Lucene search
+L

733 matches found

securityvulns
securityvulns
added 2000/04/17 12:0 a.m.43 views

XFree86 server overflow - exploit issues

While trying to exploit this overflow, I noticed that the problem lies in lovely strcpy call, which overwrites stack. Unfortunately, any 'offending' non-alphanumeric characters are replaced with '' somewhere before. Uh, most of people will say "it's impossible to write alphanumeric shellcode, so ...

7.2AI score
Exploits0
NVD
NVD
added 2000/04/16 4:0 a.m.18 views

CVE-2000-0285

Buffer overflow in XFree86 3.3.x allows local users to execute arbitrary commands via a long -xkbmap parameter...

7.2CVSS7.3AI score0.00543EPSS
Exploits1References2
CVE
CVE
added 2000/02/04 5:0 a.m.68 views

CVE-1999-0434

The CVE-1999-0434 entry documents a vulnerability in the XFree86 xfs command where a symlink attack enables local users to create files in restricted directories, potentially leading to privilege escalation or a denial of service. Connected sources corroborate the issue as a symlink-based file cr...

7.5CVSS7.1AI score0.0111EPSS
Exploits0References1Affected Software5
Cvelist
Cvelist
added 2000/02/04 5:0 a.m.24 views

CVE-1999-0434

XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service...

6.8AI score0.0111EPSS
Exploits0References1
CVE
CVE
added 1999/09/29 4:0 a.m.76 views

CVE-1999-0433

XFree86 startx is affected by a symlink attack allowing local users to create files in restricted directories, potentially gaining privileges or causing a denial of service. The provided documents do not specify affected versions or a fix; one PT Security entry notes no information about a newer ...

4.6CVSS7.1AI score0.00713EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 1999/09/29 4:0 a.m.36 views

CVE-1999-0433

XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service...

6.8AI score0.00713EPSS
Exploits0References1
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.36 views

xfs.txt

Bug in xfs Lukasz Trabinski [email protected] Tue, 30 Mar 1999 00:14:34 +0200 Hello, I hope that's information will be useful for making new patch for XFree86. I found bug in xfs Packet XFree86-xfs-3.3.3.1-1 in RedHat 5.1 and probably in RedHat 5.2 updates, too Xfs is a font server for...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.26 views

xfree86.suse.txt

Date: Sun, 28 Mar 1999 23:20:58 +0200 From: Marc Heuse To: [email protected] Subject: SuSE Security Announcement - XFree86 -----BEGIN PGP SIGNED MESSAGE----- SuSE Security Announcement Package: xf86-3.3.3-5 Date: Sun Mar 28 12:26:39 CEST 1999 Affected: unix operating systems using xfree86 A...

7.4AI score
Exploits0
NVD
NVD
added 1999/03/30 5:0 a.m.23 views

CVE-1999-0434

XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service...

7.5CVSS6.8AI score0.0111EPSS
Exploits0References1
NVD
NVD
added 1999/03/21 5:0 a.m.26 views

CVE-1999-0433

XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service...

4.6CVSS6.8AI score0.00713EPSS
Exploits0References1
NVD
NVD
added 1997/03/04 5:0 a.m.11 views

CVE-1999-1489

Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument...

7.2CVSS0.01056EPSS
Exploits1References2
Exploit DB
Exploit DB
added 1997/03/04 12:0 a.m.29 views

Slackware Linux 3.1 - '/usr/X11/bin/SuperProbe' Local Buffer Overflow

/ source: https://www.securityfocus.com/bid/364/info superprobe is an program supplied with XFree86 that helps determine video hardware. It is shipped with Slackware Linux 3.1 and is installed setuid root. There is an exploitable strcpy buffer overflow in the TestChip function which allows for a...

7AI score
Exploits0
exploitpack
exploitpack
added 1997/03/04 12:0 a.m.13 views

Slackware Linux 3.1 - usrX11binSuperProbe Local Buffer Overflow

Slackware Linux 3.1 - usrX11binSuperProbe Local Buffer Overflow / source: https://www.securityfocus.com/bid/364/info superprobe is an program supplied with XFree86 that helps determine video hardware. It is shipped with Slackware Linux 3.1 and is installed setuid root. There is an exploitable...

0.5AI score
Exploits0
Rows per page
Query Builder