Переполнение буфера в CMD

Тривиальное переполнение буфера при слишком большой переменной окружения...

CVE-2000-0331

Buffer overflow in Microsoft command processor CMD.EXE for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability...

CVE-1999-0906

The CVE-1999-0906 entry describes a local buffer overflow in sccw that allows escalation to root via the HOME environment variable. The connected KITPLOIT reference mentions an attack example and lists CVE-1999-0906, but none of the provided documents specify the affected product/vendor/version, ...

CVE-1999-0906

Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable...

CVE-2000-0170

CVE-2000-0170 describes a buffer overflow in the Linux man program triggered by the MANPAGER environment variable, allowing local users to gain privileges. The connected documents reiterate this root cause and the local-privilege impact, but do not provide concrete details on affected product ver...

CVE-1999-0964

Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATHLOCALE environment variable...

Halloween Linux 4.0 RedHat Linux 6.16.2 - imwheel (1)

Halloween Linux 4.0 RedHat Linux 6.16.2 - imwheel 1 // source: https://www.securityfocus.com/bid/1060/info A vulnerability exists in the 'imwheel' package for Linux. This package is known to be vulnerable to a buffer overrun in its handling of the HOME environment variable. By supplying a...

Halloween Linux 4.0 RedHat Linux 6.16.2 - imwheel (2)

Halloween Linux 4.0 RedHat Linux 6.16.2 - imwheel 2 // source: https://www.securityfocus.com/bid/1060/info A vulnerability exists in the 'imwheel' package for Linux. This package is known to be vulnerable to a buffer overrun in its handling of the HOME environment variable. By supplying a...

Halloween Linux 4.0 / RedHat Linux 6.1/6.2 - 'imwheel' (1)

// source: https://www.securityfocus.com/bid/1060/info A vulnerability exists in the 'imwheel' package for Linux. This package is known to be vulnerable to a buffer overrun in its handling of the HOME environment variable. By supplying a sufficiently long string containing machine executable code...

RedHat 4.x/5.x/6.x / RedHat man 1.5 / Turbolinux man 1.5 / Turbolinux 3.5/4.x - 'man' Buffer Overrun (1)

/ source: https://www.securityfocus.com/bid/1011/info RedHat 4.0/4.1/4.2/5.0/5.1/5.2/6.0/6.2,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.2/4.4 man Buffer Overrun Vulnerability A buffer overflow exists in the implementation of the 'man' program shipped with RedHat Linux, and other LInux...

CVE-1999-0872

CVE-1999-0872 is a vulnerability in Vixie cron where a buffer overflow can be triggered by a long MAILTO value in a crontab, enabling local users to gain root access. The Red Hat CVE entry and related records confirm the issue but do not provide remediation steps or patched versions in the connec...

CVE-1999-0768

CVE-1999-0768 is a confirmed issue affecting Red Hat systems using Vixie Cron, where a buffer overflow can be triggered via the MAILTO environment variable. The connected Red Hat advisory reiterates the same description and confirms the vulnerability exists in Vixie Cron on Red Hat platforms. The...

CVE-1999-0318

The CVE-1999-0318 issue affects the xmcd 2.0p12 release and is caused by a buffer overflow triggered via an environment variable, allowing local users to gain access. The PT-1997-1131 entry corroborates local privilege escalation through an environmental variable; it does not provide a product pa...

CVE-1999-0964

Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATHLOCALE environment variable...

pine.420.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I reported the vulnerability below to the Pine team on Oct 21, when 4.20 was current. 4.21 which I just noticed on freshmeat seems to fix the problem even though it's not mentioned in the release notes. Since it's not, I thought some disclosure was in...

PT-1999-1416 · Freebsd · Freebsd Seyon

Name of the Vulnerable Software and Affected Versions: FreeBSD seyon affected versions not specified Description: The issue is related to a buffer overflow in FreeBSD seyon, which can be triggered via the HOME environmental variable, -emulator argument, -modems argument, or the GUI...

HP HP-UX 10.2011.0 IBM AIX 4.3 SCO Unixware 7.0 Sun Solaris 2.6 - Change File Permission

HP HP-UX 10.2011.0 IBM AIX 4.3 SCO Unixware 7.0 Sun Solaris 2.6 - Change File Permission source: https://www.securityfocus.com/bid/131/info Due to improper checking of ownership, the dtappgather utility shipped with the Common Desktop Environment allows arbitrary users to overwrite any file prese...

HP HP-UX 10.20/11.0 / IBM AIX 4.3 / SCO Unixware 7.0 / Sun Solaris 2.6 - Change File Permission

source: https://www.securityfocus.com/bid/131/info Due to improper checking of ownership, the dtappgather utility shipped with the Common Desktop Environment allows arbitrary users to overwrite any file present on the filesystem, regardless of the owner of the file. dtappgather uses a directory o...

CVE-1999-0388

DataLynx suGuard (DataLynx) is affected: it trusts the PATH environment variable to execute the ps command, enabling a local user to run commands with root privileges. Root cause: use of PATH for command execution without proper validation. Impact: local privilege escalation to root as described ...

CVE-1999-0046

The CVE-1999-0046 entry documents a buffer overflow in the rlogin program triggered by the TERM environment variable. Red Hat/NVD entries confirm a buffer overflow affecting rlogin; no specific vulnerable versions or patches are provided in the supplied sources. Exploitation details, affected pro...