Lucene search
K

110 matches found

0day.today
0day.today
added 2004/09/25 12:0 a.m.27 views

GNU Sharutils <= 4.2.1 Local Format String PoC Exploit

Exploit for linux platform in category local exploits ====================================================== GNU Sharutils includ...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2004/09/25 12:0 a.m.18 views

GNU Sharutils &lt;= 4.2.1 Local Format String PoC Exploit

No description provided by source. / GNU sharutils = 4.2.1 Local Format String POC Code C0ded by n4rk0tix a.k.a nrktx [email protected] Below is a l4m3 proof of concept code for da recently reported lame bug; These binaryz have not only format bugz, but also buffer overflowz,etc.We also...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2004/09/25 12:0 a.m.20 views

GNU Sharutils 4.2.1 - Local Format String

GNU Sharutils 4.2.1 - Local Format String / GNU sharutils include include include include include include include include include define GNUSOURCE define DEFAULTDTORS...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/09/25 12:0 a.m.58 views

GNU Sharutils 4.2.1 - Local Format String

/ GNU sharutils include include include include include include include include include define GNUSOURCE define DEFAULTDTORSSHAR...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.23 views

Mandrake Linux Security Advisory : sharutils (MDKSA-2002:052)

The uudecode utility creates output files without checking to see if it is about to write to a symlink or pipe. This could be exploited by a local attacker to overwrite files or lead to privilege escalation if users decode data into share directories, such as /tmp. This update fixes this...

7.2CVSS5.5AI score0.00622EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.30 views

RHEL 2.1 : sharutils (RHSA-2003:180)

Updated packages for sharutils which fix potential privilege escalation using the uudecode utility are available. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format. The uudecode utility creates an output file without checking to see...

7.2CVSS5.4AI score0.00622EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2003/05/23 2:48 p.m.7 views

Low: Red Hat Security Advisory: sharutils security update

Updated packages for sharutils which fix potential privilege escalation using the uudecode utility are available. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format. The uudecode utility creates an output file without checking to see...

7.2CVSS5.8AI score0.00622EPSS
Exploits0References2
CVE
CVE
added 2003/04/02 5:0 a.m.54 views

CVE-2002-0178

The CVE-2002-0178 issue affects the uudecode utility in the GNU Sharutils package prior to version 4.2.1, which does not validate the destination filename against pipes or symbolic links. This can allow a local attacker to overwrite files or escalate privileges by decoding into sensitive or open ...

7.2CVSS6.7AI score0.00622EPSS
Exploits0References11Affected Software1
CERT
CERT
added 2002/07/15 12:0 a.m.33 views

Uudecode performs inadequate checks on user-specified output files

Overview The uudecode utility contains a vulnerability that allows an attacker to overwrite arbitrary files, symbolic links, and named pipes. Description The uudecode utility is used to decode files that have been encoded in the 7-bit printable format generated by uuencode. This format allows for...

7.2CVSS6.1AI score0.00622EPSS
Exploits0References3
NVD
NVD
added 2002/05/29 4:0 a.m.15 views

CVE-2002-0178

uudecode, as available in the sharutils package before 4.2.1, does not check whether the filename of the uudecoded file is a pipe or symbolic link, which could allow attackers to overwrite files or execute commands...

7.2CVSS6.6AI score0.00622EPSS
Exploits0References11
Rows per page
Query Builder