6 matches found
S.u.S.E. Linux 6.2 sscw HOME Environment Variable Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/656/info A buffer overflow vulnerability in sscw's handling of the HOME environment variable allows local users to gain root privileges. !/bin/bash Linux x86 exploit for /usr/bin/sccw on SuSE 6.2 -Brock Tellier...
SCO Open Server 5.0.5 X Library Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/638/info A buffer overflow vulnerability in the shared X library may allows local users to obtain higher privileges. Any setuid applications linked against the library are possibly vulnerable. The vulnerability is in the...
FreeBSD 3.3 xmindpath Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/839/info The version of xmindpath shipped with FreeBSD 3.3 can be locally exploited via overrunning a buffer of predefined length. It is possible to gain the effective userid of uucp through this vulnerability. It may be...
SCO Unixware 7.1 i2odialogd Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/876/info UnixWare is a variant of the Unix operating system originally written by SCO, and distributed and maintained by Caldera. i20dialogd is a daemon which provides a front-end for controlling the i20 subsystem. It is...
FreeBSD 3.3 - xmindpath Local Buffer Overflow
FreeBSD 3.3 - xmindpath Local Buffer Overflow / source: https://www.securityfocus.com/bid/839/info The version of xmindpath shipped with FreeBSD 3.3 can be locally exploited via overrunning a buffer of predefined length. It is possible to gain the effective userid of uucp through this...
SCO_OpenServer_exploit.txt
Greetings, OK, I lied about being done with my OpenServer audit. I have a couple of these left over, mostly because they weren't root-compromises. There is an overflow in /opt/K/SCO/Unix/5.0.5Eb/.softmgmt/var/usr/bin/cancel which will allow any user to gain lp privs. Note that this is NOT an...