8275 matches found
Microsoft Windows Server 2000 - Debug Registers
// source: https://www.securityfocus.com/bid/2764/info A vulnerability exists in the handling of debug registers in Windows 2000. It is possible for unprivileged processes to create breakpoints for arbitrary processes. This can be used to 'kill' arbitrary processes without administrative...
Vulnerability in Oracle E-Business Suite Release 11i Applications Desktop Integrator
Post date: 05/22/01 Vulnerability in Oracle E-Business Suite Release 11i Applications Desktop Integrator Overview A potential security vulnerability has been discovered in Applications Desktop Integrator ADI version 7.X for Oracle E-Business Suite Release 11i. A debug version of the FNDPUB11I.DLL...
Oracle's ADI 7.1.1.10.1 Major security hole
The version of ADI Application Desktop Integrator 7.1.1.10.1 which was recently shipped with Oracle's Financial Applications version 11.5.3 contains a major security breach. Whenever the software is launched, it creates a file called dbg.txt on the local hard drive on the system which contains in...
CVE-2001-0267
CVE-2001-0267 concerns a vulnerability in HP MPE/iX’s NM Debug facility. The HP NM Debug mechanism fails to handle breakpoints correctly on MPE/iX versions 5.5 through 6.5, allowing local users to gain unauthorized privileges (potentially root). CERT notes the issue enables local privilege escala...
CVE-2001-0187
Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PASV port assignment...
CVE-2001-0187
CVE-2001-0187 concerns WU-FTPD up to version 2.6.1, where a format-string vulnerability in debug mode can allow remote code execution. The issue affects WU-FTPD when using RFC 931 authentication with debugging enabled, potentially letting an attacker craft ident responses that are logged by the s...
Локальная дырка в Cisco Content Services (Arrowpoint) (debug mode)
Пользователь может переключится в режим отладки, из которого получить административные привелегии...
WU-FTPD 2.4.22.52.6 - Debug Mode Client Hostname Format String
WU-FTPD 2.4.22.52.6 - Debug Mode Client Hostname Format String source: https://www.securityfocus.com/bid/2296/info Wu-ftpd is a widely used unix ftp server. It contains a format string vulnerability that may be exploitable under certain perhaps 'extreme' circumstances. When running in debug mode,...
WU-FTPD 2.4.2/2.5/2.6 - Debug Mode Client Hostname Format String
source: https://www.securityfocus.com/bid/2296/info Wu-ftpd is a widely used unix ftp server. It contains a format string vulnerability that may be exploitable under certain perhaps 'extreme' circumstances. When running in debug mode, Wu-ftpd logs user activity to syslog in an insecure manner. An...
CVE-2000-1040
CVE-2000-1040 concerns a format string vulnerability in the logging function of ypbind 3.3 when run in debug mode. The flaw can leak file descriptors and allow a denial of service. Some sources (Mandrake MDKSA-2000:064) also mention a related buffer overflow in ypserv if the build system lacks vs...
CVE-2000-1040
Format string vulnerability in logging function of ypbind 3.3, while running in debug mode, leaks file descriptors and allows an attacker to cause a denial of service...
Дырка в agetty
Ошибка форматной строки в режиме отладки при разборе аргументов...
CVE-2000-0370
CVE-2000-0370 affects Caldera Linux smail. The debug option allows remote command execution via shell metacharacters in the -D option for rmail, enabling full compromise of confidentiality, integrity, and availability (CVSSv2 base score 10.0). Exploitation details are not provided in the availabl...
FreeBSD 3.3 - gdc Symlink
FreeBSD 3.3 - gdc Symlink source: https://www.securityfocus.com/bid/835/info It is possible to write debug ouput from gdc to a file /var/tmp/gdbdump. Unfortunately, gdc follows symbolic links which can be created in tmp and will overwrite any file on the system thanks to it being setiud root. Thi...
SCOUNIX_shadow_exploit.txt
Greetings, Any user may overwrite any file with group auth i.e. /etc/shadow, /etc/passwd using /etc/sysadm.d/bin/userOsa. Note that this will not change the permissions of the file or allow for the user to input a passwd entry string into these files, it will simply clobber the contents of the fi...
SCO Open Server 5.0.5 - userOsa Symlink
SCO Open Server 5.0.5 - userOsa Symlink source: https://www.securityfocus.com/bid/701/info Under certain versions of SCO OpenServer there exists a symlink vulnerability which can be exploited to overwrite any file which is group writable by the 'auth' group. The problem in particular is in the th...
SCO Open Server 5.0.5 - 'userOsa' Symlink
source: https://www.securityfocus.com/bid/701/info Under certain versions of SCO OpenServer there exists a symlink vulnerability which can be exploited to overwrite any file which is group writable by the 'auth' group. The problem in particular is in the the /etc/sysadm.d/bin/userOsa executable...
CVE-1999-0344
CVE-1999-0344 concerns an NT local privilege escalation via the Sechole exploit, allowing debug-level access to a system process (local, no authentication; high impact on confidentiality, integrity, and availability per NVD). Connected citations reiterate NT users gaining debug-level access, with...
CVE-1999-0447
Technical details are not publicly available in the provided connected documents. Monitor for updates.
CVE-1999-0344
NT users can gain debug-level access on a system process using the Sechole exploit...