EUVD-2001-0452

Malware in sbrugna...

GnomeHack Local Buffer Overflow Exploit (gid=games)

No description provided by source. / gnomehack local buffer overflow. gid=games60 Author: Cody Tubbs loophole of hhp. www.hhp-programming.net / [email protected] 12/17/2000 Tested on Debian 2.2, kernel 2.2.17 - x86. sgid games60 by default. bash-2.03$ id uid=1000loophole gid=501noc bash-2.03$ ./...

Debian Security Advisory DSA 143-1 (krb5)

The remote host is missing an update to krb5 announced via advisory DSA 143-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 086-1 (ssh-nonfree, ssh-socks)

The remote host is missing an update to ssh-nonfree, ssh-socks announced via advisory DSA 086-1. OpenVAS Vulnerability Test $Id: deb0861.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 086-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 130-1 (ethereal)

The remote host is missing an update to ethereal announced via advisory DSA 130-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 086-1 (ssh-nonfree, ssh-socks)

The remote host is missing an update to ssh-nonfree, ssh-socks announced via advisory DSA 086-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

mount exploit for glibc locale bug

No description provided by source. / mount exploit for glibc locale bug tested on redhat 6.2 and slackware 7.0 and debian 2.2 Debian 2.2 mount-2.10f : ./mnt -n 136 -a 0x080589a0 -i 192 Redhat 6.2 mount-2.10f : ./mnt -n 114 -a 0x080565dc -i 112 compiled on rh 6.2 mount-2.10m: ./mnt -n 114 -a...

Debian 2.2 /usr/bin/pileup Local Root Exploit

No description provided by source. / pileup-xpl.c - local root exploit by core Friday the 13th, July 2001 based almost entirely on code by Cody Tubbs loophole of hhp $ ./pileup-xpl pileup-xpl by core 2001 - beep beep root! usage: ./pileup-xpl offset align0..3 Ret-addr: 0xbfffe09c, offset: 0, alig...

Debian DSA-031-2 : sudo - buffer overflow

Todd Miller announced a new version of sudo which corrects a buffer overflow that could potentially be used to gain root privileges on the local system. The fix from sudo 1.6.3p6 is available in sudo 1.6.2p2-1potato1 for Debian 2.2 potato. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Debian DSA-136-1 : openssl - multiple remote exploits

The OpenSSL development team has announced that a security audit by A.L. Digital Ltd and The Bunker, under the DARPA CHATS program, has revealed remotely exploitable buffer overflow conditions in the OpenSSL code. Additionally, the ASN1 parser in OpenSSL has a potential DoS attack independently...

Debian DSA-032-1 : proftpd - proftpd running with incorrect userid, erroneous file removal

The following problems have been reported for the version of proftpd in Debian 2.2 potato : - There is a configuration error in the postinst script, when the user enters 'yes', when asked if anonymous access should be enabled. The postinst script wrongly leaves the 'run as uid/gid root'...

[SECURITY] [DSA 137-1] New mm packages fix insecure temporary file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 137-1 [email protected] http://www.debian.org/security/ Martin Schulze July 30th, 2002 - -------------------------------------------------------------------------- Package : mm Vulnerability...

[SECURITY] [DSA-130-1] memory allocation error in ethereal

Package: ethereal Vulnerability: remotely triggered memory allocation error Debian-specific: no Ethereal versions prior to 0.9.3 were vulnerable to an allocation error in the ASN.1 parser. This can be triggered when analyzing traffic using the SNMP, LDAP, COPS, or Kerberos protocols in ethereal...

[SECURITY] [DSA 119-1] ssh channel bug

Package: openssh Vulnerability: local root exploit, remote client exploit Debian-specific: no Joost Pol [email protected] reports that OpenSSH versions 2.0 through 3.0.2 have an off-by-one bug in the channel allocation code. This vulnerability can be exploited by authenticated users to gain root...

CVE-2001-0456

Summary: CVE-2001-0456 affects ProFTPD in Debian 2.2 where the postinst script fails to properly adjust the “run as uid/gid root” setting when anonymous access is enabled, causing the server to run with elevated privileges. What’s affected: proftpd on Debian 2.2 (potato); issue in post-install co...

CVE-2001-0456

postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a higher privilege than intended...

Debian 2.2 usrbinpileup - Local Privilege Escalation

Debian 2.2 usrbinpileup - Local Privilege Escalation / pileup-xpl.c - local root exploit by core Friday the 13th, July 2001 based almost entirely on code by Cody Tubbs loophole of hhp $ ./pileup-xpl pileup-xpl by core 2001 - beep beep root! usage: ./pileup-xpl offset align0..3 Ret-addr: 0xbfffe09...

Debian 2.2 /usr/bin/pileup Local Root Exploit

Exploit for linux platform in category local exploits ============================================= Debian 2.2 /usr/bin/pileup Local Root Exploit ============================================= / pileup-xpl.c - local root exploit by core Friday the 13th, July 2001 based almost entirely on code by...

CVE-2001-0456

postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a higher privilege than intended...

[SECURITY] [DSA 045-1] ntp remote root exploit fixed

---------------------------------------------------------------------------- Debian Security Advisory DSA-045-1 [email protected] http://www.debian.org/security/ Michael Stone April 5, 2001 - ---------------------------------------------------------------------------- Package: ntp...