31 matches found
CVE-2003-1366
CVE-2003-1366 affects OpenBSD versions 2.0–3.2 in the chpass utility, enabling local users to read portions of arbitrary files via a hard link attack on a temporary file used to store user database information. The vulnerability is described with a CVSS v2 base score of 3.3 (LOCAL, MEDIUM complex...
CVE-2003-1366
chpass in OpenBSD 2.0 through 3.2 allows local users to read portions of arbitrary files via a hard link attack on a temporary file used to store user database information...
BSD chpass (pw_error(3)) Local Root Exploit
No description provided by source. / TESO BSD chpass exploit - caddis [email protected] greets: !teso, !w00w00, hert!, ozsecurity, plus613 / include stdio.h char bsdshellcode = "\xeb\x16\x5e\x31\xc0\x8d\x0e\x89" "\x4e\x08\x89\x46\x0c\x8d\x4e\x08" "\x50\x51\x56\x50\xb0\x3b\xcd\x80"...
OpenBSD 2.x3.x - CHPass Temporary File Link File Content Revealing
OpenBSD 2.x3.x - CHPass Temporary File Link File Content Revealing source: https://www.securityfocus.com/bid/6748/info It has been reported that a problem with chpass included with OpenBSD may allow local users to gain access to the content of specific files. This vulnerability requires that line...
OpenBSD 2.x/3.x - CHPass Temporary File Link File Content Revealing
source: https://www.securityfocus.com/bid/6748/info It has been reported that a problem with chpass included with OpenBSD may allow local users to gain access to the content of specific files. This vulnerability requires that lines in the target file be constructed in a specific format. This...
BSD chpass (pw_error(3)) Local Root Exploit
Exploit for bsd platform in category local exploits =========================================== BSD chpass pwerror3 Local Root Exploit =========================================== / TESO BSD chpass exploit - caddis greets: !teso, !w00w00, hert!, ozsecurity, plus613 / include char bsdshellcode =...
BSD chpass - pw_error(3) Local Privilege Escalation
BSD chpass - pwerror3 Local Privilege Escalation / TESO BSD chpass exploit - caddis greets: !teso, !w00w00, hert!, ozsecurity, plus613 / include char bsdshellcode = "\xeb\x16\x5e\x31\xc0\x8d\x0e\x89" "\x4e\x08\x89\x46\x0c\x8d\x4e\x08" "\x50\x51\x56\x50\xb0\x3b\xcd\x80"...
Format string vulnerability in libutil pw_error(3) function
Overview There is an input validation vulnerability in the OpenBSD libutil system library that allows local users to gain superuser access via the chpass utility. Description On June 30, 2000, the OpenBSD development team repaired an input validation vulnerability in the pwerror function of the...
Security Advisory: FreeBSD-SA-00:58.chpass
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:58 Security Advisory FreeBSD, Inc. Topic: chpass family contains local root vulnerability Category: core Module: chfn/chpass/chsh/ypchfn/ypchpass/ypchsh/passwd Announced:...
Серьезная дырка воо всех утилитах семейства chpass
Утилиты chfn/chpass/chsh/ypchfn/ypchpass/ypchsh/passwd содержат уязвимость форматной строки...
FreeBSD-SA-00:58.chpass
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:58 Security Advisory FreeBSD, Inc. Topic: chpass family contains local root vulnerability Category: core Module: chfn/chpass/chsh/ypchfn/ypchpass/ypchsh/passwd Announced:...