404 matches found
CVE-1999-0126
SGI IRIX buffer overflow in xterm and Xaw allows root access...
CVE-1999-0122
Buffer overflow in AIX lchangelv gives root access...
CVE-1999-0334
In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access...
CVE-1999-0206
MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access...
Eicon Networks DIVA LAN ISDN Modem 1.0 Release 2.51.02.0 - Denial of Service
Eicon Networks DIVA LAN ISDN Modem 1.0 Release 2.51.02.0 - Denial of Service source: https://www.securityfocus.com/bid/665/info A vulnerability in the Diva LAN ISDN Modem allows remote malicious users to lock up the modem requiring a hard reset. The vulnerability manifests itself when a remote...
ipop3d.4.xx.bof.txt
Date: Sun, 7 Mar 1999 01:41:25 +0100 From: Michal Zalewski Overflow in CAC.Washington.EDU ipop3d 4.xx CAC.Washington.EDU ipop3d 4.xx, at least on Linux platform, has serious security hole. When data is read from so-called mailbox lock created in /tmp directory this happens under certain condition...
allaire.getfile.cfm.txt
Date: Thu, 11 Feb 1999 11:36:57 -0500 From: Cameron Childress To: [email protected] Subject: ACFUG List: Alert: Allaire Forums GetFile bug The problem outlined below seems to effect all Allaire Forums 2.0.x versions. Allaire has confirmed that the bug exists, and will be issuing a...
IMail IMAP Server Login Functions Remote Overflow
The remote host is running IMail IMAP server. The installed version is affected by a buffer overflow when handling a long user name, or a long password. An attacker, exploiting this flaw, could cause a denial of service, or possibly execute arbitrary code subject to the permissions of the IMAP...
University of Washington pop2d 4.4 - Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/283/info A buffer overflow vulnerability in pop2d version 4.4 or earlier allow malicious remote users to obtain access to the "nobody" user account. The pop2 and pop3 servers support the concept of an "anonymous proxy", whereby a remote user connecting...
Gordano NTMail 4.2 - Web File Access
Gordano NTMail 4.2 - Web File Access source: https://www.securityfocus.com/bid/279/info A vulnerability in Gordano's NTMail allows remote malicious users to steal local files. Gordano's NTMail is a Windows NT mail server program. One of its features is allowing administrators to configure the...
Oracle 8 - File Access
Oracle 8 - File Access source: https://www.securityfocus.com/bid/170/info A number of security file access security vulnerabilities in suid programs that are part of Oracle may be exploited to obtain the privileges of the 'oracle' user and full access to the database system. Only the Unix version...
CVE-1999-1276
fte-console in the fte package before 0.46b-4.1 does not drop root privileges, which allows local users to gain root access via the virtual console device...
[SECURITY] New versions of netstd fixes root exploit in rpc.mountd
Description The Program rpc.mountd is a mount daemon that handles NFS mounts. The version as shipped with current distributions of Linux contains a buffer overflow. Impact The overflow can be used as part of an attack to gain root access on the machine acting NFS server. We recommend you upgrade...
Ray Chan WWW Authorization Gateway 0.1 - Command Execution
source: https://www.securityfocus.com/bid/152/info A vulnerability exists in the WWW Authorization Gateway program written by Ray Chan. Version 1.0 fails to eliminate characters with special meaning to the shell prior to executing a command. As a result, an attacker can utilize certain characters...
Solaris 7.0 - ufsdump Local Buffer Overflow (1)
Solaris 7.0 - ufsdump Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/680/info A buffer overflow vulnerability in the /usr/lib/fs/ufs/ufsdump setuid program allows local users to obtain root and tty group access. The vulnerability is the result of 'ufsdump' not being able to...
Linux libc 5.3.12 (RedHat Linux 4.0 Slackware Linux 3.1) - libc NLSPATH
Linux libc 5.3.12 RedHat Linux 4.0 Slackware Linux 3.1 - libc NLSPATH // source: https://www.securityfocus.com/bid/379/info There is a serious vulnerability in linux libc affecting all Linux distributions using libc 5.2.18 and below. The vulnerability is centered around the NLSPATH environment...
Linux Kernel 2.02.0.33 - i_count Overflow (PoC)
Linux Kernel 2.02.0.33 - icount Overflow PoC / source: https://www.securityfocus.com/bid/388/info The icount member in the Linux inode structure is an unsigned short integer. It can be overflowed by mapping a single file too many times, allowing for a local user to possibly gain root access on th...
PHPFI 1.0FI 2.0FI 2.0 b10 - mylogmlog
PHPFI 1.0FI 2.0FI 2.0 b10 - mylogmlog source: https://www.securityfocus.com/bid/713/info The PHP/FI package which was originally written by Rasmus Lerdorf is an is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific featur...
SGI IRIX 6.4 - inpview Local Privilege Escalation
SGI IRIX 6.4 - inpview Local Privilege Escalation source: https://www.securityfocus.com/bid/381/info The inpview utility, included by SGI in its Irix operating system, contains a vulnerability that will allow any local user to obtain root access. inpview is part of the InPerson dektop video...
SGI IRIX 6.4 - 'inpview' Local Privilege Escalation
source: https://www.securityfocus.com/bid/381/info The inpview utility, included by SGI in its Irix operating system, contains a vulnerability that will allow any local user to obtain root access. inpview is part of the InPerson dektop video conferencing package. As it needs to access a video...