93 matches found
Debian DSA-307-1 : gps - multiple vulnerabilities
gPS is a graphical application to watch system processes. In release 1.1.0 of the gps package, several security vulnerabilities were fixed, as detailed in the changelog : - bug fix on rgpsp connection source acceptation policy it was allowing any host to connect even when the /etc/rgpsp.conf file...
rssh -- file name disclosure bug
rssh expands command line paramters before invoking chroot. This could result in the disclosure to the client of file names outside of the chroot directory. A posting by the rssh author explains: The cause of the problem identified by Mr. McCaw is that rssh expanded command-line arguments prior t...
IBM DB2 - db2stop Format String Arbitrary Code Execution
IBM DB2 - db2stop Format String Arbitrary Code Execution source: https://www.securityfocus.com/bid/8989/info Multiple command-line parameter format string vulnerabilities have been discovered in various IBM DB2 binaries. Specifically, format-based functions are implemented erroneously within the...
IBM DB2 - db2govd Format String Arbitrary Code Execution
IBM DB2 - db2govd Format String Arbitrary Code Execution source: https://www.securityfocus.com/bid/8989/info Multiple command-line parameter format string vulnerabilities have been discovered in various IBM DB2 binaries. Specifically, format-based functions are implemented erroneously within the...
[SECURITY] [DSA-307-1] New gps packages fix multiple vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 307-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 27th, 2003 http://www.debian.org/security/faq -...
SCO Open Server 5.0.6 - recon Buffer Overflow
SCO Open Server 5.0.6 - recon Buffer Overflow source: https://www.securityfocus.com/bid/2560/info SCO OpenServer 5.0.6 and possibly earlier versions ships with a suid 'bin' executable called 'recon'. 'recon' is used to buffer and forward escape sequences from a user's input to timing-sensitive...
SCO OpenServer 5.0.6 - lpadmin Buffer Overflow
source: https://www.securityfocus.com/bid/2553/info SCO OpenServer 5.0.6 and possibly earlier versions ships with several suid 'bin' executables used in printer administration and related tasks. This includes lpadmin, a component used to manage and configure print destinations, devices and printe...
CVE-1999-0817
Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet...
CVE-1999-0817
CVE-1999-0817 affects the Lynx WWW client. The issue allows a remote attacker to specify command-line parameters that Lynx uses when invoking external programs to handle certain protocols (e.g., telnet). The underlying vulnerability is in how Lynx constructs/executes external command lines, enabl...
CVE-1999-0817
Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet...
CVE-1999-0817
Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet...
PT-1999-1371 · Lynx · Lynx
Name of the Vulnerable Software and Affected Versions: Lynx WWW client affected versions not specified Description: The issue allows a remote attacker to specify command-line parameters that Lynx uses when calling external programs to handle certain protocols, such as telnet. Recommendations: At...
ksrt.accelerated-x.bof.txt
Date: Sat, 26 Jun 1999 15:40:54 -0400 From: "KSRT Contact Account" To: [email protected] Subject: KSRT 011: Accelerated-X KSRT Advisory 011 Date: June 25, 1999 ID : accelx-bo-011 Affected Program: Xi Graphics, Inc.'s Accelerated-X Server 4.x, 5.x and possibly earlier versions. Author: Jordan...