CVE-2010-2066

The mextcheckarguments function in fs/ext4/moveextent.c in the Linux kernel before 2.6.35 allows local users to overwrite an append-only file via a MOVEEXT ioctl call that specifies this file as a donor...

kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files

The mextcheckarguments function in fs/ext4/moveextent.c in the Linux kernel before 2.6.35 allows local users to overwrite an append-only file via a MOVEEXT ioctl call that specifies this file as a donor...

linux/x86 append "/etc/passwd" & exit() 107 bytes

No description provided by source. view source print? / appendpasswd.c Payload: Adds the string: toor::0:0:t00r:/root:/bin/bash to /etc/passwd thereby adding a password-less root account with login name "toor" Platform: linux/x86 Size: 107 bytes Author: $andman / / 08049054 start: 8049054: eb 38...

linux/x86 append ""/etc/passwd"" & exit() 107 bytes

No description provided by source. / appendpasswd.c Payload: Adds the string: toor::0:0:t00r:/root:/bin/bash to /etc/passwd thereby adding a password-less root account with login name "toor" Platform: linux/x86 Size: 107 bytes Author: $andman / / 08049054 start: 8049054: eb 38 jmp 804908e callfun...

linux/x86 append "/etc/passwd" & exit 107 bytes

linux/x86 append "/etc/passwd" & exit 107 bytes. Shellcode exploit for linx86 platform / appendpasswd.c Payload: Adds the string: toor::0:0:t00r:/root:/bin/bash to /etc/passwd thereby adding a password-less root account with login name "toor" Platform: linux/x86 Size: 107 bytes Author: $andman / ...

DEBIAN-CVE-2009-4193

Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the /tmp/merkaartor.log temporary file...

Design/Logic Flaw

Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the /tmp/merkaartor.log temporary file...

CVE-2009-4193

Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the /tmp/merkaartor.log temporary file...

kernel security and bug fix update

2.4.21-63.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - io to nfs partition hangs ora 5088963 - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli 2.4.21-63.EL - fs: fix pipe nul...

Buffer overflow

Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and possibly other versions before 3.9g2, allows remote authenticated users to cause a denial of service crash and possibly execute arbitrary code via a long first argument to the APPEND command, a different vector than CVE-2008-1497 a...

CVE-2008-7182

Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and possibly other versions before 3.9g2, allows remote authenticated users to cause a denial of service crash and possibly execute arbitrary code via a long first argument to the APPEND command, a different vector than CVE-2008-1497 a...

Mandriva Linux Security Advisory : kernel (MDVSA-2008:224-1)

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The error-reporting functionality in 1 fs/ext2/dir.c, 2 fs/ext3/dir.c, and possibly 3 fs/ext4/dir.c in the Linux kernel 2.6.26.5 does not limit the number of printk console messages that report directory corruption, whic...

Ubuntu: Security Advisory (USN-636-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: don't allow splice() to files opened with O_APPEND

The dosplicefrom function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the OAPPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file...

kernel: don't allow splice() to files opened with O_APPEND

The dosplicefrom function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the OAPPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file...

linux/x86 append rsa key to /root/.ssh/authorized_keys2 295 bytes

Exploit for linux/x86 platform in category shellcode ================================================================= linux/x86 append rsa key to /root/.ssh/authorizedkeys2 295 bytes ================================================================= / linux/x86 shellcode to append rsa key to...

linux/x86 append rsa key to /root/.ssh/authorized_keys2 295 bytes

No description provided by source. / linux/x86 shellcode to append rsa key to /root/.ssh/authorizedkeys2 keys found at http://xenomuta.tuxfamily.org/exploits/authkey/ ssh -i idrsapwn root@pwned-host 295 bytes by XenoMuta | |/ / / |/ / / / | / / / / /|/ / / / / / / / / / / / / // / / / / // / //...

linux/x86 - append rsa key to /root/.ssh/authorized_keys2 295 bytes

linux/x86 append rsa key to /root/.ssh/authorizedkeys2 295 bytes. Shellcode exploit for linx86 platform / linux/x86 shellcode to append rsa key to /root/.ssh/authorizedkeys2 keys found at http://xenomuta.tuxfamily.org/exploits/authkey/ ssh -i idrsapwn root@pwned-host 295 bytes by XenoMuta | |/ / ...

CVE-2008-5155

mail2sms.sh in smsclient 2.0.8z allows local users to overwrite arbitrary files via a symlink attack on a 1 /tmp/header. or 2 /tmp/body. temporary file, or append data to arbitrary files via a symlink attack on the 3 /tmp/sms.log temporary file...

CVE-2008-4554

The dosplicefrom function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the OAPPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file...