555 matches found
[SECURITY] Fedora 9 Update: giflib-4.1.3-10.fc9
The giflib package contains a shared library of functions for loading and saving GIF format image files. It is API and ABI compatible with libungif, the library which supported uncompressed GIFs while the Unisys LZW patent was in effect...
RedHat Security Advisory RHSA-2009:0444
The remote host is missing updates announced in advisory RHSA-2009:0444. The giflib packages contain a shared library of functions for loading and saving GIF image files. This library is API and ABI compatible with libungif, the library that supported uncompressed GIF image files while the Unisys...
Linux Kernel 2.6 UDEV Local Privilege Escalation Exploit
No description provided by source. !/bin/sh Linux 2.6 bug found by Sebastian Krahmer lame sploit using LD technique by kcope in 2009 tested on debian-etch,ubuntu,gentoo do a 'cat /proc/net/netlink' and set the first arg to this script to the pid of the netlink socket the pid is udevdpid - 1 most ...
RedHat Update for bzip2 RHSA-2008:0893-01
Check for the Version of bzip2 OpenVAS Vulnerability Test RedHat Update for bzip2 RHSA-2008:0893-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
Fedora Update for qt FEDORA-2007-703
Check for the Version of qt OpenVAS Vulnerability Test Fedora Update for qt FEDORA-2007-703 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of the...
CUPS < 1.3.8-4 - Local Privilege Escalation
/ cve-2008-5377.c CUPS http://jon.oberheide.org Usage: $ gcc cve-2008-5377.c -o cve-2008-5377.c $ ./cve-2008-5377 $ id uid=0root gid=1000vm ... Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-5377 pstopdf in CUPS 1.3.8 allows local users to overwrite arbitrary files via a...
PHP safe_mode bypass via proc_open() and custom environment
No description provided by source. ----------------------------------------------------------------------- + safe-bypass-procopen.txt - yet another way to bypass PHP safemode. + + By Milen Rangelov [email protected] + ----------------------------------------------------------------------- This...
Safe Mode Bypass
----------------------------------------------------------------------- + safe-bypass-procopen.txt - yet another way to bypass PHP safemode. + + By Milen Rangelov + ----------------------------------------------------------------------- This should work provided that you have met the following...
PHP safe_mode bypass via proc_open() and custom environment
Exploit for linux platform in category local exploits =========================================================== PHP safemode bypass via procopen and custom environment ===========================================================...
PHP proc_open() safe_mode bypass
It's possible to execute any code from shared library via procopen...
Gentoo Linux Portage privilege escalation
Relative shared library search path in suid application...
CVE-2008-3357
Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 aka 9.0.4, and Ingres 2006 release 2 aka 9.1.0 on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability."...
Design/Logic Flaw
Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 aka 9.0.4, and Ingres 2006 release 2 aka 9.1.0 on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability."...
CVE-2008-3357
CVE-2008-3357 : Untrusted search path vulnerability in ingvalidpw of Ingres 2.6, Ingres 2006 Release 1 (9.0.4), and Ingres 2006 Release 2 (9.1.0) on Linux/HP-UX allows local users to gain privileges by loading a crafted shared library. Exploitation is local and tied to the ingvalidpw helper (set-...
Analysis of Linux Backdoor techniques and practices-the vulnerability of early warning-the black bar safety net
| | Page 1 of: analysis of the Linux Backdoor technique and practice methods --- | --- The back door introduction The intruder complete control of the system, to facilitate the next time you enter and use a technology. Generally by modifying system configuration files and installation of...
[SECURITY] Fedora 7 Update: qt-3.3.8-7.fc7
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run qt applications, as well as the README fil...
Hack advanced skills Linux back door technology and practice-vulnerability warning-the black bar safety net
The back door introduction The intruder complete control of the system, to facilitate the next time you enter and use a technology. Generally by modifying system configuration files and installation of third-party back-door tool to achieve. Has a hidden, can bypass the system log, not easy to be...
ftpd-ldpreload.pl.txt
FTP server GNU inetutils 1.4.2 Remote Root Exploit This program remotely exploits the most recent versions of GNU inetutils ftpd on linux systems. Requirements: 1. There MUST be a chroot'ed environment for the logged in user 2. Directory etc must be writeable by the logged in user duh! The exploi...
GNU InetUtils ftpd 1.4.2 - 'ld.so.preload' Remote Code Execution
FTP server GNU inetutils 1.4.2 Remote Root Exploit This program remotely exploits the most recent versions of GNU inetutils ftpd on linux systems. Requirements: 1. There MUST be a chroot'ed environment for the logged in user 2. Directory etc must be writeable by the logged in user duh! The exploi...
OpenBSD 3.9/4.0 - 'ld.so' Local Environment Variable Clearing
/ source: https://www.securityfocus.com/bid/21188/info OpenBSD is prone to a local vulnerability that may allow attackers to pass malicious environment variables to applications, bypassing expected security restrictions. Attackers may be able to exploit this issue to execute arbitrary code with...