26 matches found
SRT2003-08-01-0126.txt
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
SRT2003-08-01-0126 - cdrtools local root exploit
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
cdrtools privilege escalation
rscsi utility allows unprivileged user to overwrite any file...
CVE-2003-0289
CVE-2003-0289 affects the cdrecord component of the cdRtools package (cdrecord, version 2.0). The vulnerability is a format-string issue in scsiopen.c (dev parameter) that enables local users to gain privileges. Public references note that this is a local-privilege-escalation vulnerability in cdr...
cdrtools2.0 Format String Vulnerability
---------------------------------------------------------------------------- PACKAGE : cdrtools VERSION : 2.0 SUMMARY : Format String SEVERITY : local root exploit if suid on several distros DATE: : 2003-05-05 ---------------------------------------------------------------------------- Hi, i woul...
CDRTools CDRecord 2.0 (Mandrake / Slackware) - Local Privilege Escalation
!/usr/bin/perl Cdrecord version 2.0 and local root exploit. wsxz@localhost buffer$ perl priv8cdr.pl 4 Using target number 4 Using Mr .dtors 0x808c82c Cdrecord 2.0 i586-mandrake-linux-gnu scsibus: -1 target: -1 lun: -1 Warning: Open by 'devname' is unintentional and not supported. /usr/bin/cdrecor...