216 matches found
GLSA-200401-02 : Honeyd remote detection vulnerability via a probe packet
The remote host is affected by the vulnerability described in GLSA-200401-02 Honeyd remote detection vulnerability via a probe packet A bug in handling NMAP fingerprints caused Honeyd to reply to TCP packets with both the SYN and RST flags set. Watching for replies, it is possible to detect IP...
CVE-2003-0949
xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands...
CVE-2003-0949
xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands...
Opera Skinned & Opera Directory Traversal (Additional Details & a Simple Exploit)
Opera Skinned & Opera Directory Traversal Additional Details & a Simple Exploit: ================================================================================== ADDITIONAL DETAILS: While installing Opera, if the "USE SEPARATE SETTINGS FOR EACH USER" option is selected, the "opera7/profile"...
ProFTPd 1.2.7/1.2.8 - '.ASCII' File Transfer Buffer Overrun
// source: https://www.securityfocus.com/bid/8679/info A remotely exploitable buffer overrun vulnerability has been reported in ProFTPD. This issue could be triggered if an attacker uploads a malformed file and then that file is downloaded in ASCII mode. Successful exploitation will permit a...
ProFTPd 1.2.71.2.8 - .ASCII File Transfer Buffer Overrun
ProFTPd 1.2.71.2.8 - .ASCII File Transfer Buffer Overrun // source: https://www.securityfocus.com/bid/8679/info A remotely exploitable buffer overrun vulnerability has been reported in ProFTPD. This issue could be triggered if an attacker uploads a malformed file and then that file is downloaded ...
CVE-2002-0469
Ecartis formerly Listar 1.0.0 in snapshot 20020125 and earlier does not properly drop privileges when Ecartis is installed setuid-root, "lock-to-user" is not set, and ecartis is called by certain MTA's, which could allow local users to gain privileges...
CVE-2002-0302
The Notify daemon for Symantec Enterprise Firewall SEF 6.5.x drops large alerts when SNMP is used as the transport, which could prevent some alerts from being sent in the event of an attack...
Ecartis/Listar multiple vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Name: Ecartis / Listar Version: read the details Vendor: The Ecartis Project. http://www.ecartis.org/ Author: Janusz Niewiadomski [email protected], Wojciech Purczynski [email protected] Date: March 10, 2002 Issue: ====== Multiple buffer overflow...
CVE-2001-0623
CVE-2001-0623 affects the sendfiled component of SAFT on Linux, where privileges are not properly dropped when sending notification emails, enabling a local user to gain privileges (local privilege escalation). The issue is documented in Debian security advisories DSA-050-1 and DSA-052-1, which d...
[SECURITY] [DSA 052-1] New sendfile packages fix root exploit
---------------------------------------------------------------------------- Debian Security Advisory DSA 052-1 [email protected] http://www.debian.org/security/ Martin Schulze April 23, 2001 - ---------------------------------------------------------------------------- Package : sendfile...
[SECURITY] [DSA 050-1] New version sendfile fix local root exploit
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------------- Debian Security Advisory DSA 050-1 [email protected] http://www.debian.org/security/ Martin Schulze April 20, 2001 -...
[SECURITY] [DSA 050-1] New version sendfile fix local root exploit
---------------------------------------------------------------------------- Debian Security Advisory DSA 050-1 [email protected] http://www.debian.org/security/ Martin Schulze April 20, 2001 - ---------------------------------------------------------------------------- Package : sendfile...
CVE-2000-0525
Overview OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon. Remediation There is no fixed version for openssh. References - Archives.neohapsis.com - Openbsd.org - Osvdb.o...
Security Advisory 2000-003
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2000-003 ================================= Topic: Exploitable Vulnerability in Xlockmore Version: NetBSD pkgsrc prior to 11th May 2000. Severity: xlock can be manipulated to print the shadow password information Abstract ======== The...
CVS 1.10.7 - Local Denial of Service
source: https://www.securityfocus.com/bid/1136/info CVS stands for Concurrent Versions Software and is an open-source package designed to allow multiple developers to work concurrently on a single source tree, recording changes and controlling versions. It is possible to cause a denial of service...