CVE-2011-2167

script-login in Dovecot 2.0.x before 2.0.13 does not follow the chroot configuration setting, which might allow remote authenticated users to conduct directory traversal attacks by leveraging a script...

Fedora Update for pure-ftpd FEDORA-2011-3349

Check for the Version of pure-ftpd OpenVAS Vulnerability Test Fedora Update for pure-ftpd FEDORA-2011-3349 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

[SECURITY] Fedora 14 Update: pure-ftpd-1.0.30-1.fc14

Pure-FTPd is a fast, production-quality, standard-comformant FTP server, based upon Troll-FTPd. Unlike other popular FTP servers, it has no known security flaw, it is really trivial to set up and it is especially designed for modern Linux and FreeBSD kernels setfsuid, sendfile, capabilities...

Nostromo 1.9.3 Directory Traversal

Advisory: nostromo nhttpd directory traversal leading to arbitrary command execution During a penetration test, RedTeam Pentesting discovered a directory traversal vulnerability leading to arbitrary command execution in the nostromo HTTP server. Details ======= Product: nostromo nhttpd Affected...

Security fix for the ALT Linux 9 package postgresql12 version 9.0.3-alt1

Feb. 2, 2011 Vladimir V Kamarzin 9.0.3-alt1 - 9.0.3 Fixes CVE-2010-4015. - Chroot scripts: exit silently when PGCHROOTDIR is not set. - Initscript: remove LOCKFILE when stopping the service...

Security fix for the ALT Linux 8 package postgresql10 version 9.0.3-alt1

Feb. 2, 2011 Vladimir V Kamarzin 9.0.3-alt1 - 9.0.3 Fixes CVE-2010-4015. - Chroot scripts: exit silently when PGCHROOTDIR is not set. - Initscript: remove LOCKFILE when stopping the service...

Security fix for the ALT Linux 8 package postgresql9.6 version 9.0.3-alt1

Feb. 2, 2011 Vladimir V Kamarzin 9.0.3-alt1 - 9.0.3 Fixes CVE-2010-4015. - Chroot scripts: exit silently when PGCHROOTDIR is not set. - Initscript: remove LOCKFILE when stopping the service...

Security fix for the ALT Linux 8 package postgresql12 version 9.0.3-alt1

Feb. 2, 2011 Vladimir V Kamarzin 9.0.3-alt1 - 9.0.3. Fixes CVE-2010-4015. - Chroot scripts: exit silently when PGCHROOTDIR is not set. - Initscript: remove LOCKFILE when stopping the service...

Security fix for the ALT Linux 8 package postgresql11 version 9.0.3-alt1

Feb. 2, 2011 Vladimir V Kamarzin 9.0.3-alt1 - 9.0.3. Fixes CVE-2010-4015. - Chroot scripts: exit silently when PGCHROOTDIR is not set. - Initscript: remove LOCKFILE when stopping the service...

rssh -- configuration restrictions bypass

Derek Martin rssh maintainer reports: John Barber reported a problem where, if the system administrator misconfigures rssh by providing too few access bits in the configuration file, the user will be given default permissions scp to the entire system, potentially circumventing any configured...

Fedora 11 : openssh-5.2p1-6.fc11 (2010-5429)

Rollback chroot patch Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

openssl: crash caused by a missing krb5_sname_to_principal() return value check

The ksslkeytabisavailable function in ssl/kssl.c in OpenSSL before 0.9.8n, when Kerberos is enabled but Kerberos configuration files cannot be opened, does not check a certain return value, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via SS...

Null pointer dereference

The ksslkeytabisavailable function in ssl/kssl.c in OpenSSL before 0.9.8n, when Kerberos is enabled but Kerberos configuration files cannot be opened, does not check a certain return value, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via SS...

CentOS 5 : openssh (CESA-2009:1287)

Updated openssh packages that fix a security issue, a bug, and add enhancements are now available for Red Hat Enterprise Linux 5. This update has been rated as having low security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure Shell protocol implementation. These...

linux/x86 break chroot 79 bytes

linux/x86 break chroot 79 bytes. Shellcode exploit for linx86 platform bt:/ ./pwn perl -e 'print "\x90"x189...

linux/x86 break chroot 87 bytes

No description provided by source. bt:/ ./pwn perl -e 'print "\x90"x181...

linux/x86 break chroot 87 bytes

Exploit for linux/x86 platform in category shellcode =============================== linux/x86 break chroot 87 bytes =============================== bt:/ ./pwn perl -e 'print "\x90"x181...

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS. A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux RHEL 5.4 and Fedora 11, allows local users to gain privileges via hard...

CVE-2009-2904

CVE-2009-2904 is a local privilege-escalation flaw in OpenSSH related to a Red Hat modification of the ChrootDirectory feature. The issue affects OpenSSH 4.8 used by sshd in OpenSSH 4.3 on Red Hat Enterprise Linux (RHEL) 5.4 and Fedora 11, allowing a local user to gain privileges via hard links t...

CVE-2009-2904

A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux RHEL 5.4 and Fedora 11, allows local users to gain privileges via hard links to setuid programs that use configuration files within the chroot directory, relate...