CVE-2001-1564

setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropped, which could allow local users to cause a denial of service by exhausting available disk space...

Пароли в открытом тексте в ARCServe for NT (readable cleartext passwords)

На разделяемом диске находится файл с паролем в открытом виде...

CVE-1999-1429

CVE-1999-1429 affects the DIT TransferPro system, where the installer creates devices with world-readable and world-writable permissions. The vulnerable element is the ff device driver, and the described outcome is that local users could damage disks due to improper permissions. The provided mate...

CVE-1999-1526

Auto-update feature of Macromedia Shockwave 7 transmits a user's password and hard disk information back to Macromedia...

CVE-2001-0624

CVE-2001-0624 affects QNX 2.4. A local user can read arbitrary files by directly accessing the FAT disk partition mount point, e.g., /fs-dos. The root cause is an unprotected mount point that exposes file contents to a local user. The impact is partial confidentiality of files. No remediation or ...

CVE-2001-0624

QNX 2.4 allows a local user to read arbitrary files by directly accessing the mount point for the FAT disk partition, e.g. /fs-dos...

MAILsweeper SMTP 4.2.1 + F-Secure Anti-Virus 5.0.25.2.1 - File Scanner Malicious Archive Denial of Service

MAILsweeper SMTP 4.2.1 + F-Secure Anti-Virus 5.0.25.2.1 - File Scanner Malicious Archive Denial of Service source: https://www.securityfocus.com/bid/3027/info A wide range of products exists for scanning enterprise email and filesystems for files containing viruses and other undesirable content...

MAILsweeper SMTP 4.2.1 + F-Secure Anti-Virus 5.0.2/5.2.1 - File Scanner Malicious Archive Denial of Service

source: https://www.securityfocus.com/bid/3027/info A wide range of products exists for scanning enterprise email and filesystems for files containing viruses and other undesirable content. These products handle compressed files by temporarily unzipping them and scanning their uncompressed...

CVE-2001-0421

FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD command, which could release sensitive information such as shadowed...

Дырка в Lotus Web Server

Исопльзуя URL типа http://TARGETDOMINO/.nsf/../winnt/win.ini можно получить доступ к любому файлу на диске...

CVE-2000-0459

IMP does not remove files properly if the MSWordView application quits, which allows local users to cause a denial of service by filling up the disk space by requesting a large number of documents and prematurely stopping the request...

CVE-2000-0030

CVE-2000-0030 affects Solaris dmispd dmi_cmd, allowing a local user to exhaust restricted disk space by adding files to /var/dmi/db. The NVD entry lists a MEDIUM base score (5.0) with availability impact and no confidentiality/integrity impact, and indicates a local-access condition despite the C...

CVE-2000-0030

Solaris dmispd dmicmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database...

Проблема в SSH с Kerberos

При использовании Kerberos-авторизации ticket ползователя хранится в файле "none" текущей директории а не в /tmp. В том случае, когда текущий каталог находится на сетевом дисек, есть вероятность его перехвата при передаче и ксопрометации учетной записи пользователя...

Infosec.20000617.panda.a

Infosec Security Vulnerability Report No: Infosec.20000617.panda.a ============================ Vulnerability Summary --------------------- Problem: Panda Antivirus has an open console at port 2001 Threat: Remotely run any command on a Netware console Platform: Confirmed on Novell Netware Solutio...

Локальный DoS против FreeBSD

Команда dd if=disc image of=/dev/fd0 приводит к перезагрузке системы, если дискета защищена на запись...

Дырка в Secret Disk

На машинах с несколькими мониторами скринсейвер с паролем, запускающийся при изъятии ключа, запускается только на одном мониторе...

Дырка в kcsd под Linux

kcsd использует внешний shell определяемый переменной SHELL, которая задается пользователем. Таким образом, подменив SHELL можно получить привелегии группы disk, позволяющие менять разрешения любых файлов...

KDE 1.11.1.11.22.0 kscd - SHELL Environmental Variable

KDE 1.11.1.11.22.0 kscd - SHELL Environmental Variable source: https://www.securityfocus.com/bid/1206/info Some linux distributions S.u.S.E. 6.4 reported ship with kscd a CD player for the KDE Desktop sgid disk. kscd uses the contents of the 'SHELL' environment variable to execute a browser. This...

CVE-2000-0112

Technical details for CVE-2000-0112 are not publicly available in the provided documents. The description notes an insecure Debian MBR issue, but no confirmable affected products, versions, impact, or mitigations are present here. Monitor for updates.