35 matches found
EUVD-2007-4122
Malware in sbrugna...
How to Configure Windows 2003 Network File Share as Authenticated Storage Repository for XenServer
This document describes how to configure Windows Server 2003 Release 2 Server Network File Share NFS as an authenticated storage repository for XenServer. The NFS component is only included in Windows Server 2003 Release 2. If you do not have this edition, you can achieve the same results by...
SUSE CVE-2007-4138
The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...
Microsoft IE 5.0.1/5.5/6.0 Telnet Client File Overwrite Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2463/info Services for Unix 2.0 contains a client side logging option which records all information exchanged in a telnet session. A vulnerability exists that could enable a remote user to invoke the telnet client and...
Vulnerability in Windows Services for UNIX Could Allow Elevation of Privilege (939778)
This host is missing a critical security update according to Microsoft Bulletin MS07-053. OpenVAS Vulnerability Test $Id: gbms07-053.nasl 5362 2017-02-20 12:46:39Z cfi $ Vulnerability in Windows Services for UNIX Could Allow Elevation of Privilege 939778 Authors: Madhuri D Copyright: Copyright c...
Code injection
Multiple unspecified vulnerabilities in 1 unlzh.c and 2 unpack.c in the gzip libraries in Microsoft Windows Server 2008, Windows Services for UNIX 3.0 and 3.5, and the Subsystem for UNIX-based Applications SUA; as used in gunzip, gzip, pack, pcat, and unpack 7.x before 7.0.1701.48, 8.x before...
samba incorrect primary group assignment for domain users using the rfc2307 or sfu winbind nss info plugin
The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...
samba incorrect primary group assignment for domain users using the rfc2307 or sfu winbind nss info plugin
The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...
Code injection
The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...
CVE-2007-4138
The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...
DEBIAN-CVE-2007-4138
The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...
CVE-2007-4138
The Winbind nssinfo extension nsswitch/idmapad.c in idmapad.so in Samba 3.0.25 through 3.0.25c, when the "winbind nss info" option is set to rfc2307 or sfu, grants all local users the privileges of gid 0 when the 1 RFC2307 or 2 Services for UNIX SFU primary group attribute is not defined...
Code injection
Unspecified vulnerability in the 1 Windows Services for UNIX 3.0 and 3.5, and 2 Subsystem for UNIX-based Applications in Microsoft Windows 2000, XP, Server 2003, and Vista allows local users to gain privileges via unspecified vectors related to "certain setuid binary files."...
CVE-2007-3036
Unspecified vulnerability in the 1 Windows Services for UNIX 3.0 and 3.5, and 2 Subsystem for UNIX-based Applications in Microsoft Windows 2000, XP, Server 2003, and Vista allows local users to gain privileges via unspecified vectors related to "certain setuid binary files."...
Microsoft Windows Services for UNIX本地权限提升漏洞(MS07-053)
BUGTRAQ ID: 25620 CVECAN ID: CVE-2007-3036 Microsoft Windows是微软发布的非常流行的操作系统。 Windows操作系统所安装的Windows Services for UNIX和基于UNIX的应用程序子系统组件没有正确的处理setuid二进制程序,本地攻击者可以登录到系统并运行特制的setuid二进制程序获得权限提升。 Microsoft Windows Services for UNIX 3.0 - Microsoft Windows XP SP2 - Microsoft Windows Server 2003 SP2 -...
Microsoft Security Bulletin MS07-053 - Important Vulnerability in Windows Services for UNIX Could Allow Elevation of Privilege (939778)
Microsoft Security Bulletin MS07-053 - Important Vulnerability in Windows Services for UNIX Could Allow Elevation of Privilege 939778 Published: September 11, 2007 | Updated: September 11, 2007 Version: 1.0 General Information Executive Summary This important security update resolves one publicly...
Microsoft Security Bulletin MS05-033 Vulnerability in Telnet Client Could Allow Information Disclosure (896428)
Microsoft Security Bulletin MS05-033 Vulnerability in Telnet Client Could Allow Information Disclosure 896428 Issued: June 14, 2005 Version: 1.0 Summary Who should read this document: Customers who use a Microsoft Telnet client Impact of Vulnerability: Information Disclosure Maximum Severity...
CVE-2005-1205
The Telnet client for Microsoft Windows XP, Windows Server 2003, and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...
CVE-2002-1141
The CVE-2002-1141 issue is a vulnerability in the Sun Microsystems RPC library Services for Unix 3.0 Interix SD, executed on Windows NT4/2000/XP. It stems from an input validation error that can be exploited by malformed fragmented RPC client packets, enabling a remote denial of service. The docu...
CVE-2002-1140
CVE-2002-1140 corresponds to a vulnerability in Microsoft Services for UNIX 3.0 Interix SDK (RPC library) where a buffer overrun via an RPC request containing an improper parameter size check can allow a remote attacker to mount a denial-of-service against the RPC server. The issue is described a...