5375 matches found
IRIX 5.3/6.x - 'netprint' Arbitrary Shared Library Usage
// source: https://www.securityfocus.com/bid/2656/info The 'netprint' utility shipped with SGI Irix systems is used to send print jobs to print spoolers on remote hosts. It is installed setuid root by default. At the command line, 'netprint' accepts an option to specify the network type -n. This...
Security Hole In Shareplex
Security Hole in Shareplex 2.x ------------------------------ Summary ------- Shareplex Quest Software's product for Oracle database replication contains a security hole which can allow local users to read any file on the system, effectively bypassing the permissions set at the OS level. Details...
Solaris 2.5/2.6/7.0/8 tip - Local Buffer Overflow
// source: https://www.securityfocus.com/bid/2475/info tip is a utility included with Sun Microsystems Solaris Operating Environment. tip allows a user to establish a full duplex terminal connection with a remote host. A problem with tip could lead to a buffer overflow. Due to the improper handli...
FreeBSD 3.5.1/4.2 Ports Package Local Root Exploit
Exploit for bsd platform in category local exploits ================================================== FreeBSD 3.5.1/4.2 Ports Package Local Root Exploit ================================================== / ja-elvis & ko-helvis - FreeBSD 3.5.1 & 4.2 ports package local root exploit vulnerable:...
CVE-2000-1167
Affected software: FreeBSD ppp utility (4.1.1 and earlier). Vulnerability : inadequate access restriction under the nat deny_incoming directive allows remote attackers to connect to the target system. Impact : per the CVSS data, network access with partial confidentiality, integrity, and availabi...
CVE-2000-1018
The CVE-2000-1018 entry concerns the shred 1.0 file wiping utility. The vulnerability is that shred does not properly open a target file for overwriting or flush its buffers, which can prevent it from fully replacing the file’s data. As a result, local users may be able to recover previously dele...
Переполнение буфера в Splitvt
Классическое переполнение буфера в suid-утилите...
CVE-2000-1018
shred 1.0 file wiping utility does not properly open a file for overwriting or flush its buffers, which prevents shred from properly replacing the file's data and allows local users to recover the file...
Дырка в фаерволах Nokia
Переполнение буфера в утилите удаленного администрирования...
Solaris 2.x7.08 - Catman Race Condition (1)
Solaris 2.x7.08 - Catman Race Condition 1 source: https://www.securityfocus.com/bid/2149/info catman is a utility for creating preformatted man pages, distributed as part of the Solaris Operating Environment. A problem exists which could allow local users to overwrite or corrupt files owned by...
Solaris 2.x/7.0/8 - 'Catman' Race Condition (1)
source: https://www.securityfocus.com/bid/2149/info catman is a utility for creating preformatted man pages, distributed as part of the Solaris Operating Environment. A problem exists which could allow local users to overwrite or corrupt files owned by other users. The problem occurs in the...
Ethereal - AFS Buffer Overflow
/ source: https://www.securityfocus.com/bid/1972/info Ethereal is a network auditing utility originally written by Gerald Combs. A problem exists in the Ethereal package which can allow a remote user to execute code. The problem exists in the AFS packet parsing routine. An algorithm string scans...
RedHat 6.2 - sbinrestore Local Privilege Escalation
RedHat 6.2 - sbinrestore Local Privilege Escalation !/bin/sh /sbin/restore exploit for rh6.2 I did not find this weakness my self, all i did was writing this script and some more to make it automatic and easy to use. This exploit should work on all redhat 6.2 systems with /sbin/restore not "fucke...
Linux news 15.11.00
Linux Kernel pre-patch 2.4.0 test11-pre5 Пятый пререлиз одинадцатого тестового ядра Linux за номером 2.4. Подробнее: ftp://ftp.funet.fi/pub/linux/kernel/testing Вышел Kernel Traffic 93 Вышел 93 номер Kernel Traffic. Подробнее: http://linuxtoday.com/newsstory.php3?ltsn=2000-11-13-003-06-OS-KN Опро...
FreeBSD-SA-00:70.ppp-nat
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:70 Security Advisory FreeBSD, Inc. Topic: ppp "denyincoming" does not correctly deny incoming packets Category: core Module: ppp Announced: 2000-11-14 Credits: Robin...
Format string vulnerability in libutil pw_error(3) function
Overview There is an input validation vulnerability in the OpenBSD libutil system library that allows local users to gain superuser access via the chpass utility. Description On June 30, 2000, the OpenBSD development team repaired an input validation vulnerability in the pwerror function of the...
HP-UX 9.x10.x11.x - cu Buffer Overflow
HP-UX 9.x10.x11.x - cu Buffer Overflow source: https://www.securityfocus.com/bid/1886/info cu is a unix utility that is used for communication between two hosts usually over phone lines. It is typically isntalled setuid root so that it can access communications hardware when executed by a regular...
Security Advisory: FreeBSD-SA-00:62.top
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:62 Security Advisory FreeBSD, Inc. Topic: top allows reading of kernel memory Category: core Module: top Announced: 2000-11-01 Credits: [email protected] via OpenBSD...
HP-UX 9.x/10.x/11.x - cu Buffer Overflow
source: https://www.securityfocus.com/bid/1886/info cu is a unix utility that is used for communication between two hosts usually over phone lines. It is typically isntalled setuid root so that it can access communications hardware when executed by a regular user. The version of cu that ships wit...
FreeBSD-SA-00:62.top
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:62 Security Advisory FreeBSD, Inc. Topic: top allows reading of kernel memory REISSUED Category: core Module: top Announced: 2000-11-01 Reissued: 2000-11-06 Credits:...