132 matches found
Adobe Version Cue 1.0/1.0.1 - (-lib) Local Root Exploit (OSX)
No description provided by source. / Adobe Version Cue VCNativeOSX: local root exploit. dyld by: vade79/v9 [email protected] fakehalo/realhalo Adobe Version Cue's VCNative program allows un-privileged local users to load arbitrary librariesbundles while running setuid root. this is done via the -lib...
GNU AN Local Command Line Option Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8099/info A local buffer overflow has been reported for GNU an that may result in an attacker potentially obtaining elevated privileges. The vulnerability exists due to insufficient boundary checks performed on some...
Xtokkaetama 1.0 b-6 Nickname Local Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/8337/info xtokkaetama is prone to a locally exploitable buffer overflow vulnerability. This is due to insufficient bounds checking of the '-nickname' command line option, which could result in execution of arbitrary code ...
GNU GNATS 3.113 .1_6 Queue-PR Database Command Line Option Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8232/info A stack overflow vulnerability has been reported for the queue-pr utility of GNATS. The vulnerability occurs due to insufficient checks performed on the arguments to the '-d' commandline option. Successful...
HP-UX 10.x stmkfont Alternate Typeface Library Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/6836/info A buffer overflow vulnerability has been reported in the stmkfont utility shipped with HP-UX systems. The problem occurs due to insufficient bounds checking on user-suplied data to the alternate typeface library...
information leak via gnttab_setup_table on ARM
ISSUE DESCRIPTION When initialising an internal data structure on ARM platform Xen was not correctly initialising the memory containing the list of a domain's grant table pages. This list is returned by the GNTTABOPsetuptable subhypercall, leading to an information leak. IMPACT Malicious guest...
openSUSE Security Update : firefox / seamonkey / thunderbird (openSUSE-SU-2014:0212-1)
Mozilla Firefox was updated to version 27. Mozilla SeaMonkey was updated to 2.24, fixing similar issues as Firefox 27. Mozilla Thunderbird was updated to 24.3.0, fixing similar issues as Firefox 27. The Firefox 27 release brings TLS 1.2 support as a major security feature. It also fixes following...
UBUNTU-CVE-2013-2236
Stack-based buffer overflow in the newmsglsachangenotify function in the OSPFD API ospfapi.c in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allows remote attackers to cause a denial of service crash via a large LSA...
Design/Logic Flaw
Incomplete blacklist vulnerability in rssh before 2.3.4, when the rsync protocol is enabled, allows local users to bypass intended restricted shell access via the --rsh command line option...
UBUNTU-CVE-2012-2251
rssh 2.3.2, as used by Debian, Fedora, and others, when the rsync protocol is enabled, allows local users to bypass intended restricted shell access via a 1 "-e" or 2 "--" command line option...
DEBIAN-CVE-2011-1496
tmux 1.3 and 1.4 does not properly drop group privileges, which allows local users to gain utmp group privileges via a filename to the -S command-line option...
CVE-2011-1496
CVE-2011-1496 affects tmux 1.3 and 1.4. The issue is that tmux does not drop group privileges correctly, enabling a local user to gain utmp group privileges by supplying a crafted filename to the -S option. The vulnerability is confirmed by multiple advisories (Debian DSA-2212-1 and Fedora update...
CVE-2010-3441
Multiple buffer overflows in abcm2ps before 5.9.12 might allow remote attackers to execute arbitrary code via 1 a crafted input file, related to the PUT0 and PUT1 output macros; 2 a crafted input file, related to the trimtitle function; and possibly 3 a long -O option on a command line...
CVE-2010-3441
Multiple buffer overflows in abcm2ps before 5.9.12 might allow remote attackers to execute arbitrary code via 1 a crafted input file, related to the PUT0 and PUT1 output macros; 2 a crafted input file, related to the trimtitle function; and possibly 3 a long -O option on a command line...
CVE-2010-3441
Multiple buffer overflows in abcm2ps before 5.9.12 might allow remote attackers to execute arbitrary code via 1 a crafted input file, related to the PUT0 and PUT1 output macros; 2 a crafted input file, related to the trimtitle function; and possibly 3 a long -O option on a command line...
Fedora Update for libHX FEDORA-2010-12950
Check for the Version of libHX OpenVAS Vulnerability Test Fedora Update for libHX FEDORA-2010-12950 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
RedHat Update for rdesktop RHSA-2008:0725-01
Check for the Version of rdesktop OpenVAS Vulnerability Test RedHat Update for rdesktop RHSA-2008:0725-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
smcFanControl for Mac OS X buffer overflow
Stack buffer overflow on -k command line option parsing...
CVE-2008-2149
Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end...
Stack overflow
Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end...