EUVD-2007-4400

Malware in sbrugna...

polkit: Temporary auth hijacking via PID reuse and non-atomic fork

A vulnerability was found in polkit. When authentication is performed by a non-root user to perform an administrative task, the authentication is temporarily cached in such a way that a local attacker could impersonate the authorized process, thus gaining access to elevated privileges...

USN-3908-1: Linux kernel vulnerability

Jann Horn discovered a race condition in the fork system call in the Linux kernel. A local attacker could use this to gain access to services that cache authorizations...

polkit: Temporary auth hijacking via PID reuse and non-atomic fork

A vulnerability was found in polkit. When authentication is performed by a non-root user to perform an administrative task, the authentication is temporarily cached in such a way that a local attacker could impersonate the authorized process, thus gaining access to elevated privileges...

Security Bulletin: Information Disclosure vulnerability affects IBM® DB2® LUW (CVE-2017-1150)

Summary When a table is renamed and a new table is created with the old name, users who had access on the old table may be able to access the new table. Vulnerability Details A user may incorrectly acquire privileges on a table if the table is created with the same name as a previously renamed...

OpenSSH < 1.2.3 xauth Session Highjacking

According to its banner, the remote host is running a version of OpenSSH earlier than 1.2.3. Such versions are affected by a session highjacking vulnerability. By default, ssh clients negotiate to forward X connections by using the xauth program to place cookies in the authorization cache of the...

IPFilter 3.x - Fragment Rule Bypass

source: https://www.securityfocus.com/bid/2545/info IPFilter is a packet filtering implementation that is in wide use on a variety of Unix systems. There exists a vulnerability in IPFilter that can allow an attacker to communicate with blocked ports on hosts behind an IPFilter firewall. The...