288 matches found
Серьезная дырка в ncurses
Классическое переполнение буфера при обработке пользовательского файла .terminfo...
CVE-1999-1227
CVE-1999-1227 concerns Ethereal and a local symlink-attack that allows overwriting arbitrary files via the packet capture file. Documentation consistently states the flaw is a local-privilege issue due to a symlink race, enabling complete confidentiality, integrity, and availability impact for af...
[Real Security] Advisory for Nudester 1.10
------------------------- Real Security Advisory 1 Author: Cyph3r www.Real-Security.org Date: 08/16/2001 ------------------------- Vulnerable: Nudester 1.10and below? OS: Win9x/me/2k/nt/xp Site: www.nudester.org ------------------------- - Severity: Malicious users can gain full access to the use...
Дырка в tnef
При извлечении данных из MS-TNEF-файлов не проверяется наличие служебных символов в имени файла, что позволяет переписать любой файл, принадлежащий пользователю...
SmartFTP Daemon v0.2 Beta Build 9 - Remote Exploit
I found a bug in the SmartFTP-D Server which will give an attacker full access to the server, if he has the right to write files on the server. For every user, the program is checking if a special Userfile exists Sample: Username=hacker & Userfile=hacker.FTPUser. If it exists, the configuration,...
CVE-2000-0210
CVE-2000-0210 affects the lit program in Sun Flex License Manager (FlexLM). The vulnerability arises because lit follows symbolic links, allowing a local user to modify arbitrary files on the host. Root cause: improper handling of symlinks in the lit utility. Impact described in sources is local ...
svga.textmode.1.8.txt
Date: Tue, 26 Oct 1999 19:14:50 +0300 From: [email protected] To: [email protected] Subject: svgatextmode hello, I sent on bugtraq the bug with savetextmode. I thought that it belonged to SVGATextMode, but it is included in svgalib. So the threat is bigger... Please update your page...
CVE-1999-0123
Race condition in Linux mailx command allows local users to read user files...