1652 matches found
SGI Performance Co-Pilot 2.1.x2.2 - pmpost Symbolic Link
SGI Performance Co-Pilot 2.1.x2.2 - pmpost Symbolic Link // source: https://www.securityfocus.com/bid/2887/info Performance Co-Pilot PCP is a set of services to support system-level performance monitoring developed by SGI. It has traditionally been an IRIX product, however SGI has made it open...
OpenServer 5.0.55.0.6 HP-UX 1011 Solaris 2.67.08 - rpc.yppasswdd Buffer Overrun
OpenServer 5.0.55.0.6 HP-UX 1011 Solaris 2.67.08 - rpc.yppasswdd Buffer Overrun source: https://www.securityfocus.com/bid/2763/info The rpc.yppasswdd server is used to handle password change requests from yppasswd and modify the NIS password file. A buffer overrun vulnerability has been discovere...
OpenServer 5.0.5/5.0.6 / HP-UX 10/11 / Solaris 2.6/7.0/8 - rpc.yppasswdd Buffer Overrun
source: https://www.securityfocus.com/bid/2763/info The rpc.yppasswdd server is used to handle password change requests from yppasswd and modify the NIS password file. A buffer overrun vulnerability has been discovered in the rpc.yppasswdd utility distributed by multiple vendors. The problem occu...
CA CCC\Harvest exploit
-= Zero Tolerance Technologies T Security Advisory =- Reference: ZTT-SA01-27032001 Author: Richard Scott, [email protected] Product: Computer Associates' CCCHarvest Source Code control software http://ca.com/products/cccharvest.htm http://ca.com/products/descriptions/cccharvest.pdf...
Solaris 2.67.08 - snmpXdmid Buffer Overflow (Metasploit)
Solaris 2.67.08 - snmpXdmid Buffer Overflow Metasploit source: https://www.securityfocus.com/bid/2417/info Versions 2.6, 7, and 8 of Sun Microsystem's Solaris operating environment ship with service called 'snmpXdmid'. This daemon is used to map SNMP management requests to DMI requests and vice...
Solaris 2.6/7.0/8 - snmpXdmid Buffer Overflow (Metasploit)
source: https://www.securityfocus.com/bid/2417/info Versions 2.6, 7, and 8 of Sun Microsystem's Solaris operating environment ship with service called 'snmpXdmid'. This daemon is used to map SNMP management requests to DMI requests and vice versa. SnmpXdmid contains a remotely exploitable buffer...
Solaris 2.6/7.0/8 - snmpXdmid Buffer Overflow
// source: https://www.securityfocus.com/bid/2417/info Versions 2.6, 7, and 8 of Sun Microsystem's Solaris operating environment ship with service called 'snmpXdmid'. This daemon is used to map SNMP management requests to DMI requests and vice versa. SnmpXdmid contains a remotely exploitable buff...
format string vulnerability in mars_nwe 0.99pl19
Hello, Marsnwe 0.99.pl19 is vulnerable to remote format string vulnerability, allowing to gain superuser privileges from DOS/Windows workstations attached to mars server. Here is the patch: --- tools.c.orig Fri Jan 26 22:46:34 2001 +++ tools.c Fri Jan 26 22:46:59 2001 @@ -189,7 +189,7 @@...
ISC BIND 4 contains input validation error in nslookupComplain()
Overview The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS by the Internet Software Consortium ISC. There is a format string vulnerability in BIND 4.9.4 that may allow remote intruders to gain access to systems running BIND. Although BIND 4.9.x is no longer...
ISC BIND 4 contains buffer overflow in nslookupComplain()
Overview The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS by the Internet Software Consortium ISC. There is a buffer overflow vulnerability in BIND 4.9.x, which may allow remote intruders to gain access to systems running BIND. Although BIND 4.9.x is no...
Security Advisory: FreeBSD-SA-00:77.procfs
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:77 Security Advisory FreeBSD, Inc. Topic: Several vulnerabilities in procfs Category: core Module: procfs Announced: 2000-12-18 Affects: Problem 1: FreeBSD 4.x prior to t...
FreeBSD-SA-00:77.procfs
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:77 Security Advisory FreeBSD, Inc. Topic: Several vulnerabilities in procfs REVISED Category: core Module: procfs Announced: 2000-12-18 Reissued: 2000-12-29 Affects:...
Format string vulnerability in libutil pw_error(3) function
Overview There is an input validation vulnerability in the OpenBSD libutil system library that allows local users to gain superuser access via the chpass utility. Description On June 30, 2000, the OpenBSD development team repaired an input validation vulnerability in the pwerror function of the...
ISS Security Advisory: Insecure call of external programs in Red Hat Linux tmpwatch
-----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Security Advisory October 6, 2000 Insecure call of external programs in Red Hat Linux tmpwatch Synopsis: The tmpwatch utility is used in Red Hat Linux to remove temporary files. This utility has an option to call the "fuser" program,...
RedHat 6.2/7.0 Tmpwatch - Arbitrary Command Execution
// source: https://www.securityfocus.com/bid/1785/info A vulnerability exists in tmpwatch, a utility which automates the removal of temporary files in unix-like systems. An optional component of tmpwatch, fuser, improperly handles arguments to system library calls. If an attacker creates a file...
mysql.grant.txt
Hi. While installing MySQL 3.22.29 and testing it out, I discovered a very serious bug in it's handling of the GRANT statement. I have decided to post this message at this time although a fixed distribution is not yet available at mysql.com. The reason for this is that the subject has been...
unixware.Xsco.txt
-----Original Message----- Date: Fri, 26 Nov 1999 04:27:16 +0300 MSK From: Matt Conover To: [email protected] Subject: w00giving '99 6: UnixWare 7's Xsco Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII w00w00 Security Development WSD...
PT-1999-1035 · Linux · Linux
Name of the Vulnerable Software and Affected Versions: Linux affected versions not specified Description: A buffer overflow issue in the Linux su command allows local users to gain root access. Recommendations: At the moment, there is no information about a newer version that contains a fix for...
ipop3d.4.xx.bof.txt
Date: Sun, 7 Mar 1999 01:41:25 +0100 From: Michal Zalewski Overflow in CAC.Washington.EDU ipop3d 4.xx CAC.Washington.EDU ipop3d 4.xx, at least on Linux platform, has serious security hole. When data is read from so-called mailbox lock created in /tmp directory this happens under certain condition...
pam_unix_passwd.so.txt
Date: Wed, 23 Dec 1998 13:12:45 +0100 From: Michal Zalewski Reply-To: Bugtraq List To: [email protected] Subject: Linux PAM up to 0.64-2 local root compromise As someone said, "Never make any mistaeks." Latest release of Linux Pluggable Authentication Modules pam-0.64-2, as well as previous...