1283 matches found
CVE-1999-0948
CVE-1999-0948 describes a buffer overflow in the uum program for the Canna input system that allows local users to gain root privileges. This is corroborated by multiple sources (NVD, CVE List, Red Hat). The connected documents do not specify affected versions, exact root cause details beyond “bu...
CVE-1999-0979
The vulnerability CVE-1999-0979 affects the SCO UnixWare privileged process system. Local users can gain root privileges by using a debugger (e.g., gdb) to insert traps into _init before the privileged process runs. The issue is triggered through manipulating the startup path of the privileged in...
IBM Network Station Manager 2.0 R1 - Race Condition
// source: https://www.securityfocus.com/bid/900/info IBM's Network Station Manager is a client/server application which facilitates management for IBM Network Stations. It is possible to locally gain root priviliges on hosts running the NetStation daemon. NetStation which runs as root creates...
CVE-1999-0866
Buffer overflow in UnixWare xauto program allows local users to gain root privilege...
CVE-1999-0312
HP ypbind is identified as the affected software for CVE-1999-0312. The description states that attackers with root privileges can modify NIS data via ypbind. Connected documents reiterate the same vulnerability, but no concrete fix version or remediation is provided in the supplied materials. Th...
CVE-1999-0025
The vulnerability CVE-1999-0025 affects SGI IRIX df: a buffer/stack overflow caused by insufficient bounds checking on directory or block-device arguments allows a non-privileged process to trigger code execution with root privileges because df is setuid root. CERT/Red Hat ENISA notes describe lo...
CVE-1999-0028
CVE-1999-0028: Local privilege escalation on SGI IRIX via a buffer overflow in /usr/lib/iaf/scheme (login) affecting IRIX 6.5.x up to 6.5.20. Exploitation reportedly requires certain environment variables and a local account to gain root privileges; the advisory notes it is not the same issue as ...
rxvt.sh
There is a major security hole in rxvt, a terminal emulator for X, when it is run on systems suid root, as is required on many configurations in order to write to the utmp file. It is obvious from the code that this program was not written to be run suid root, its a pity that sysadmins that insta...
solaris-lpstat-bof.txt
Date: Wed, 27 Jan 1999 16:53:51 +0100 From: Anthony C . Zboralski To: [email protected] Subject: HERT Advisory 001 Buffer overflow in Solaris /usr/bin/lpstat -----BEGIN PGP SIGNED MESSAGE----- - ------------------------------------------------------------- HERT - Hacker Emergency Response Team...
AIX 4.1/4.2 - 'pdnsd' Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/3237/info The Source Code Browser's Program Database Name Server Daemon pdnsd component of the C Set ++ compiler for AIX contains a remotely exploitable buffer overflow. This vulnerability allows local or remote attackers to compromise root privileges ...
CVE-1999-0420
umapfs allows local users to gain root privileges by changing their uid through a malicious mountumap program...
PT-1999-1091 · Digital · Digital Unix
Name of the Vulnerable Software and Affected Versions: Digital Unix affected versions not specified Description: The issue is related to a buffer overflow in the Digital Unix Networker program nsralist, which allows local users to obtain root privilege. Recommendations: At the moment, there is no...
CVE-1999-0405
A buffer overflow in lsof allows local users to obtain root privilege...
BNC 2.2.42.4.62.4.8 - IRC Proxy Buffer Overflow (1)
BNC 2.2.42.4.62.4.8 - IRC Proxy Buffer Overflow 1 / source: https://www.securityfocus.com/bid/1927/info BNC's IRC Proxy is used as a gateway to an IRC server. A buffer stores a username which arguments the program's USER command. User-supplied input to this buffer is improperly checked for length...
BNC 2.2.42.4.62.4.8 - IRC Proxy Buffer Overflow (2)
BNC 2.2.42.4.62.4.8 - IRC Proxy Buffer Overflow 2 / source: https://www.securityfocus.com/bid/1927/info BNC's IRC Proxy is used as a gateway to an IRC server. A buffer stores a username which arguments the program's USER command. User-supplied input to this buffer is improperly checked for length...
BNC 2.2.4/2.4.6/2.4.8 - IRC Proxy Buffer Overflow (2)
/ source: https://www.securityfocus.com/bid/1927/info BNC's IRC Proxy is used as a gateway to an IRC server. A buffer stores a username which arguments the program's USER command. User-supplied input to this buffer is improperly checked for length. As a result, the excessive data copied onto the...
BNC 2.2.4/2.4.6/2.4.8 - IRC Proxy Buffer Overflow (1)
/ source: https://www.securityfocus.com/bid/1927/info BNC's IRC Proxy is used as a gateway to an IRC server. A buffer stores a username which arguments the program's USER command. User-supplied input to this buffer is improperly checked for length. As a result, the excessive data copied onto the...
Netscape Messaging Server 3.55 University of Washington imapd 10.234 - Remote Buffer Overflow
Netscape Messaging Server 3.55 University of Washington imapd 10.234 - Remote Buffer Overflow // source: https://www.securityfocus.com/bid/130/info A vulnerability exists in certain imapd implementations that allow an attacker to execute arbitrary code remotely. In certain instances, the code to ...
Netscape Messaging Server 3.55 & University of Washington imapd 10.234 - Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/130/info A vulnerability exists in certain imapd implementations that allow an attacker to execute arbitrary code remotely. In certain instances, the code to be executed will be run with root privilege. Imap supports a command 'AUTHENTICATE' which...
FreeBSD-SA-97:04.procfs
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-97:04 Security Advisory FreeBSD, Inc. Topic: security compromise via procfs Category: core Module: procfs Announced: 1997-08-19 Affects: FreeBSD 2.1., FreeBSD 2.2.,...