WMVare privilege escalation

By manipulation environment variables it's possible to start application with root privileges then during virtual machine startup...

Top 1.x2.0 - HOME Environment Local Buffer Overflow

Top 1.x2.0 - HOME Environment Local Buffer Overflow // source: https://www.securityfocus.com/bid/8239/info A buffer overflow condition has been reported in top when handling environment variables of excessive length. This may result in an attacker potentially executing arbitrary code. / UHAGr...

Top 1.x/2.0 - 'HOME Environment' Local Buffer Overflow

// source: https://www.securityfocus.com/bid/8239/info A buffer overflow condition has been reported in top when handling environment variables of excessive length. This may result in an attacker potentially executing arbitrary code. / UHAGr CONFIDENTIAL SOURCE - DO NOT DISTRIBUTE Local...

XPCD 2.0.8 - HOME Environment Local Buffer Overflow

XPCD 2.0.8 - HOME Environment Local Buffer Overflow // source: https://www.securityfocus.com/bid/8370/info A problem in the handling of long strings in environment variables by xpcd may result in a buffer overflow condition. This may allow an attacker to gain unauthorized access to system...

Login Vulnerabilities on IRIX

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title : Login Vulnerabilities Number : 20030702-01-P Date : July 16, 2003 Reference: CVE CAN-2003-0574 Reference: SGI BUGS 850587 889119 Fixed in : IRIX 6.5.21 or patch 5182 SGI provides this information freely to the SGI user community for...

XPCD 2.0.8 - 'HOME Environment' Local Buffer Overflow

// source: https://www.securityfocus.com/bid/8370/info A problem in the handling of long strings in environment variables by xpcd may result in a buffer overflow condition. This may allow an attacker to gain unauthorized access to system resources. / xpcd 2.0.8 latest exploit written by r-code...

TerminatorX buffer overflows

Buffer overflow during environment variables parsing...

TerminatorX local root

Program: terminatorX 3.80 Impact: Users can gain local root Discovered: jaguar Writeup and exploits: Andrew Griffiths 1 Background 'terminatorX is a realtime audio synthesizer that allows you to "scratch" on digitally sampled audio data .wav, .au, .ogg, .mp3, etc. the way hiphop-DJs scratch on...

Sambar Server Multiple CGI Environment Variable Disclosure

The remote web server appears to be Sambar Server and makes available the 'environ.pl' and/or 'testcgi.exe' CGI scripts. These are included by default and reveal the server's installation directory along with other information that could prove useful to an attacker. Note that this version is also...

CVE-2003-0452

The CVE-2003-0452 issue affects the Operator Shell (OSH) up to version 1.7-11. A buffer overflow in OSH can be triggered by long environment variables or lengthy file redirections, enabling a local attacker to execute arbitrary code and bypass the shell’s restrictions. Public sources (including D...

GNU GNATS 3.113 - Environment Variable Buffer Overflow

// source: https://www.securityfocus.com/bid/8005/info It has been reported that GNATS is prone to a buffer overflow condition when parsing certain environment variables. An attacker can exploit this vulnerability by setting an overly long environment variable and invoking one of several GNATS...

DSA-329 osh - buffer overflows

Bulletin has no description...

Переполнение буфера в eterm (buffer overflow)

Переполнение буфера при разборе переменных окружения...

M-TECH P-Synch 6.2.5 - nph-psf.exe?css Remote File Inclusion

M-TECH P-Synch 6.2.5 - nph-psf.exe?css Remote File Inclusion source: https://www.securityfocus.com/bid/7747/info A remote file include vulnerability has been reported for P-Synch. Due to insufficient sanitization of some user-supplied URI variables, it is possible for a remote attacker to include...

S21SEC-018 - Vignette memory leak AIX Platform

ID: S21SEC-018-en Title: Vignette memory leak AIX Platform Date: 15/03/2003 Status: Vendor contacted and solution available Scope: Revelation of memory variables Platforms: AIX Author: ecruz Location: http://www.s21sec.com/es/avisos/s21sec-018-en.txt Release: External S 2 1 S E C...

Vignette 4.x5.0 - Memory Disclosure

Vignette 4.x5.0 - Memory Disclosure source: https://www.securityfocus.com/bid/7684/info Vignette is prone to an issue which may expose the contents of memory to remote attackers. This condition is due to a flaw in how StoryServer calculates the size of certain characters in URI variables, which m...

MediaMail buffer overflow

Buffer overflow during environment variables parsing...

AutomatedShops WebC 2.0/5.0 - Symbolic Link Following Configuration File

source: https://www.securityfocus.com/bid/7272/info It has been reported that WebC will execute in the directory of a symbolic link from which it is invoked. Because of this, it may be possible for a local user to load a configuration file that enabled dangerous variables. $ cd /tmp $ ln -s...

Platform Load Sharing Facility 45 - LSF_ENVDIR Local Command Execution

Platform Load Sharing Facility 45 - LSFENVDIR Local Command Execution source: https://www.securityfocus.com/bid/7655/info It has been reported that Load Sharing Facility LSF does not properly handle input in environment variables. Because of this, an attacker may be able to gain escalated...

Platform Load Sharing Facility 4/5 - 'LSF_ENVDIR' Local Command Execution

source: https://www.securityfocus.com/bid/7655/info It has been reported that Load Sharing Facility LSF does not properly handle input in environment variables. Because of this, an attacker may be able to gain escalated privileges on a vulnerable system. LSF 5.1 'lsadmin' local root exploit...