132 matches found
CVE-2008-2149
Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end...
CVE-2007-5764
Buffer overflow in the pioout program in printers.rte in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long command line option...
Buffer overflow
Buffer overflow in the pioout program in printers.rte in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long command line option...
CVE-2006-0745
X.Org server xorg-server 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and 1 execute arbitrary code via the -modulepath command line optio...
CVE-2005-2943
Stack-based buffer overflow in sendmail in XMail before 1.22 allows remote attackers to execute arbitrary code via a long -t command line option...
CVE-2005-2807
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option...
Adobe Version Cue 1.0/1.0.1 (OSX) - '-lib' Local Privilege Escalation
/ Adobe Version Cue VCNativeOSX: local root exploit. dyld by: vade79/v9 [email protected] fakehalo/realhalo Adobe Version Cue's VCNative program allows un-privileged local users to load arbitrary libraries"bundles" while running setuid root. this is done via the "-lib" command-line option. note:...
SecureCRT - Remote Command Execution
======================================================================== = SecureCRT - Remote Command Execution = = Vendor Update: = http://www.vandyke.com/download/securecrt/index.html = = Affected Software: = SecureCRT V4.1, V4.0 and probably lower = = Public disclosure on November 23, 2004...
CVE-2003-0709
Buffer overflow in the whois client, which is not setuid but is sometimes called from within CGI programs, may allow remote attackers to execute arbitrary code via a long command line option...
CVE-2003-0579
uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by providing a pathname that is under control of the user...
GNU GNATS 3.113.1_6 - Queue-PR Database Command Line Option Buffer Overflow
GNU GNATS 3.113.16 - Queue-PR Database Command Line Option Buffer Overflow source: https://www.securityfocus.com/bid/8232/info A stack overflow vulnerability has been reported for the queue-pr utility of GNATS. The vulnerability occurs due to insufficient checks performed on the arguments to the...
DSA-350 falconseye - buffer overflow
Bulletin has no description...
CVE-2003-0535
Buffer overflow in xbl 1.0k and earlier allows local users to gain privileges via a long -display command line option...
GNU GNATS 3.0 02 - PR-Edit Command Line Option Heap Corruption
GNU GNATS 3.0 02 - PR-Edit Command Line Option Heap Corruption source: https://www.securityfocus.com/bid/8003/info A heap overflow vulnerability has been reported for the pr-edit utility of GNATS. The vulnerability occurs due to insufficient checks performed on the arguments to the '-d' commandli...
GNU GNATS 3.0 02 - PR-Edit Command Line Option Heap Corruption
source: https://www.securityfocus.com/bid/8003/info A heap overflow vulnerability has been reported for the pr-edit utility of GNATS. The vulnerability occurs due to insufficient checks performed on the arguments to the '-d' commandline option. Successful exploitation may result in the execution ...
CVE-2003-0358
Buffer overflow in 1 nethack 3.4.0 and earlier, and 2 falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option...
CVE-2003-0358
Buffer overflow in 1 nethack 3.4.0 and earlier, and 2 falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option...
CVE-2003-0358
Buffer overflow in 1 nethack 3.4.0 and earlier, and 2 falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option...
2fax buffer overflow
Buffer overflow in -bpcx command line option...
QNX RTOS 4.25 - CRTTrap File Disclosure
QNX RTOS 4.25 - CRTTrap File Disclosure source: https://www.securityfocus.com/bid/4901/info The QNX RTOS crttrap binary includes a command-line option for specifying a configuration file. crttrap is installed setuid by default. crttrap Local attackers may specify an arbitrary system file in place...