Solaris Update for wheel mouse support vuid 117419-04

Check for the Version of wheel mouse support vuid OpenVAS Vulnerability Test Solaris Update for wheel mouse support vuid 117419-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Solaris Update for wheel mouse support vuid 117419-04

Check for the Version of wheel mouse support vuid OpenVAS Vulnerability Test Solaris Update for wheel mouse support vuid 117419-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Solaris 9 (x86) : 117419-04

SunOS 5.9x86: wheel mouse support vuid Patch. Date this patch was last updated by Sun : Jan/30/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...

Apple Mac OS X UserNotificationCenter privilege escalation

Application doesn't droup wheel group privileges...

Design/Logic Flaw

opiepasswd in One-Time Passwords in Everything OPIE in FreeBSD 4.10-RELEASE-p22 through 6.1-STABLE before 20060322 uses the getlogin function to determine the invoking user account, which might allow local users to configure OPIE access to the root account and possibly gain root privileges if a...

OPIE -- arbitrary password change

Problem Description The opiepasswd1 program uses getlogin2 to identify the user calling opiepasswd1. In some circumstances getlogin2 will return "root" even when running as an unprivileged user. This causes opiepasswd1 to allow an unpriviled user to configure OPIE authentication for the root user...

pinentry PIN entering dialogs application privilege escalation

sgid wheel is incorrectly set for application...

RsyncX vulnerabilities

Product: RsyncX is a frontend for rsync running on OS X, with additional features such as crontab editing. http://www.macosxlabs.org/rsyncx/rsyncx.html Problems: 1 RsyncX is installed setuid root and setgid wheel. Upon execution, the program drops root privileges only via seteuidgetuid . However ...

MacOSXLabs RsyncX 2.1 - Local Privilege Escalation

MacOSXLabs RsyncX 2.1 - Local Privilege Escalation source: https://www.securityfocus.com/bid/11211/info It is reported that RsyncX is prone to a local privilege escalation vulnerability. RsyncX is installed setuid root and setgid wheel. It is reported that RsyncX drops root privileges properly bu...

MacOSXLabs RsyncX 2.1 - Local Privilege Escalation

source: https://www.securityfocus.com/bid/11211/info It is reported that RsyncX is prone to a local privilege escalation vulnerability. RsyncX is installed setuid root and setgid wheel. It is reported that RsyncX drops root privileges properly but fails to drop setgid wheel privileges before...

ident2 double byte buffer overflow

Jack of RaptureSecurity reported a double byte buffer overflow in ident2. The bug may allow a remote attacker to execute arbitrary code within the context of the ident2 daemon. The daemon typically runs as user-ID nobody', but with group-ID wheel'...

CVE-2003-0388

pamwheel in Linux-PAM 0.78, with the trust option enabled and the useuid option disabled, allows local users to spoof log entries and gain privileges by causing getlogin to return a spoofed user name...

Linux PAM 0.77 - Pam_Wheel Module 'getlogin() Username' Spoofing Privilege Escalation

source: https://www.securityfocus.com/bid/7929/info A vulnerability has been discovered in the Linux-Pam pamwheel module. The problem exists in the way the module authenticates users under certain configurations. Specifically, if the module is configured to allow wheel group members to use the 's...

FreeBSD k5su problems

Wheel group membership is not checked fo k5su...

Security Advisory FreeBSD-SA-02:24.k5su

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:24.k5su Security Advisory The FreeBSD Project Topic: k5su utility does not honor wheel' group Category: kerberos5 Module: kerberos5/usr.bin/k5su Announced: 2002-05-20...

CVE-1999-1193

The "me" user in NeXT NeXTstep 2.1 and earlier has wheel group privileges, which could allow the me user to use the su command to become root...

CVE-2001-0196

inetd ident server in FreeBSD 4.x and earlier does not properly set group permissions, which allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group...

Дырка в inetd - ident (wheel file fragment reading)

Удаленно можно прочитать первые 16 символов кроме пробелов любого файла к которому имеет доступ группа wheel...

Security Advisory: FreeBSD-SA-01:11.inetd [REVISED]

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:11 Security Advisory FreeBSD, Inc. Topic: inetd ident server allows remote users to partially read arbitrary wheel-accessible files REVISED Category: core Module: inetd...

FreeBSD-SA-01:11.inetd

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:11 Security Advisory FreeBSD, Inc. Topic: inetd ident server allows remote users to partially read arbitrary wheel-accessible files REVISED Category: core Module: inetd...