CVE-1999-0036

IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files...

CVE-2025-20347

A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller NDFC could allow an authenticated, low-privileged, remote attacker to view sensitive information or upload and modify files on an affected device. This vulnerability exists because of...

Here's How to Decrypt Hydracrypt & Umbrecrypt Ransomware Files

Over the last few years, we have seen several types of Ransomware malware that demand a whopping amount of money from users for the retrieval of their locked, compromised sensitive files. We have also witnessed the birth of decryption solution for some of the Ransomware like Cryptolocker partial,...

[BSA-080] Security Update for postgresql-9.1

Package : postgresql-9.1 Vulnerability : several Problem type : remote Debian-specific: no CVE ID : CVE-2013-1899 CVE-2013-1900 CVE-2013-1901 Debian Bug : 704479 Several vulnerabilities were discovered in PostgreSQL database server. CVE-2013-1899 Mitsumasa Kondo and Kyotaro Horiguchi of NTT Open...

Sybase Adaptive Server Enterprise (ASE)多个安全漏洞

BUGTRAQ ID: 57206 Sybase Adaptive Server Enterprise是关系型数据库管理系统。 Sybase Adaptive Server Enterprise ASE在实现上存在多个安全漏洞，本地用户可利用这些漏洞泄露敏感信息、提升权限、绕过安全限制、控制受影响系统、执行SQL注入攻击、操作某些数据、造成拒绝服务。 1、在创建代理表时存在错误，可被利用绕过某些安全限制。 2、通过Sybase Central的ASE插件创建表时存在错误，可被利用绕过某些安全限制。 3、某些输入没有正确过滤即被用在SQL查询中，通过注入任意SQL代码，可被利用操作SQL查...

MDEF

1990 MDEF also known as Garfield and its variants emerged on the malware scene in 1990 to infect application and system files in Macintosh 128K and 512K, 512KE, Mac Plus, SE, SE/30, II, IIx, IIcx, IIci and IIfx computers. Coded by an Ithaca, N.Y. teenager and identified at nearby Cornell...

FreeBSD mbuf本地权限提升漏洞

BUGTRAQ ID: 41577 CVE ID: CVE-2010-2693 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 mbuf是FreeBSD内核进程间通讯和联网子系统中的基础内存管理单元。网络报文和套接字缓冲区依赖于mbuf进行存储。 在复制mbuf缓冲区引用时没有正确地拷贝只读标志，如果使用sendfile2系统调用在回环接口上传输数据，就可能导致修改所传送数据的后端内存页，造成数据破坏。本地攻击者可以通过精心控制系统文件的破坏情况来利用这种数据破坏提升权限。请注意攻击者可以破坏任意可读访问的文件。 FreeBSD FreeBSD 8....

H-Sphere Control Panel不安全日志文件权限漏洞

H-Sphere Control Panel是多域名/站点管理控制面板程序。 域名/站点管理不安全日志文件权限问题，本地攻击者可以利用漏洞破坏系统文件，造成拒绝服务或特权提升问题。 目前没有详细漏洞细节提供。 Positive Software H-Sphere 2.4.3 http://www.psoft.net/hsphere2info.html...

Debian DSA-108-1 : wmtv - symlink vulnerability

Nicolas Boullis found some security problems in the wmtv package a dockable video4linux TV player for windowmaker which is distributed in Debian GNU/Linux 2.2. With the current version of wmtv, the configuration file is written back as the superuser, and without any further checks. A malicious us...

GLSA-200404-01 : Insecure sandbox temporary lockfile vulnerabilities in Portage

The remote host is affected by the vulnerability described in GLSA-200404-01 Insecure sandbox temporary lockfile vulnerabilities in Portage A flaw in Portage's sandbox wrapper has been found where the temporary lockfiles are subject to a hard-link attack which allows linkable files to be...

Перезапись файлов Sambar Server (data corruption)

Обратный путь в директориях в счетчике страниц позволяет повредить любой файл...

CVE-1999-0036

IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files...

PT-1997-1019 · Sgi · Irix Login Program

Name of the Vulnerable Software and Affected Versions: IRIX login program affected versions not specified Description: The issue concerns the IRIX login program, where a nonzero LOCKOUT parameter allows unauthorized creation or damage to files. Recommendations: At the moment, there is no...

IRIX 6.2/6.3/6.4 - xfs truncate() Privilege Check

/ source: https://www.securityfocus.com/bid/1540/info The truncate system call on a number of versions of the IRIX operating system with the xfs file system does not properly check permissions before truncating a file, making it possible for unprivileged users to damage files to which they would...