957 matches found
Code injection
Unspecified vulnerability in Sun Fire V215 Server, when using XVR-100 graphic cards on system boards with part number 375-3463 and a hardware dash level -04 or later, allows remote attackers to cause a denial of service panic via unknown vectors...
Ubuntu 8.04 LTS / 8.10 : dash vulnerability (USN-732-1)
Wolfgang M. Reimer discovered that dash, when invoked as a login shell, would source .profile files from the current directory. Local users may be able to bypass security restrictions and gain root privileges by placing specially crafted .profile files where they might get sourced by other dash...
Ubuntu: Security Advisory (USN-732-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
dash privilege esclation
privilege esccalation with .profile...
CVE-2009-0854
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory...
Design/Logic Flaw
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory...
CVE-2009-0854
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory...
CVE-2009-0854
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory...
CVE-2009-0854
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users to execute arbitrary code via a Trojan horse .profile file in the current working directory...
CVE-2009-0854
CVE-2009-0854 affects dash 0.5.4 when used as a login shell, allowing local users to execute arbitrary code via a Trojan horse .profile in the current working directory. The Ubuntu advisory USN-732-1 and security data confirm the vulnerability and list fixed package versions: dash_0.5.4-8ubuntu1....
USN-732-1: dash vulnerability
Wolfgang M. Reimer discovered that dash, when invoked as a login shell, would source .profile files from the current directory. Local users may be able to bypass security restrictions and gain root privileges by placing specially crafted .profile files where they might get sourced by other dash...
Linux/x86 - execve(/bin/dash) Shellcode (49 bytes)
Linux/x86 - execve/bin/dash Shellcode 49 bytes. Shellcode exploit for Linuxx86 platform / Shellcode length: 49 Author: Chroniccommand /bin/dash My first attempt at shellcode Poison security / include //49 bytes char shellcode = "\xeb\x18\x5e\x31\xc0\x88\x46\x09\x89\x76\x0a"...
DEBIAN-CVE-2005-1039
Race condition in Core Utilities coreutils 5.2.1, when 1 mkdir, 2 mknod, or 3 mkfifo is running with the -m switch, allows local users to modify permissions of other files...
Sharepoint 2003 installation fails and account password revealed in setup log
System tested/affected: WSS, SharePoint 2003 - Hebrew localized version Details: I have a domain user account which has a complex password, including a leading dash -. After installing SPS components which includes WSS, I was prompted to enter database access account, at which point I entered the...
AZL-36937 CVE-2002-0129 affecting package efax 0.9a-34
efax 0.9 and earlier, when installed setuid root, allows local users to read arbitrary files via the -d option, which prints the contents of the file in a warning message...
CVE-2026-45068: Argument Injection in SendmailTransport via Dash-Prefixed Recipient Address
More info at https://symfony.com/cve-2026-45068...
CVE-2026-45068: Argument Injection in SendmailTransport via Dash-Prefixed Recipient Address
More info at https://symfony.com/cve-2026-45068...