Lucene search
K

2668 matches found

seebug.org
seebug.org
added 2008/08/03 12:0 a.m.39 views

SAP MaxDB dbmsrv 进程PATH环境变量本地权限提升漏洞

BUGTRAQ ID: 30474 CVECAN ID: CVE-2008-1810 MaxDB是SAP应用中广泛使用的数据库管理系统。 当本地用户运行dbmcli程序时,MaxDB会代表用户执行dbmsrv进程。该进程负责执行用户命令,以sdba组的sdb用户权限运行。由于没有正确地过滤PATH环境变量,如果在变量前添加了攻击者所控制的路径的话,就可能导致以sdb:sdba权限执行任意指令。 SAP MaxDB 7.6.03.15 SAP --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.sap.com/...

4.4CVSS6.5AI score0.00337EPSS
Exploits1
NVD
NVD
added 2008/08/01 2:41 p.m.22 views

CVE-2008-1810

Untrusted search path vulnerability in dbmsrv in SAP MaxDB 7.6.03.15 on Linux allows local users to gain privileges via a modified PATH environment variable...

4.4CVSS6.5AI score0.00337EPSS
Exploits1References6
Cvelist
Cvelist
added 2008/08/01 2:0 p.m.24 views

CVE-2008-1810

Untrusted search path vulnerability in dbmsrv in SAP MaxDB 7.6.03.15 on Linux allows local users to gain privileges via a modified PATH environment variable...

6.5AI score0.00337EPSS
Exploits1References6
Prion
Prion
added 2008/07/18 4:41 p.m.14 views

Stack overflow

Stack-based buffer overflow in op before Changeset 563, when xauth support is enabled, allows local users to gain privileges via a long XAUTHORITY environment variable...

6.9CVSS7.5AI score0.00433EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2008/06/02 9:30 p.m.19 views

Code injection

Unspecified vulnerability in iostat in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via unknown vectors related to an "environment variable handling error."...

7.2CVSS6.2AI score0.00367EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2008/06/02 2:0 p.m.23 views

CVE-2008-2515

Unspecified vulnerability in iostat in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via unknown vectors related to an "environment variable handling error."...

5.9AI score0.00367EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2008/05/28 12:0 a.m.18 views

FreeBSD : spamdyke -- open relay (555ac165-2bee-11dd-bbdc-00e0815b8da8)

Spamdyke Team reports : Fixed smtpfilter to reject the DATA command if no valid recipients have been specified. Otherwise, a specific scenario could result in every spamdyke installation being used as an open relay. If the remote server connects and gives one or more recipients that are rejected...

6.4CVSS5.5AI score0.01359EPSS
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2008/05/09 12:0 a.m.29 views

Firebird: Data disclosure

Background Firebird is a multi-platform, open source relational database. Description Viesturs reported that the default configuration for Gentoo's init script "/etc/conf.d/firebird" sets the "ISCPASSWORD" environment variable when starting Firebird. It will be used when no password is supplied b...

5CVSS6.6AI score0.0212EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2008/04/27 9:5 p.m.29 views

CVE-2008-1994

Multiple stack-based buffer overflows in a acon.c, b menu.c, and c child.c in Acon 1.0.5-5 through 1.0.5-7 allow local users to execute arbitrary code via 1 a long HOME environment variable or 2 a large number of terminal columns...

7.2CVSS6.2AI score0.00463EPSS
Exploits0References1
Prion
Prion
added 2008/04/27 9:5 p.m.15 views

Stack overflow

Multiple stack-based buffer overflows in a acon.c, b menu.c, and c child.c in Acon 1.0.5-5 through 1.0.5-7 allow local users to execute arbitrary code via 1 a long HOME environment variable or 2 a large number of terminal columns...

7.2CVSS8AI score0.00463EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2008/04/27 9:5 p.m.18 views

CVE-2008-1994

Multiple stack-based buffer overflows in a acon.c, b menu.c, and c child.c in Acon 1.0.5-5 through 1.0.5-7 allow local users to execute arbitrary code via 1 a long HOME environment variable or 2 a large number of terminal columns...

7.2CVSS7.5AI score0.00463EPSS
Exploits0References5
Cvelist
Cvelist
added 2008/04/27 9:0 p.m.21 views

CVE-2008-1994

Multiple stack-based buffer overflows in a acon.c, b menu.c, and c child.c in Acon 1.0.5-5 through 1.0.5-7 allow local users to execute arbitrary code via 1 a long HOME environment variable or 2 a large number of terminal columns...

7.5AI score0.00463EPSS
Exploits0References5
Cvelist
Cvelist
added 2008/04/16 6:0 p.m.27 views

CVE-2007-5758

Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server DAS in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable...

7.4AI score0.00567EPSS
Exploits2References6
Cvelist
Cvelist
added 2008/04/09 7:0 p.m.26 views

CVE-2008-1710

Untrusted search path vulnerability in chnfsmnt in IBM AIX 6.1 allows local users to gain privileges via a modified PATH environment variable...

6.3AI score0.00333EPSS
Exploits0References8
Prion
Prion
added 2008/04/07 5:44 p.m.16 views

Code injection

rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected. NOTE: realistic attack scenarios require that th...

3.7CVSS6.5AI score0.00363EPSS
Exploits1References14Affected Software7
Cvelist
Cvelist
added 2008/04/07 5:0 p.m.30 views

CVE-2008-1142

rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected. NOTE: realistic attack scenarios require that th...

8.4AI score0.00363EPSS
Exploits1References14
securityvulns
securityvulns
added 2008/04/02 12:0 a.m.27 views

Apache-SSL multiple security vulnerabilities

Multiple vulnerabilities on environment variable initialization from client certificates data...

7.5CVSS2.8AI score0.0187EPSS
Exploits1References1
CVE
CVE
added 2008/01/18 11:0 p.m.47 views

CVE-2008-0369

IBM Informix Dynamic Server (IDS) 10.x prior to 10.00.xC8 is affected by a local file-creation vulnerability involving the SQLIDEBUG environment variable. When set, several set-UID binaries log to the specified file and change the file’s ownership to the invoking user, enabling local privilege es...

6.9CVSS6.3AI score0.00319EPSS
Exploits0References9Affected Software1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.17 views

Debian: Security Advisory (DSA-354)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS7.2AI score0.00396EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.22 views

Debian Security Advisory DSA 563-2 (cyrus-sasl)

The remote host is missing an update to cyrus-sasl announced via advisory DSA 563-2. OpenVAS Vulnerability Test $Id: deb5632.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 563-2 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.2CVSS0.6AI score0.00506EPSS
Exploits0
Rows per page
Query Builder