Sendmail 8.118.12 Debugger - Arbitrary Code Execution (2)

Sendmail 8.118.12 Debugger - Arbitrary Code Execution 2 // source: https://www.securityfocus.com/bid/3163/info An input validation error exists in Sendmail's debugging functionality. The problem is the result of the use of signed integers in the program's tTflag function, which is responsible for...

Sendmail 8.118.12 Debugger - Arbitrary Code Execution (1)

Sendmail 8.118.12 Debugger - Arbitrary Code Execution 1 // source: https://www.securityfocus.com/bid/3163/info An input validation error exists in Sendmail's debugging functionality. The problem is the result of the use of signed integers in the program's tTflag function, which is responsible for...

Дырка в Microsoft Developer Studio (DCOM VB T-SQL debugger buffer overflow)

Устанавливается DCOM-объект с разрешениями на запуск VB T-SQL Debugger в котором присутствует переполнение буфера...

Remote buffer overflow in DCOM VB T-SQL debugger

BindView Security Advisory -------- Remote buffer overflow in DCOM VB T-SQL debugger Issue Date: March 27, 2001 Contact: [email protected] Topic: Remote buffer overflow in DCOM VB T-SQL debugger Overview: Microsoft Developer Studio version 6 installs a world-launchable DCOM object, known ...

Linux news 24.10.00

2.4.0-test10-pre5 is out Вышла очередная пре версия тестового ядра 2.4.0-test10, в этой версии по сравнению с предыдущей много мелких фиксов, как минимум еще одна проблема остается открытой. Подробнее: http://dredd.crimea.edu/linuxnews/test10-pre5.txt Mandrake 7.2 выйдет 28 октября Выход следующе...

New DOS on Interscan NT/3.32

One month ago, during a audit, we found a new remote DOS on TrendMicro Interscan for NT last version V3.32, build 1011 and 1022. Last October, USSR Labs found a buffer overflow in HELO command, and wrote a very nice exploit with shell code, giving SYSTEM shell access to remote attacker. Trendmicr...

CVE-1999-0979

The vulnerability CVE-1999-0979 affects the SCO UnixWare privileged process system. Local users can gain root privileges by using a debugger (e.g., gdb) to insert traps into _init before the privileged process runs. The issue is triggered through manipulating the startup path of the privileged in...

CVE-1999-0979

The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into init before the privileged process is executed...

CVE-1999-1084

The "AEDebug" registry key is installed with insecure permissions, which allows local users to modify the key to specify a Trojan Horse debugger which is automatically executed on a system crash...

SCO Unixware 7.07.0.17.17.1.1 - Privileged Program Debugging

SCO Unixware 7.07.0.17.17.1.1 - Privileged Program Debugging // source: https://www.securityfocus.com/bid/869/info Unixware's security model includes the concept of privileges. These can be assigned to processes and allow them to perform tasks that otherwise could only be performed by the root...

Microsoft Windows NT 4.0SP1SP2SP3SP4SP5SP6 - Services.exe Denial of Service (2)

Microsoft Windows NT 4.0SP1SP2SP3SP4SP5SP6 - Services.exe Denial of Service 2 source: https://www.securityfocus.com/bid/754/info A specially crafted packet can cause a denial of service on an NT 4.0 host, rendering local administration and network communication nearly unusable. This attack will...

tcsh.6.07.bof.txt

Date: Mon, 17 May 1999 09:53:19 +0200 From: arkth To: [email protected] Subject: tcsh overflow While few days ago there was discussion about bash overflow on bugtraq i found another overflow in tcsh-6.07.09-1 rh 5.2 . The problem is in too long $HOME evironment variable very old thing - zgv...

IBM AIX 4.3.1 - 'adb' Denial of Service

source: https://www.securityfocus.com/bid/520/info adb is the debugger that ships with IBM's AIX operating system. It is possible for a local user to cause a local denial of service through exploiting the version of adb shipped with AIX 4.2 through 4.3.1. The consequence of adb being exploited is...

Microsoft StreamInsight 1.2 (KB2587551)

This update is the Microsoft StreamInsight 1.2 release. It is installed side by side with your existing StreamInsight installation. It contains the SDK to develop applications and adapters, runtime libraries, and the event flow debugger. Read the Installation and Programming Considerations sectio...

Microsoft StreamInsight 1.1 (KB2452789)

This update is the Microsoft StreamInsight 1.1 release. It is installed side by side with your existing StreamInsight installation. It contains the SDK to develop applications and adapters, runtime libraries, the event flow debugger, and the documentation. Read the Installation and Programming...