Lucene search
K

554 matches found

exploitpack
exploitpack
added 2006/10/24 12:0 a.m.27 views

Solaris 10 libnspr - Constructor Arbitrary File Creation Privilege Escalation (3)

Solaris 10 libnspr - Constructor Arbitrary File Creation Privilege Escalation 3 !/bin/sh $Id: raptorlibnspr3,v 1.1 2006/10/24 15:54:57 raptor Exp $ raptorlibnspr3 - Solaris 10 libnspr constructor exploit Copyright c 2006 Marco Ivaldi Local exploitation of a design error vulnerability in version...

3.6CVSS0.8AI score0.07683EPSS
Exploits27
exploitpack
exploitpack
added 2006/10/24 12:0 a.m.36 views

Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation (2)

Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation 2 source: https://www.securityfocus.com/bid/20471/info The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this iss...

3.6CVSS0.5AI score0.07683EPSS
Exploits27
Exploit DB
Exploit DB
added 2006/10/24 12:0 a.m.45 views

Solaris 10 libnspr - 'Constructor' Arbitrary File Creation Privilege Escalation (3)

!/bin/sh $Id: raptorlibnspr3,v 1.1 2006/10/24 15:54:57 raptor Exp $ raptorlibnspr3 - Solaris 10 libnspr constructor exploit Copyright c 2006 Marco Ivaldi Local exploitation of a design error vulnerability in version 4.6.1 of NSPR, as included with Sun Microsystems Solaris 10, allows attackers to...

3.6CVSS7.5AI score0.07683EPSS
Exploits27
Exploit DB
Exploit DB
added 2006/10/24 12:0 a.m.45 views

Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation (2)

source: https://www.securityfocus.com/bid/20471/info The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this issue allows an attacker to gain superuser privileges, completely compromising the...

3.6CVSS7.5AI score0.07683EPSS
Exploits27
exploitpack
exploitpack
added 2006/10/16 12:0 a.m.29 views

Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Privilege Escalation (2)

Solaris 10 libnspr - LDPRELOAD Arbitrary File Creation Privilege Escalation 2 !/bin/sh $Id: raptorlibnspr2,v 1.4 2006/10/16 11:50:48 raptor Exp $ raptorlibnspr2 - Solaris 10 libnspr LDPRELOAD exploit Copyright c 2006 Marco Ivaldi Local exploitation of a design error vulnerability in version 4.6.1...

3.6CVSS0.2AI score0.07683EPSS
Exploits27
Symantec
Symantec
added 2006/07/11 12:0 a.m.13 views

Microsoft Office Malformed String Parsing Code Execution Vulnerability

Description Microsoft Office is prone to a code-execution vulnerability. This condition can occur when a malformed string within an Office file is parsed. This vulnerability is located in a shared library used by multiple Office applications, potentially allowing many different attack vectors. An...

0.3AI score
Exploits0References2Affected Software3
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.27 views

CentOS 3 : glibc (CESA-2005:256)

Updated glibc packages that address several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The GNU libc packages known as glibc contain the standard C libraries used by applications. It was discovered that the use of LDDEBUG...

2.1CVSS5.4AI score0.00364EPSS
Exploits0References6
securityvulns
securityvulns
added 2006/06/27 12:0 a.m.37 views

pinball privilege escalation

Shared library is loaded from current directory...

2.7AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2006/05/05 12:0 a.m.43 views

Quake 3 Engine 1.32b - R_RemapShader() Remote Client Buffer Overflow

Quake 3 Engine 1.32b - RRemapShader Remote Client Buffer Overflow // remapthis.c - "RRemapShader" q3 engine 1.32b client remote bof exploit // by landser - landser at hotmail.co.il // // this code works as a preloaded shared library on a game server, // it hooks two functions on the running serve...

0.4AI score
Exploits0
seebug.org
seebug.org
added 2006/05/05 12:0 a.m.22 views

Quake 3 Engine 1.32b R_RemapShader() Remote Client BoF Exploit

No description provided by source. // remapthis.c - "RRemapShader" q3 engine 1.32b client remote bof exploit // by landser - landser at hotmail.co.il // // this code works as a preloaded shared library on a game server, // it hooks two functions on the running server: // svcdirectconnect that is...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/05/05 12:0 a.m.30 views

Quake 3 Engine 1.32b - 'R_RemapShader()' Remote Client Buffer Overflow

// remapthis.c - "RRemapShader" q3 engine 1.32b client remote bof exploit // by landser - landser at hotmail.co.il // // this code works as a preloaded shared library on a game server, // it hooks two functions on the running server: // svcdirectconnect that is called when a client connects, // a...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/03/27 12:0 a.m.37 views

[SA19295] LibVC "count_vcards()" Buffer Overflow Vulnerability

TITLE: LibVC "countvcards" Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA19295 VERIFY ADVISORY: http://secunia.com/advisories/19295/ CRITICAL: Moderately critical IMPACT: System access WHERE: From remote SOFTWARE: LibVC http://secunia.com/product/8950/ DESCRIPTION: trew has discovered a...

1.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/02/14 12:0 a.m.17 views

SUSE-SA:2006:007: binutils,kdelibs3,kdegraphics3,koffice,dia,lyx

The remote host is missing the patch for the advisory SUSE-SA:2006:007 binutils,kdelibs3,kdegraphics3,koffice,dia,lyx. A SUSE specific patch to the GNU linker 'ld' removes redundant RPATH and RUNPATH components when linking binaries. Due to a bug in this routine ld occasionally left empty RPATH...

6.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.26 views

Ubuntu 4.10 / 5.04 : dpkg, ia32-libs, amd64-libs vulnerabilities (USN-151-2)

USN-148-1 and USN-151-1 fixed two security flaws in zlib, which could be exploited to cause Denial of Service attacks or even arbitrary code execution with malicious data streams. Most applications use the shared library provided by the 'zlib1g' package; however, some packages contain copies of t...

7.5CVSS8.2AI score0.05476EPSS
Exploits3References2
Saint
Saint
added 2005/12/04 12:0 a.m.32 views

VERITAS NetBackup Volume Manager Daemon buffer overflow

Added: 12/04/2005 CVE: CVE-2005-3116 BID: 15353 OSVDB: 20674 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem The Volume Manager Daemon VMD has an error in its shared library allowing for a buffer overflow. A specially crafted request sent to port...

10CVSS6.7AI score0.27617EPSS
Exploits5
securityvulns
securityvulns
added 2005/11/11 12:0 a.m.34 views

Veritas NetBackup buffer overflow

Buffer overflow in vmd Volume Manager Daemon shared library...

3.7AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2005/09/26 12:0 a.m.24 views

Qpopper poppassd shared library privilege escalation

User can specify shared library path for suid application...

2.8AI score
Exploits0Affected Software1
Ubuntu
Ubuntu
added 2005/07/23 1:48 a.m.62 views

USN-151-2: zlib vulnerabilities

USN-148-1 and USN-151-1 fixed two security flaws in zlib, which could be exploited to cause Denial of Service attacks or even arbitrary code execution with malicious data streams. Most applications use the shared library provided by the "zlib1g" package; however, some packages contain copies of t...

7.5CVSS8.3AI score0.05476EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2005/05/19 12:0 a.m.28 views

RHEL 3 : glibc (RHSA-2005:256)

Updated glibc packages that address several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The GNU libc packages known as glibc contain the standard C libraries used by applications. It was discovered that the use of LDDEBUG...

2.1CVSS5.4AI score0.00364EPSS
Exploits0References3
Cent OS
Cent OS
added 2005/05/18 6:1 p.m.365 views

glibc, nptl, nscd security update

CentOS Errata and Security Advisory CESA-2005:256 Updated glibc packages that address several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The GNU libc packages known as glibc contain the standard C libraries used by...

2.1CVSS5.8AI score0.00364EPSS
Exploits0References9
Rows per page
Query Builder