56 matches found
Entercept Ricochet Security Advisory: Solaris snmpdx Vulnerabilities
Entercept Ricochet Advisory Solaris snmpdx Vulnerabilities http://www.entercept.com/news/uspr/06-03-02.asp DETAILS An unchecked buffer in Sun's Solaris SNMP component can be overrun and remotely exploited, allowing an attacker to execute arbitrary code with root privileges. There is also a format...
[DER Adv #7] - Multiple Vulnerabilities in solaris in.rarpd
Intro: rarpd is a reverse arp protocol for small to medium sized networks. in the solaris implementation in.rarpd there seems to be 3 remotely exploitable buffer overflows, 2 locally exploitable and 2 cases of format string exploitability. Details: In the functions error and syserr syserr also...
Multiple bugs in Solaris in.rarpd
Buffer overflows, format string bugs...
Xerox DocuTech problems
I'm forwarding this for people who would like to remain anonymous. This case illustrates why software product vendors should be held legally and financially accountable for the security problems caused by their reckless and sometimes arrogant disregard of known problems. Xerox replied with a...
eSecurityOnline Security Advisory 2397 - Sun Solaris admintool -d and PRODVERS buffer overflow vulnerabilities
eSO Security Advisory: 2397 Discovery Date: March 28, 2000 ID: eSO:2397 Title: Sun Solaris admintool -d and PRODVERS buffer overflow vulnerabilities Impact: Local attackers can gain root privileges Affected Technology: Solaris 2.5, 2.5.1, 2.6, 7, 8 SPARC and x86 Vendor Status: Patches are availab...
CVE-2002-0084
Buffer overflow in the fscachesetup function of cachefsd in Solaris 2.6, 7, and 8 allows local users to gain root privileges via a long mount argument...
CVE-2002-0084
Buffer overflow in the fscachesetup function of cachefsd in Solaris 2.6, 7, and 8 allows local users to gain root privileges via a long mount argument...
Colbalt-RAQ-v4-Bugs&Vulnerabilities
------oOo---------------- Cobalt RAQ 4 Server Management, Cross Site Scripting , Directory Traversal & DoS Vulnerabilities. ------oOo---------------- Company Affected: www.cobalt.com & www.sun.com Version: RAQ 4 Server Management. Dowload: http://www.cobalt.com/products/raq/index.html OS Affected...
Проблемы с идентификаторами сеансов в NetDynamics под Solraris (unauthorized access)
Можно получить информацию о том, какой идентификатор будет назначен пользователю. Это позволяет перехватить сеанс пользователя...
CVE-2001-0190
Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name arg0...
Удаленный root в Solaris через sadmind
No description provided...
solaris.chkperm+arp.txt
Greetings, OVERVIEW /usr/vmsys/bin/chkperm and /usr/sbin/arp can be used to read bin-owned files. BACKGROUND All my testing was done on Solaris 2.7 and 2.6 SPARC edition. DETAILS Vuln 1 - chkperm This one isn't nearly as interesting as the instant-shell variety. Here's how it works: chkperm is...
sun-snmp.txt
Vulnerabilities in Sun Solaris 2.6 SNMP Jeremy Rauch April 1998 Sun's snmpd implementation as supplied with Solaris 2.6 includes what used to be shipped with Sun's Solstice Admin suite as it's snmpd, and associated subagents. Sun's snmpd is actually pretty interesting, in that it supports a numbe...
kki.inactive.connections.txt
Date: Wed, 28 Apr 1999 13:59:28 +0200 From: Lukasz Luzar To: [email protected] Subject: KKIS.28041999.002.b S E C U R I T Y Contacts KKI Security Team Cracow Commercial Internet http://www.security.kki.pl http://www.kki.pl mailto:[email protected] mailto:[email protected] Informations Raport...
Solaris 2.52.5.12.67.0 - sadmind Remote Buffer Overflow (2)
Solaris 2.52.5.12.67.0 - sadmind Remote Buffer Overflow 2 // source: https://www.securityfocus.com/bid/866/info Certain versions of Solaris ship with a version of sadmind which is vulnerable to a remotely exploitable buffer overflow attack. sadmind is the daemon used by Solstice AdminSuite...
CVE-1999-0568
rpc.admind in Solaris is not running in a secure mode...