8101 matches found
SCOUNIX_shadow_exploit.txt
Greetings, Any user may overwrite any file with group auth i.e. /etc/shadow, /etc/passwd using /etc/sysadm.d/bin/userOsa. Note that this will not change the permissions of the file or allow for the user to input a passwd entry string into these files, it will simply clobber the contents of the fi...
SCO Open Server 5.0.5 - userOsa Symlink
SCO Open Server 5.0.5 - userOsa Symlink source: https://www.securityfocus.com/bid/701/info Under certain versions of SCO OpenServer there exists a symlink vulnerability which can be exploited to overwrite any file which is group writable by the 'auth' group. The problem in particular is in the th...
SCO Open Server 5.0.5 - 'userOsa' Symlink
source: https://www.securityfocus.com/bid/701/info Under certain versions of SCO OpenServer there exists a symlink vulnerability which can be exploited to overwrite any file which is group writable by the 'auth' group. The problem in particular is in the the /etc/sysadm.d/bin/userOsa executable...
CVE-1999-0447
Technical details are not publicly available in the provided connected documents. Monitor for updates.
CVE-1999-0344
CVE-1999-0344 concerns an NT local privilege escalation via the Sechole exploit, allowing debug-level access to a system process (local, no authentication; high impact on confidentiality, integrity, and availability per NVD). Connected citations reiterate NT users gaining debug-level access, with...
CVE-1999-0344
NT users can gain debug-level access on a system process using the Sechole exploit...
CVE-1999-0447
Local users can gain privileges using the debug utility in the MPE/iX operating system...
CVE-1999-0095
CVE-1999-0095 involves the Sendmail MTA where the DEBUG command is enabled, enabling remote users to execute arbitrary commands as root. Public sources (NVD/Nessus/OpenVAS/Red Hat/CIRCL) confirm that the issue allows full root access via the DEBUG/WIZ mechanism, with assessments placing the impac...
Sendmail DEBUG/WIZ Remote Command Execution
Your MTA accepts the DEBUG or WIZ command. It may be an old version of Sendmail. This command is dangerous as it allows remote users to execute arbitrary commands as root without the need to log in. C Tenable Network Security, Inc. MA 2004-12-29: I merge sendmailwiz.nasl into this one...
cybercash.cc.txt
Date: Sun, 25 Apr 1999 13:38:43 +0200 From: Bo Elkjaer To: [email protected] Subject: Re: Shopping Carts exposing CC data Hi Joe Your CC-exposures are gaining momentum. Right now I'm only waiting for the mainstream papers to catch up. I'm a journalist myself, working for one of Denmarks larges...
CVE-1999-0447
Local users can gain privileges using the debug utility in the MPE/iX operating system...
CVE-2000-0370
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command...
CVE-1999-0344
NT users can gain debug-level access on a system process using the Sechole exploit...
CVE-1999-1141
Ascom Timeplex router allows remote attackers to obtain sensitive information or conduct unauthorized activities by entering debug mode through a sequence of CTRL-D characters...
PT-1997-1154 · Microsoft · Windows Nt
Name of the Vulnerable Software and Affected Versions: Windows NT affected versions not specified Description: The issue concerns a Windows NT user having inappropriate rights or privileges. This includes privileges such as Act as System, Add Workstation, Backup, Change System Time, Create...
PT-1988-1001 · Sendmail · Sendmail
Name of the Vulnerable Software and Affected Versions: Sendmail affected versions not specified Description: The issue concerns the debug command in Sendmail, which is enabled, allowing attackers to execute commands as root. Recommendations: At the moment, there is no information about a newer...
PT-2006-7573 · Suse +2 · Ndiswrapper-Kmp-Smp +69
Name of the Vulnerable Software and Affected Versions: drbd-kmp-iseries64 versions affected versions not specified cloop-kmp-debug versions affected versions not specified k smp versions affected versions not specified usbvision-kmp-xen versions affected versions not specified pcfclock-kmp-smp...
PT-2009-6753 · Opensuse +2 · Pcfclock-Kmp-Trace +18
Name of the Vulnerable Software and Affected Versions: dazuko-kmp-debug affected versions not specified kvm-kmp-trace affected versions not specified aufs-kmp-debug affected versions not specified ofed-kmp-debug affected versions not specified kqemu-kmp-debug affected versions not specified...
CVE-2026-46626: SymfonyRuntime CVE-2024-50340 Patch Bypass: Web Requests Can Still Set APP_ENV/APP_DEBUG via parse_str/SAPI Argv Mismatch
More info at https://symfony.com/cve-2026-46626...
PT-2008-6956 · Linux +2 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: SUSE Linux Enterprise kernel-default-base affected versions not specified openSUSE kernel-pseries64 affected versions not specified openSUSE kernel-s390-debug affected versions not specified openSUSE kernel-smp-debuginfo affected versions not...