CVE-2008-2538

Unspecified vulnerability in crontab on Sun Solaris 8 through 10, and OpenSolaris before snv93, allows local users to insert cron jobs into the crontab files of arbitrary users via unspecified vectors...

Design/Logic Flaw

Unspecified vulnerability in crontab on Sun Solaris 8 through 10, and OpenSolaris before snv93, allows local users to insert cron jobs into the crontab files of arbitrary users via unspecified vectors...

CVE-2008-2538

Unspecified vulnerability in crontab on Sun Solaris 8 through 10, and OpenSolaris before snv93, allows local users to insert cron jobs into the crontab files of arbitrary users via unspecified vectors...

CVE-2008-2538

CVE-2008-2538 affects Sun Solaris 8–10 and OpenSolaris before snv_93. The vulnerability allows a local user to insert cron jobs into arbitrary users’ crontab files via unspecified vectors, due to an unspecified flaw in crontab handling. Impact is local privilege escalation (crontab modification f...

CVE-2007-4621

Buffer overflow in crontab in IBM AIX 5.2 allows local users to gain privileges via long command line arguments...

Buffer overflow

Buffer overflow in crontab in IBM AIX 5.2 allows local users to gain privileges via long command line arguments...

CVE-2007-4621

Buffer overflow in crontab in IBM AIX 5.2 allows local users to gain privileges via long command line arguments...

CVE-2007-4621

CVE-2007-4621 describes a local privilege escalation in IBM AIX 5.2 via a buffer overflow in the crontab main function when copying user-supplied command line arguments into a fixed-size BSS buffer. Successful exploitation allows an attacker to execute arbitrary code with root privileges, requiri...

IBM AIX Crontab本地权限提升漏洞

BUGTRAQ ID: 26263 CVECAN ID: CVE-2007-4621 IBM AIX是一款商业性质的UNIX操作系统。 IBM AIX的crontab程序的主函数中存在缓冲区溢出漏洞，本地攻击者可能利用此漏洞提升权限。 在处理命令行参数时，crontab程序未经执行边界检查便将用户提供的参数拷贝到了固定大小的BSS缓冲区，因此攻击者可以覆盖BSS内存区域中所存储的大部分数据，导致以root权限执行任意指令。 IBM AIX 5.2 临时解决方法： 删除crontab程序的set-uid位。 厂商补丁： IBM ---...

HP-UX Security Patch : PHCO_24702

cumulative crontab/at/cron patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26237; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11";...

HP-UX Security Patch : PHCO_27141

cumulative crontab/at/cron patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26254; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2021/01/11";...

CVE-2007-3306

CVE-2007-3306 describes a PHP remote file inclusion in MiniBill 1.2.5. The flaw is in crontab/run_billing.php where an attacker can cause arbitrary PHP code execution by supplying a URL in the config[include_dir] parameter. The connected documents corroborate MiniBill 1.2.5 as affected and point ...

MiniBill 1.2.5 - run_billing.php Remote File Inclusion

MiniBill 1.2.5 - runbilling.php Remote File Inclusion ======================================================= MiniBill 2007-04-09 v1.2.5 Remote File include Vulnerabilities ======================================================= Found By : Abo0od , [email protected]...

MiniBill 1.2.5 - 'run_billing.php' Remote File Inclusion

======================================================= MiniBill 2007-04-09 v1.2.5 Remote File include Vulnerabilities ======================================================= Found By : Abo0od , [email protected] ======================================================= Homepage:...

MOAB-28-01-2007.rb.txt

!/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. 1 Stop crashdump from writing to /Library/Logs via chmod 000 /Library/Logs/CrashReporter 2 Make symlink to /Library/Logs/CrashReporter/knownprog.crash.log 3 Create a program with a modified LINKEDIT segment that...

Mac OS X 10.4.8 (8L2127) crashdump Privilege Escalation Exploit

Exploit for macOS platform in category local exploits =============================================================== Mac OS X 10.4.8 8L2127 crashdump Privilege Escalation Exploit =============================================================== !/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lanc...

MOAB-05-01-2007_cron.rb.txt

!/usr/bin/ruby c 2006 LMH code from the other exploit, porting Kevin Finisterre crontab rock and roll Second exploit for MOAB-05-01-2007, uses crontab. much more simple than the other one. And works like a charm. require 'fileutils' EVILCOMMANDS = "rm...

Mac OS X 10.4.8 DiskManagement BOM (cron) Privilege Escalation Exploit

No description provided by source. !/usr/bin/ruby c 2006 LMH lmh at info-pull.com code from the other exploit, porting Kevin Finisterre kflists at digitalmunition.com crontab rock and roll Second exploit for MOAB-05-01-2007, uses crontab. much more simple than the other one...

Apple Mac OSX 10.4.8 - DiskManagement BOM cron Local Privilege Escalation

Apple Mac OSX 10.4.8 - DiskManagement BOM cron Local Privilege Escalation !/usr/bin/ruby c 2006 LMH code from the other exploit, porting Kevin Finisterre crontab rock and roll Second exploit for MOAB-05-01-2007, uses crontab. much more simple than the other one. And works like a charm. require...

Mac OS X 10.4.8 DiskManagement BOM (cron) Privilege Escalation Exploit

Exploit for macOS platform in category local exploits ====================================================================== Mac OS X 10.4.8 DiskManagement BOM cron Privilege Escalation Exploit ====================================================================== !/usr/bin/ruby c 2006 LMH code...