Lucene search
+L

288 matches found

securityvulns
securityvulns
added 2002/02/24 12:0 a.m.26 views

Серьезная дырка в ncurses

Классическое переполнение буфера при обработке пользовательского файла .terminfo...

1.1AI score
Exploits0References5Affected Software8
CVE
CVE
added 2001/09/12 4:0 a.m.48 views

CVE-1999-1227

CVE-1999-1227 concerns Ethereal and a local symlink-attack that allows overwriting arbitrary files via the packet capture file. Documentation consistently states the flaw is a local-privilege issue due to a symlink race, enabling complete confidentiality, integrity, and availability impact for af...

7.2CVSS6.7AI score0.00346EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2001/08/17 12:0 a.m.51 views

[Real Security] Advisory for Nudester 1.10

------------------------- Real Security Advisory 1 Author: Cyph3r www.Real-Security.org Date: 08/16/2001 ------------------------- Vulnerable: Nudester 1.10and below? OS: Win9x/me/2k/nt/xp Site: www.nudester.org ------------------------- - Severity: Malicious users can gain full access to the use...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2000/07/11 12:0 a.m.24 views

Дырка в tnef

При извлечении данных из MS-TNEF-файлов не проверяется наличие служебных символов в имени файла, что позволяет переписать любой файл, принадлежащий пользователю...

0.6AI score
Exploits0References1
securityvulns
securityvulns
added 2000/06/15 12:0 a.m.24 views

SmartFTP Daemon v0.2 Beta Build 9 - Remote Exploit

I found a bug in the SmartFTP-D Server which will give an attacker full access to the server, if he has the right to write files on the server. For every user, the program is checking if a special Userfile exists Sample: Username=hacker & Userfile=hacker.FTPUser. If it exists, the configuration,...

Exploits0
CVE
CVE
added 2000/04/10 4:0 a.m.50 views

CVE-2000-0210

CVE-2000-0210 affects the lit program in Sun Flex License Manager (FlexLM). The vulnerability arises because lit follows symbolic links, allowing a local user to modify arbitrary files on the host. Root cause: improper handling of symlinks in the lit utility. Impact described in sources is local ...

1.2CVSS6.8AI score0.00563EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.27 views

svga.textmode.1.8.txt

Date: Tue, 26 Oct 1999 19:14:50 +0300 From: [email protected] To: [email protected] Subject: svgatextmode hello, I sent on bugtraq the bug with savetextmode. I thought that it belonged to SVGATextMode, but it is included in svgalib. So the threat is bigger... Please update your page...

7.4AI score
Exploits0
NVD
NVD
added 1995/12/01 5:0 a.m.19 views

CVE-1999-0123

Race condition in Linux mailx command allows local users to read user files...

3.7CVSS0.003EPSS
Exploits0References1
Rows per page
Query Builder