Lucene search
K

42 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.9 views

Fedora 42 : toolbox (2025-e41c694c83)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-e41c694c83 advisory. Security fixes Bumped the minimum github.com/go-viper/mapstructure/v2 version to 2.3.0 for GHSA-fv92-fjc5-jj9h or GO-2025-3787 Bumped the minimum...

9CVSS8.6AI score0.02541EPSS
Exploits4References3
RedhatCVE
RedhatCVE
added 2025/05/21 6:30 p.m.5 views

CVE-2003-0830

Buffer overflow in marbles 1.0.2 and earlier allows local users to gain privileges via a long HOME environment variable...

4.6CVSS7AI score0.00731EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 6:21 a.m.3 views

SUSE CVE-2003-0454

Multiple buffer overflows in xgalaga 2.0.34 and earlier allow local users to gain privileges via a long HOME environment variable...

7.2CVSS7.2AI score0.03253EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.4 views

SUSE CVE-2009-0601

Format string vulnerability in Wireshark 0.99.8 through 1.0.5 on non-Windows platforms allows local users to cause a denial of service application crash via format string specifiers in the HOME environment variable...

2.1CVSS6.4AI score0.00371EPSS
Exploits0References4
Snyk
Snyk
added 2019/12/10 3:34 p.m.3 views

Command Injection

Overview chrome-launcher is a library to launch Google Chrome with ease from node. Affected versions of this package are vulnerable to Command Injection. By controlling the $HOME environment variable in Linux operating systems, an attacker can execute arbitrary code. PoC: var maliciouscode = '&...

9.8CVSS7.3AI score0.01023EPSS
Exploits1References2
Prion
Prion
added 2013/09/25 10:31 a.m.14 views

Design/Logic Flaw

A certain Ubuntu build procedure for perf, as distributed in the Linux kernel packages in Ubuntu 10.04 LTS, 12.04 LTS, 12.10, 13.04, and 13.10, sets the HOME environment variable to the buildd directory and consequently reads the system configuration file from the buildd directory, which allows...

6.9CVSS6.8AI score0.00441EPSS
Exploits0References13Affected Software1
Gentoo Linux
Gentoo Linux
added 2004/10/05 12:0 a.m.55 views

NetKit-telnetd: buffer overflows in telnet and telnetd

Background NetKit-telnetd is a standard Linux telnet client and server from the NetKit utilities. Description A possible buffer overflow exists in the parsing of option strings by the telnet daemon, where proper bounds checking is not applied when writing to a buffer. Additionaly, another possibl...

10CVSS7.2AI score0.37896EPSS
Exploits1
OSV
OSV
added 2004/03/29 5:0 a.m.7 views

CVE-2004-0158

Buffer overflow in lbreakout2 allows local users to gain 'games' group privileges via a large HOME environment variable to 1 editor.c, 2 theme.c, 3 manager.c, 4 config.c, 5 game.c, 6 levels.c, or 7 main.c...

6.5AI score
Exploits0References8
Cvelist
Cvelist
added 2003/10/01 4:0 a.m.23 views

CVE-2003-0830

Buffer overflow in marbles 1.0.2 and earlier allows local users to gain privileges via a long HOME environment variable...

6.6AI score0.00731EPSS
Exploits0References1
securityvulns
securityvulns
added 2003/09/29 12:0 a.m.31 views

Freesweep buffer overflow

Buffer overflow during HOME variable parsing...

4.6AI score
Exploits0References1Affected Software1
OSV
OSV
added 2003/08/07 4:0 a.m.3 views

DEBIAN-CVE-2003-0454

Multiple buffer overflows in xgalaga 2.0.34 and earlier allow local users to gain privileges via a long HOME environment variable...

7.2CVSS7.2AI score0.03253EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2003/05/06 12:0 a.m.25 views

Youbin 2.5/3.0/3.4 - 'HOME' Buffer Overflow

source: https://www.securityfocus.com/bid/7503/info It has been reported that youbin is vulnerable to a locally exploitable buffer overflow. The problem is said to occur while processing environment variables. Specifically, an internal memory buffer may be overrun while handling a HOME environmen...

7.4AI score
Exploits0
CVE
CVE
added 2003/04/02 5:0 a.m.50 views

CVE-1999-1490

CVE-1999-1490 affects xosview 1.5.1 in Red Hat 5.1. The issue is a local privilege escalation where an overly long HOME environmental variable enables a non-privileged user to gain root access. The root cause is not expanded in the provided documents beyond the environmental variable manipulation...

7.2CVSS7.3AI score0.00927EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2003/02/07 5:0 a.m.16 views

CVE-2003-0034

Buffer overflow in the mtink status monitor, as included in the printer-drivers package in Mandrake Linux, allows local users to execute arbitrary code via a long HOME environment variable...

7.2CVSS7.4AI score0.01304EPSS
Exploits1References5
securityvulns
securityvulns
added 2001/12/01 12:0 a.m.32 views

ASI Oracle Security Alert: Oracle Home Environment Variable Buffer Overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Oracle Home Environment Variable Buffer Overflow For additional details, the official advisories from Oracle Corporation can be downloaded from: http://otn.oracle.com/deploy/security/pdf/dbsmpalert.pdf Summary: By setting a long ORACLEHOME value more...

0.2AI score
Exploits0
CVE
CVE
added 2001/09/12 4:0 a.m.46 views

CVE-1999-1534

CVE-1999-1534 affects Knox Arkeia Backup Server (backup product) with a local buffer overflow in nlservd and rnavc, exploitable via a long HOME environment variable to obtain root privileges. Descriptions across sources consistently indicate local access and root compromise; no concrete remediati...

7.2CVSS6.5AI score0.01082EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2001/07/02 4:0 a.m.17 views

CVE-2001-0422

Buffer overflow in Xsun in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable...

7.2CVSS7.4AI score0.01275EPSS
Exploits1References4
NVD
NVD
added 2000/10/20 4:0 a.m.16 views

CVE-2000-0794

Buffer overflow in IRIX libgl.so library allows local users to gain root privileges via a long HOME variable to programs such as 1 gmemusage and 2 grosview...

7.2CVSS6.8AI score0.00798EPSS
Exploits0References4
Cvelist
Cvelist
added 2000/06/02 4:0 a.m.24 views

CVE-2000-0230

Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable...

6.8AI score0.00917EPSS
Exploits0References3
Packet Storm
Packet Storm
added 1999/09/28 12:0 a.m.34 views

SuSE_overflow_exploit.txt

Greetings, My last post regarding a sccw exploit simply allowed any user to read any file on the system but, of course, didn't yield any instant root. A much more serious problem now exists in the form of a HOME environment variable buffer overflow. If you hadn't removed the s-bit before, now is...

0.1AI score
Exploits0
Rows per page
Query Builder