DSA-696-1 perl - design flaw

Bulletin has no description...

DMA[2005-0310a] - 'Frank McIngvale LuxMan buffer overflow'

DMA2005-0310a - 'Frank McIngvale LuxMan buffer overflow' Author: Kevin Finisterre Vendor: [email protected] broken Product: 'luxman' References: CAN-2005-0385 http://www.digitalmunition.com/DMA2005-0310a.txt http://www.debian.org/security/2005/dsa-693 Description: LuxMan is a Pac-Man clone for...

CVE-2005-0448

Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452...

CVE-2005-0448

CVE-2005-0448 affects the Perl File::Path.rmtree code path in Perl before 5.8.4. The race condition in File::Path.pm (rmtree) may allow local users to create arbitrary setuid binaries in the directory tree being deleted. This entry is corroborated by multiple connected advisories and Nessus plugi...

CVE-2005-0448

Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452...

CVE-2003-1097

Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option...

DSA-692-1 kppp - design flaw

Bulletin has no description...

CVE-2005-0602

Unzip 5.51 and earlier does not properly warn the user when extracting setuid or setgid files, which may allow local users to gain privileges...

CVE-2005-0602

Unzip 5.51 and earlier does not properly warn the user when extracting setuid or setgid files, which may allow local users to gain privileges...

GLSA-200502-30 : cmd5checkpw: Local password leak vulnerability

The remote host is affected by the vulnerability described in GLSA-200502-30 cmd5checkpw: Local password leak vulnerability Florian Westphal discovered that cmd5checkpw is installed setuid cmd5checkpw but does not drop privileges before calling execvp, so the invoked program retains the cmd5check...

CVE-2005-0580

CVE-2005-0580 affects cmd5checkpw, where the setuid program does not drop privileges before invoking execvp, enabling local users to read the /etc/poppasswd file. Connected sources (Gentoo GLSA 200502-30, Red Hat advisory, NVD/CVE entry, OpenVAS plugin) corroborate that the root cause is improper...

[Full-Disclosure] iDEFENSE Security Advisory 02.23.05: Sun Solaris kcms_configure Arbitrary File Corruption Vulnerability

Sun Solaris kcmsconfigure Arbitrary File Corruption Vulnerability iDEFENSE Security Advisory 02.23.05 www.idefense.com/application/poi/display?id=206&type=vulnerabilities February 23, 2005 I. BACKGROUND The kcmsconfigure utility is part of the Kodak Color Management System KCMS package that is...

CVE-2005-0503

uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges...

CVE-2005-0503

uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges...

DEBIAN-CVE-2005-0503

uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges...

uim -- privilege escalation vulnerability

The uim developers reports: Takumi ASAKI discovered that uim always trusts environment variables. But this is not correct behavior, sometimes environment variables shouldn't be trusted. This bug causes privilege escalation when libuim is linked against setuid/setgid application. Since GTK+...

KDE fliccd (INDI support) buffer overflows

Setuid root application buffer overflows...

CVE-2005-0070

Synaesthesia 2.1 and earlier, and possibly other versions, when installed setuid root, does not drop privileges before processing configuration and mixer files, which allows local users to read arbitrary files...

security flaw

Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to execute arbitrary code by setting the PERLIODEBUG variable and executing a Perl script whose full pathname contains a long directory tree...

CVE-2004-1453

CVE-2004-1453 affects the GNU C Library (glibc). The issue arises when LD_DEBUG, LD_SHOW_AUXV, and LD_DYNAMIC_WEAK are not restricted for setuid programs, allowing a local attacker to obtain sensitive information (e.g., the program’s symbol list). This is a local information disclosure vulnerabil...