70 matches found
glibc getcwd() Local Privilege Escalation
/ This software is provided by the copyright owner "as is" and any expressed or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. In no event shall the copyright owner be liable for any direct, indirec...
glibc - getcwd() Local Privilege Escalation Exploit
Exploit for linux platform in category local exploits / This software is provided by the copyright owner "as is" and any expressed or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. In no event shall...
USN-3536-1: GNU C Library vulnerability
It was discovered that the GNU C library did not properly handle all of the possible return values from the kernel getcwd2 syscall. A local attacker could potentially exploit this to execute arbitrary code in setuid programs and gain administrative privileges. CVE-2018-1000001...
glibc < 2.26 - 'getcwd()' Local Privilege Escalation
/ This software is provided by the copyright owner "as is" and any expressed or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. In no event shall the copyright owner be liable for any direct, indirec...
glibc 2.26 - getcwd() Local Privilege Escalation
glibc 2.26 - getcwd Local Privilege Escalation / This software is provided by the copyright owner "as is" and any expressed or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. In no event shall the...
CVE-2018-1000001
In glibc 2.26 and earlier there is confusion in the usage of getcwd by realpath which can be used to write before the destination buffer leading to a buffer underflow and potential code execution...
UBUNTU-CVE-2018-1000001
In glibc 2.26 and earlier there is confusion in the usage of getcwd by realpath which can be used to write before the destination buffer leading to a buffer underflow and potential code execution...
OracleVM 3.3 / 3.4 : sudo (OVMSA-2016-0170)
The remote OracleVM system is missing necessary patches to address critical security updates : - Update noexec syscall blacklist - Fixes CVE-2016-7032, CVE-2016-7076 Resolves: rhbz1391937 - RHEL-6.8 erratum - fixed a bug causing that non-root users can list privileges of other users Resolves:...
CVE-1999-0083
CVE-1999-0083 corresponds to a getcwd() file descriptor leak in FTP. The available connected data identifies the vulnerability as a leak in the getcwd() call within FTP, but no exploit details are provided. CVSS 2.0 metrics indicate a Network attack vector, Low attack complexity, no authenticatio...
PT-1997-1042 · Sgi · Irix
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue concerns a file descriptor leak in the getcwd function when using FTP. Recommendations: At the moment, there is no information about a newer version that contains a fix fo...