6323 matches found
CVE-2001-0485
Unknown vulnerability in netprint in IRIX 6.2, and possibly other versions, allows local users with lp privileges attacker to execute arbitrary commands via the -n option...
Rxvt 2.6.12.6.2 - Local Buffer Overflow
Rxvt 2.6.12.6.2 - Local Buffer Overflow source: https://www.securityfocus.com/bid/2878/info Rxvt is a color VT102 terminal emulator for X intended as an xterm1 replacement. A buffer overflow vulnerability exists in rxvt. The error occurs when certain command line options with long arguments are...
WFTPD "Pro" 3.0 R4 Buffer Overflow
WFTP is the Win/NT FTP server by Alun Jones, "an author acknowledged as an expert in FTP and TCP/IP". This advisory pertains to "Professional" version 3.00 R4, which appears to be the current version. It can be downloaded from the author's site at http://www.wftpd.com/. WFTPD is released as...
ISC INN 2.x - Command-Line Buffer Overflow (2)
ISC INN 2.x - Command-Line Buffer Overflow 2 source: https://www.securityfocus.com/bid/2620/info The innfeed utility, part of ISC InterNetNews, has an exploitable buffer overflow in its command-line parser. Specifically, innfeed will overflow if an overly long -c option is passed to it. A local...
ISC INN 2.x - Command-Line Buffer Overflow (2)
source: https://www.securityfocus.com/bid/2620/info The innfeed utility, part of ISC InterNetNews, has an exploitable buffer overflow in its command-line parser. Specifically, innfeed will overflow if an overly long -c option is passed to it. A local attacker in the news group could use this...
CVE-2001-0216
PALS Library System pals-cgi program allows remote attackers to execute arbitrary commands via shell metacharacters in the documentName parameter...
CVE-2001-0029
Buffer overflow in oops WWW proxy server 1.4.6 and possibly other versions allows remote attackers to execute arbitrary commands via a long host or domain name that is obtained from a reverse DNS lookup...
CVE-2001-0045
CVE-2001-0045 affects Windows NT 4.0: the default permissions on the Registry key HKLM\Software\Microsoft\Windows\RAS (RAS Administration) let local users modify the value to point to a malicious DLL, enabling local privilege escalation. The issue is a “Registry Permissions” weakness leading to a...
CVE-2000-1061
CVE-2000-1061 involves the Microsoft Virtual Machine (VM) in Internet Explorer 4.x–5.x, where an unsigned applet can create and use ActiveX controls. This enables a remote attacker to bypass IE security settings and execute arbitrary commands via a malicious web page or email. The underlying issu...
CVE-2000-0947
Format string vulnerability in cfd daemon in GNU CFEngine before 1.6.0a11 allows attackers to execute arbitrary commands via format characters in the CAUTH command...
X 11.0/3.3.3/3.3.4/3.3.5/3.3.6/4.0 - libX11 '_XAsyncReply()' Stack Corruption
// source: https://www.securityfocus.com/bid/1408/info A vulnerability exists in the XAsyncReply function of libX11. This function utilizes size information retrieved as part of a client supplied packet. This value is a signed integer. By forcing this value to be negative, it becomes possible to...
majordomo.txt
Hi, Majordomo is a perl script for managing mailing lists. The package comes with several scripts and a program written in C wrapper that runs setuid to ensure that majordomo performs all the work with proper permissions for further information you can check the FAQ that comes with the package...
Solaris 2.67.0 - lpset -r Local Buffer Overflow (3)
Solaris 2.67.0 - lpset -r Local Buffer Overflow 3 / source: https://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However...
Solaris 7.0/8 - Xsun Buffer Overrun
// source: https://www.securityfocus.com/bid/1140/info A buffer overrun vulnerability exists in the Xsun X11 server, as shipped as part of Solaris 7 and 8 from Sun Microsystems. By supplying a long argument to the -dev option normally used to set the output device, it is possible to execute...
Mirabilis ICQ 0.99b 1.1.1.13.19 - Remote Buffer Overflow
Mirabilis ICQ 0.99b 1.1.1.13.19 - Remote Buffer Overflow source: https://www.securityfocus.com/bid/929/info ICQ is an individual to individual chat network which has clients installed on millions of computers around the world. It is, by far, the most widely used and is vulnerable to a remote buff...
Majordomo 1.94.4/1.94.5 - Local -C Parameter (2)
// source: https://www.securityfocus.com/bid/903/info It is possible for a local user to gain majordomo privileges through a vulnerability which allows privileged arbitrary commands to be executed. If the -C parameter is passed to majordomo or one of several other scripts when run with the setuid...
OmniHTTPd imagemap.exe CGI Remote Overflow
The 'imagemap.exe' cgi is installed. This CGI is vulnerable to a buffer overflow that will allow a remote user to execute arbitrary commands with the privileges of your httpd server either nobody or root. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
CVE-1999-0766
The Microsoft Java Virtual Machine allows a malicious Java applet to execute arbitrary commands outside of the sandbox environment...
CVE-1999-0032
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C classification command line option...
Oracle 8 8.1.5 - Intelligent Agent (1)
source: https://www.securityfocus.com/bid/585/info A vulnerability in the Oracle Intelligent Agent allows local malicious users to execute arbitrary commands and to create world writable files as the root user. The problem lies in the dbsnmp program located in $ORACLEHOME/bin . This setuid root a...