8018 matches found
Oracle (oidldapd connect) - Local Command Line Overflow
Oracle oidldapd connect - Local Command Line Overflow / Exploit Code for oidldapd in Oracle 8.1.6 8ir2 for Linux. I tested in RH 6.2 and 6.1. This code is a bullshit i know please no comments about ;-. If someone exports this to Sparc please tell me. synopsis: buffer overflow in oidldapd impact:...
CVE-2000-0695
Buffer overflows in pgxconfig in the Raptor GFX configuration tool allow local users to gain privileges via command line options...
Security bugs in nokia voyager, BO dev.
Voyager works with a multipurposes cgi called htmlpage that make a call to htmlgen with a filename as a template script. Htmlgen produce the final html page returned by apache. if u test this kind of url:...
CVE-2000-0752
The CVE-2000-0752 entry concerns a buffer overflow in brouted (FreeBSD and possibly other OSes) that enables local users to gain root privileges via long command line arguments. Affected component: brouted, a routing daemon/util in the OS. Root cause: unchecked/buffer overflow when handling exten...
CVE-2000-0695
Buffer overflows in pgxconfig in the Raptor GFX configuration tool allow local users to gain privileges via command line options...
CVE-2000-0752
Buffer overflows in brouted in FreeBSD and possibly other OSes allows local users to gain root privileges via long command line arguments...
New Tool: initd_.sh;
/ Attachment did not send... resending sorry for the bulk / Heyas ; I wrote this tool in the last couple of days to see if I could actually implement a program that would automatically attack local binaries and attempt to find exploits in respect to buffer overflows via command line switches...
[COVERT-2000-06] Initialized Data Overflow in Xlock
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Network Associates, Inc. COVERT Labs Security Advisory May 29, 2000 Initialized Data Overflow in Xlock COVERT-2000-06 o Synopsis An implementation vulnerability in xlock allows global variables in the initialized data section of memory to be...
Netopia R-series Routers 4.6.2 - Modifying SNMP Tables
Netopia R-series Routers 4.6.2 - Modifying SNMP Tables source: https://www.securityfocus.com/bid/1177/info All R-series platforms with firmware between 4.3.8 and 4.6.2 inclusive allow users who already have access to the router to modify SNMP tables which they should not be able to access. The...
Netopia R-series Routers 4.6.2 - Modifying SNMP Tables
source: https://www.securityfocus.com/bid/1177/info All R-series platforms with firmware between 4.3.8 and 4.6.2 inclusive allow users who already have access to the router to modify SNMP tables which they should not be able to access. The router has a command-line mode that is reached by typing...
CVE-2000-0186
Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument...
GeoCel WindMail 3.0 - Remote File Read
GeoCel WindMail 3.0 - Remote File Read source: https://www.securityfocus.com/bid/1073/info WindMail is a command-line mailer that can be integrated with perl cgi applications to create form-mail capability for a website. WindMail 3.0 and possibly previous versions can be used to retrieve any asci...
GeoCel WindMail 3.0 - Remote File Read
source: https://www.securityfocus.com/bid/1073/info WindMail is a command-line mailer that can be integrated with perl cgi applications to create form-mail capability for a website. WindMail 3.0 and possibly previous versions can be used to retrieve any ascii file that the webserver has read acce...
CVE-2000-0186
Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument...
CVE-1999-0817
Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet...
CVE-1999-0817
CVE-1999-0817 affects the Lynx WWW client. The issue allows a remote attacker to specify command-line parameters that Lynx uses when invoking external programs to handle certain protocols (e.g., telnet). The underlying vulnerability is in how Lynx constructs/executes external command lines, enabl...
CVE-1999-0960
The CVE-1999-0960 entry concerns the IRIX cdplayer component. The vulnerability allows local users to create directories in arbitrary locations via a command line option, indicating potential abuse of filesystem operations by manipulating the cdplayer’s command-line parameters. The available refe...
CVE-1999-0817
Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet...
CVE-1999-1334
Multiple buffer overflows in filter command in Elm 2.4 allows attackers to execute arbitrary commands via 1 long From: headers, 2 long Reply-To: headers, or 3 via a long -f filterfile command line argument...
sco_bof.txt
Subject: 19 SCO 5.0.5+Skunware98 buffer overflows To: [email protected] Greetings, After some light security auditing ; I've found approximately nineteen buffer overflows in various SCO 5.0.5+Skunkware98 programs. This was, by no means, a comprehensive audit of SCO's su/gids so I'm sure...