CVE-2011-3123

IBM InfoSphere Information Server 8.5 and 8.5.0.1 on Unix and Linux, as used in IBM InfoSphere DataStage 8.5 and 8.5.0.1 and other products, uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors...

CVE-2011-3123

IBM InfoSphere Information Server 8.5 and 8.5.0.1 on Unix and Linux, as used in IBM InfoSphere DataStage 8.5 and 8.5.0.1 and other products, uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors...

CVE-2011-1412

sys/sysunix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game servers to execute arbitrary commands via shell metacharacters in a long fsgame variable...

BackTrack 4: Assuring Security by Penetration Testing

BackTrack 4 : Assuring Security by Penetration Testing Written as an interactive tutorial, this book covers the core of BackTrack with real-world examples and step-by-step instructions to provide professional guidelines and recommendations to you. The book is designed in a simple and intuitive...

U.S. Defense Information Systems Agency (DISA) Unix Security Readiness Review (SRR) root compromise / VU#433821

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Executive Summary - ----------------- Unprivileged local users can obtain root access on Unix systems where the DISA SRR scripts are run. If a remote user can introduce a file into the filesystem e.g. anonymous ftp, http upload, cdrom, samba share,...

[SECURITY] Fedora 10 Update: gnome-web-photo-0.3-20.fc10

gnome-web-photo contains a thumbnailer that will be used by GNOME applicati ons, including the file manager, to generate screenshots of web pages...

Sun Java System Identity Manager多个安全漏洞

BUGTRAQ ID: 34191 Sun Java System Identity Manager是一个完整的端到端的保护敏感数据和管理标识配置文件与许可的解决方案。 Sun Java System Identity Manager（IdM）受多个安全漏洞影响，具体如下： 由于没有使用SSL加密某些连接，远程非特权用户可以非授权访问客户端与IdM服务器之间所传输的数据（17763）。 本地或远程非特权用户可以判断是否存在有效的IdM帐号名（18052，18104）。 在IdM服务器上拥有帐号的用户可以更改其他IdM帐号的口令（18578）。...

No-IP.com DDNS client for Unix/Linux buffer overflow

Buffer overflow on HTTP response parsing...

Vim多个插件字符转义任意命令执行漏洞

BUGTRAQ ID: 32462,32463 CVECAN ID: CVE-2008-3074,CVE-2008-3074 VIM是一款免费开放源代码文本编辑器，可使用在Unix/Linux操作系统下。 VIM的tar.vim和zip.vim插件中shellescape函数没有正确地转义所有项（“!”字符）。如果用户使用tar.vim插件打开了TAR文档的话，就会导致以运行Vim用户的权限执行任意指令。 VIM Development Group VIM 7.1 VIM Development Group VIM 7.0 RedHat ------...

BMP image parser vulnerability

The BMP image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.119 and earlier, when running on Unix/Linux systems,...

Vim多个Shell命令注入漏洞

BUGTRAQ ID: 29715 VIM是一款免费开放源代码文本编辑器，可使用在Unix/Linux操作系统下。 VIM的filetype.vim、tar.vim、zip.vim、xpm.vim、xpm2.vim、gzip.vim和netrw.vim脚本没有正确地转义传送给execute语句的文件名中的特殊字符，如果用户受骗打开了恶意文件的话，就可能导致向受影响系统注入并执行任意SHELL命令。 VIM Development Group VIM 7.1.314 VIM Development Group VIM 6.4 VIM Development Group...

Buffer-overflow and format string in White_Dune 0.29beta791

Luigi Auriemma Application: WhiteDune http://vrml.cip.ica.uni-stuttgart.de/dune/ Versions: = 0.29beta791 Platforms: Unix/Linux/MacOSX and Windows Bugs: A buffer-overflow in Scene::errorf B format string in ImportFile Exploitation: local Date: 02 Jan 2008 Author: Luigi Auriemma e-mail:...

openSUSE 10 Security Update : java-1_5_0-sun (java-1_5_0-sun-3832)

The Sun JAVA JDK 1.5.0 was upgraded to release 12 to fix various bugs, including the following security bugs : CVE-2007-2788 / CVE-2007-3004: Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit JDK, allows remote attackers to execute arbitrary code or cause a...

ImageMagick ReadDIBImage函数整数溢出漏洞

BUGTRAQ ID: 25765 CVECAN ID: CVE-2007-4988 ImageMagick是一款Unix/Linux平台下开源的图像查看和编辑工具。 ImageMagick在处理带有畸形数据的文件时存在整数漏洞，远程攻击者可能诱使用户处理恶意文件控制用户系统。 ImageMagick的ReadDIBImage函数中存在整数溢出漏洞： 558 image-columns=unsigned long dibinfo.width ... 620 bytesperline=4image-columnsdibinfo.bitsperpixel+31/32; 621...

ImageMagick blob.c文件单字节缓冲区溢出漏洞

BUGTRAQ ID: 25766 CVECAN ID: CVE-2007-4987 ImageMagick是一款Unix/Linux平台下开源的图像查看和编辑工具。 ImageMagick在处理畸形格式的文件时存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞通过诱使用户打开处理恶意文件控制系统。 magick/blob.c文件中的ReadBlobString函数存在缓冲区溢出漏洞： 3110 for i=0; i long MaxTextExtent; i++ 3111 3112 p=ReadBlobStreamimage,1,buffer,&count; ... 3119...

CVE-2007-4578

Sophos Anti-Virus for Windows and for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted UPX packed file, resulting from an "integer cast around". NOTE: as of 20070828, the vendor says this is a DoS and the...

Information disclosure in w4x_backup

It has been discovered that the extension w4xbackup has several security related issues, which may disclosure confidential information. Component Type: Third party extension. This extension is not part of the TYPO3 default installation Affected Versions: Version 0.9.1 and all versions below...

CVE-2007-2789

The BMP image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.119 and earlier, when running on Unix/Linux systems,...

CVE-2007-2789

The BMP image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.119 and earlier, when running on Unix/Linux systems,...

Code injection

The BMP image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.119 and earlier, when running on Unix/Linux systems,...