advisory DSA 292-2 [email protected] http://www.debian.org/security/ Martin Schulze April 23rd, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 286-1] New gs-common packages fix insecure temporary file creation
-------------------------------------------------------------------------- Debian Security Advisory DSA 286-1 [email protected] http://www.debian.org/security/ Martin Schulze April 14th, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 285-1] New lprng packages fix insecure temporary file creation
-------------------------------------------------------------------------- Debian Security Advisory DSA 285-1 [email protected] http://www.debian.org/security/ Martin Schulze April 14th, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 285-1] New lprng packages fix insecure temporary file creation
-------------------------------------------------------------------------- Debian Security Advisory DSA 285-1 [email protected] http://www.debian.org/security/ Martin Schulze April 14th, 2003 http://www.debian.org/security/faq -...
CVE-2002-0246
The CVE-2002-0246 issue affects UnixWare 7.1.1, where a format string vulnerability in the message catalog library functions can be exploited locally by manipulating the LC_MESSAGE environment variable. This could allow a local attacker to read other message catalogs containing format strings fro...
[SECURITY] [DSA 256-1] New mhc-utils packages fix predictable temporary file
-------------------------------------------------------------------------- Debian Security Advisory DSA 256-1 [email protected] http://www.debian.org/security/ Martin Schulze February 28th, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 256-1] New mhc-utils packages fix predictable temporary file
-------------------------------------------------------------------------- Debian Security Advisory DSA 256-1 [email protected] http://www.debian.org/security/ Martin Schulze February 28th, 2003 http://www.debian.org/security/faq -...
BitKeeper remote shell command execution/local vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: BitKeeper remote shell command execution/local vulnerability Product: BitKeeper http://www.bitkeeper.com Version: 3.0.x Author: Maurycy Prodeus [email protected] Date: 11 November 2002 Issue: - ------ BitKeeper is a source management software. It...
[SECURITY] [DSA 192-2] New html2ps packages correct fix against arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 192-2 [email protected] http://www.debian.org/security/ Martin Schulze December 6th, 2002 ://www.debian.org/security/faq -...
[SECURITY] [DSA 198-1] New nullmailer packages fix local denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 198-1 [email protected] http://www.debian.org/security/ Martin Schulze November 18th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA 198-1] New nullmailer packages fix local denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 198-1 [email protected] http://www.debian.org/security/ Martin Schulze November 18th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA 192-1] New html2ps packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 192-1 [email protected] http://www.debian.org/security/ Martin Schulze November 8th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA 192-1] New html2ps packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 192-1 [email protected] http://www.debian.org/security/ Martin Schulze November 8th, 2002 http://www.debian.org/security/faq -...
[security bulletin] SSRT2371 HP OpenVMS Potential POP server local vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SECURITY BULLETIN REVISION: 0 Title: SSRT2371 HP OpenVMS Potential POP server local vulnerability NOTICE: There are no restrictions for distribution of this Bulletin provided that it remains complete and intact. RELEASE DATE: September 2002 SEVERITY:...
[SECURITY] [DSA 144-1] New wwwoffle packages fix security related problems
-------------------------------------------------------------------------- Debian Security Advisory DSA 144-1 [email protected] http://www.debian.org/security/ Martin Schulze August 6th, 2002 - -------------------------------------------------------------------------- Package : wwwoffle...
Informix SE-7.25 /lib/sqlexec Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Title: Local Vulnerability in Informix SE-7.25 Date: 21-04-2002 Platform: Only tested in Linux but can be exported to others. Impact: Users with exec perm over /lib/sqlexec can obtain euid=0 Author: Juan Manuel Pascual Escriba [email protected] Status: Vendor...
Instant Web Mail additional POP3 commands and mail headers
Instant Web Mail additional POP3 commands and mail headers PROGRAM: Instant Web Mail VENDOR: Jonas Koch Bentzen [email protected] HOMEPAGE: http://understroem.dk/instantwebmail/ VULNERABLE VERSIONS: 0.59 possibly earlier versions too TYPE: remote/local SEVERITY: medium DESCRIPTION: "Instant We...
[SECURITY] [DSA 107-1] New jgroff packages fix printf format problem
-------------------------------------------------------------------------- Debian Security Advisory DSA 107-1 [email protected] http://www.debian.org/security/ Martin Schulze January 30th, 2002 - -------------------------------------------------------------------------- Package : jgroff...
Buffer overflow vulnerability in pwck command line utility
Overview The CERT/CC has received a public report of a local buffer overflow vulnerability in the pwck utility. Description The pwck utility performs syntax checking of /etc/password and /etc/shadow password information files. This utility contains a buffer overflow vulnerability in the section o...