554 matches found
Solaris 10 libnspr - Constructor Arbitrary File Creation Privilege Escalation (3)
Solaris 10 libnspr - Constructor Arbitrary File Creation Privilege Escalation 3 !/bin/sh $Id: raptorlibnspr3,v 1.1 2006/10/24 15:54:57 raptor Exp $ raptorlibnspr3 - Solaris 10 libnspr constructor exploit Copyright c 2006 Marco Ivaldi Local exploitation of a design error vulnerability in version...
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation (2)
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation 2 source: https://www.securityfocus.com/bid/20471/info The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this iss...
Solaris 10 libnspr - 'Constructor' Arbitrary File Creation Privilege Escalation (3)
!/bin/sh $Id: raptorlibnspr3,v 1.1 2006/10/24 15:54:57 raptor Exp $ raptorlibnspr3 - Solaris 10 libnspr constructor exploit Copyright c 2006 Marco Ivaldi Local exploitation of a design error vulnerability in version 4.6.1 of NSPR, as included with Sun Microsystems Solaris 10, allows attackers to...
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation (2)
source: https://www.securityfocus.com/bid/20471/info The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this issue allows an attacker to gain superuser privileges, completely compromising the...
Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Privilege Escalation (2)
Solaris 10 libnspr - LDPRELOAD Arbitrary File Creation Privilege Escalation 2 !/bin/sh $Id: raptorlibnspr2,v 1.4 2006/10/16 11:50:48 raptor Exp $ raptorlibnspr2 - Solaris 10 libnspr LDPRELOAD exploit Copyright c 2006 Marco Ivaldi Local exploitation of a design error vulnerability in version 4.6.1...
Microsoft Office Malformed String Parsing Code Execution Vulnerability
Description Microsoft Office is prone to a code-execution vulnerability. This condition can occur when a malformed string within an Office file is parsed. This vulnerability is located in a shared library used by multiple Office applications, potentially allowing many different attack vectors. An...
CentOS 3 : glibc (CESA-2005:256)
Updated glibc packages that address several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The GNU libc packages known as glibc contain the standard C libraries used by applications. It was discovered that the use of LDDEBUG...
pinball privilege escalation
Shared library is loaded from current directory...
Quake 3 Engine 1.32b - R_RemapShader() Remote Client Buffer Overflow
Quake 3 Engine 1.32b - RRemapShader Remote Client Buffer Overflow // remapthis.c - "RRemapShader" q3 engine 1.32b client remote bof exploit // by landser - landser at hotmail.co.il // // this code works as a preloaded shared library on a game server, // it hooks two functions on the running serve...
Quake 3 Engine 1.32b R_RemapShader() Remote Client BoF Exploit
No description provided by source. // remapthis.c - "RRemapShader" q3 engine 1.32b client remote bof exploit // by landser - landser at hotmail.co.il // // this code works as a preloaded shared library on a game server, // it hooks two functions on the running server: // svcdirectconnect that is...
Quake 3 Engine 1.32b - 'R_RemapShader()' Remote Client Buffer Overflow
// remapthis.c - "RRemapShader" q3 engine 1.32b client remote bof exploit // by landser - landser at hotmail.co.il // // this code works as a preloaded shared library on a game server, // it hooks two functions on the running server: // svcdirectconnect that is called when a client connects, // a...
[SA19295] LibVC "count_vcards()" Buffer Overflow Vulnerability
TITLE: LibVC "countvcards" Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA19295 VERIFY ADVISORY: http://secunia.com/advisories/19295/ CRITICAL: Moderately critical IMPACT: System access WHERE: From remote SOFTWARE: LibVC http://secunia.com/product/8950/ DESCRIPTION: trew has discovered a...
SUSE-SA:2006:007: binutils,kdelibs3,kdegraphics3,koffice,dia,lyx
The remote host is missing the patch for the advisory SUSE-SA:2006:007 binutils,kdelibs3,kdegraphics3,koffice,dia,lyx. A SUSE specific patch to the GNU linker 'ld' removes redundant RPATH and RUNPATH components when linking binaries. Due to a bug in this routine ld occasionally left empty RPATH...
Ubuntu 4.10 / 5.04 : dpkg, ia32-libs, amd64-libs vulnerabilities (USN-151-2)
USN-148-1 and USN-151-1 fixed two security flaws in zlib, which could be exploited to cause Denial of Service attacks or even arbitrary code execution with malicious data streams. Most applications use the shared library provided by the 'zlib1g' package; however, some packages contain copies of t...
VERITAS NetBackup Volume Manager Daemon buffer overflow
Added: 12/04/2005 CVE: CVE-2005-3116 BID: 15353 OSVDB: 20674 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem The Volume Manager Daemon VMD has an error in its shared library allowing for a buffer overflow. A specially crafted request sent to port...
Veritas NetBackup buffer overflow
Buffer overflow in vmd Volume Manager Daemon shared library...
Qpopper poppassd shared library privilege escalation
User can specify shared library path for suid application...
USN-151-2: zlib vulnerabilities
USN-148-1 and USN-151-1 fixed two security flaws in zlib, which could be exploited to cause Denial of Service attacks or even arbitrary code execution with malicious data streams. Most applications use the shared library provided by the "zlib1g" package; however, some packages contain copies of t...
RHEL 3 : glibc (RHSA-2005:256)
Updated glibc packages that address several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The GNU libc packages known as glibc contain the standard C libraries used by applications. It was discovered that the use of LDDEBUG...
glibc, nptl, nscd security update
CentOS Errata and Security Advisory CESA-2005:256 Updated glibc packages that address several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The GNU libc packages known as glibc contain the standard C libraries used by...