16 matches found
CVE-2006-4842
creationtimestamp| type| source ---|---|--- 2018-09-17 22:21:29+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/solaris/local/libnsprnsprlogfileprivesc.rb 2018-09-18 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/45433 2025-02-06...
Solaris 10 (sparc) : 119213-37
NSSNSPRJSS 3.34: NSPR 4.17 / NSS 3.34 /. Date this patch was last updated by Sun : May/16/18 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'compat.inc'; if description scriptid109911; scriptversion"1.8";...
Solaris 10 (sparc) : 119213-38
NSSNSPRJSS 3.35: NSPR 4.18 / NSS 3.35 / JSS 4.3.2. Date this patch was last updated by Sun : May/16/18 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid109882; scriptversion"1.6";...
Solaris 10 (x86) : 119214-38
NSSNSPRJSS 3.35x86: NSPR 4.18 / NSS 3.35 / JSS 4.3.2. Date this patch was last updated by Sun : May/16/18 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid109884; scriptversion"1.6";...
Solaris 10 (sparc) : 119213-33
NSSNSPRJSS 3.21: NSPR 4.11 / NSS 3.21 /. Date this patch was last updated by Sun : Mar/22/16 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 10 (sparc) : 119213-27 (BEAST)
NSSNSPRJSS 3.13.1: NSPR 4.8.9 / NSS 3.13.1 / JSS 4.3.2. Date this patch was last updated by Sun : Feb/08/12 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 10 (sparc) : 119213-32
NSSNSPRJSS 3.17.4: NSPR 4.10.7 / NSS 3.17.4 / JSS 4.3.2. Date this patch was last updated by Sun : Dec/24/15 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 10 (sparc) : 119213-31
NSSNSPRJSS 3.17.2: NSPR 4.10.7 / NSS 3.1. Date this patch was last updated by Sun : Feb/19/15 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Local Root Exploit
No description provided by source. !/bin/sh $Id: raptorlibnspr2,v 1.4 2006/10/16 11:50:48 raptor Exp $ raptorlibnspr2 - Solaris 10 libnspr LDPRELOAD exploit Copyright c 2006 Marco Ivaldi [email protected] Local exploitation of a design error vulnerability in version 4.6.1 of NSPR, as include...
Sun Solaris Netscape Portable Runtime API Local Privilege Escalation Vulnerabili
CVE-2006-4842 The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this issue allows an attacker to gain superuser privileges, completely compromising the affected computer. Version 4.6.1 runni...
Solaris 10 libnspr - Constructor Arbitrary File Creation Privilege Escalation (3)
Solaris 10 libnspr - Constructor Arbitrary File Creation Privilege Escalation 3 !/bin/sh $Id: raptorlibnspr3,v 1.1 2006/10/24 15:54:57 raptor Exp $ raptorlibnspr3 - Solaris 10 libnspr constructor exploit Copyright c 2006 Marco Ivaldi Local exploitation of a design error vulnerability in version...
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation (2)
source: https://www.securityfocus.com/bid/20471/info The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this issue allows an attacker to gain superuser privileges, completely compromising the...
Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Privilege Escalation (2)
Solaris 10 libnspr - LDPRELOAD Arbitrary File Creation Privilege Escalation 2 !/bin/sh $Id: raptorlibnspr2,v 1.4 2006/10/16 11:50:48 raptor Exp $ raptorlibnspr2 - Solaris 10 libnspr LDPRELOAD exploit Copyright c 2006 Marco Ivaldi Local exploitation of a design error vulnerability in version 4.6.1...
Immunity Canvas: CVE_2006_4842
Name| CVE20064842 ---|--- CVE| CVE-2006-4842 Exploit Pack| CANVAS Description| CVE-2006-4842: libnspr2 Notes| CVE Name: CVE-2006-4842 VENDOR: Sun VersionsAffected: 10 Repeatability: unlimited CVE URL: https://vulners.com/cve/CVE-2006-4842 CVSS: 3.6...
CVE-2006-4842
The Netscape Portable Runtime NSPR API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files...
CVE-2006-4842
CVE-2006-4842 is documented as a local privilege-escalation in Netscape Portable Runtime (libnspr) where LIBNSPR prior to 4.6.3 allows the user to influence the log file via the NSPR_LOG_FILE environment variable. Evidence in connected docs shows Solaris-specific context: unpatched Solaris system...