15 matches found
EUVD-2012-0135
Malware in sbrugna...
EUVD-2013-0425
Malware in sbrugna...
FreeBSD : ksh93 -- certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (8b20d716-49df-11ea-9f7b-206a8a720317)
Upstream ksh93 maintainer Siteshwar Vashisht reports : A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated...
ksh93 -- certain environment variables interpreted as arithmetic expressions on startup, leading to code injection
Upstream ksh93 maintainer Siteshwar Vashisht reports: A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated...
Xorg X11 Server (AIX) - Local Privilege Escalation
Xorg X11 Server AIX - Local Privilege Escalation Exploit Title: AIX Xorg X11 Server - Local Privilege Escalation Date: 29/11/2018 Exploit Author: @0xdono Original Discovery and Exploit: Narendra Shinde Vendor Homepage: https://www.x.org/ Platform: AIX Version: X Window System Version 7.1.1 Filese...
Oracle Solaris Critical Patch Update : jan2013_SRU13_4
This Solaris system is missing necessary patches to address a critical security update : - Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: Utility/ksh93. The supported version that is affected is 11. Difficult to exploit vulnerability requiring logon to Operating...
CVE-2013-0414
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity and availability via unknown vectors related to Utility/ksh93...
Design/Logic Flaw
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity and availability via unknown vectors related to Utility/ksh93...
CVE-2013-0414
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity and availability via unknown vectors related to Utility/ksh93...
CVE-2013-0414
CVE-2013-0414 affects Oracle Solaris 11, with the root cause in the Utility/ksh93 component. The connected Nessus NASL plugin indicates this is addressed by the Solaris jan2013 SRU13_4 patch and notes a critical update context; specific exploit vectors are not disclosed in the sources. The CVE en...
CVE-2012-0097
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect confidentiality via unknown vectors related to ksh93 Shell...
Design/Logic Flaw
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect confidentiality via unknown vectors related to ksh93 Shell...
CVE-2012-0097
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect confidentiality via unknown vectors related to ksh93 Shell...
CVE-2012-0097
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect confidentiality via unknown vectors related to ksh93 Shell...
CVE-2012-0097
Technical details about CVE-2012-0097 are not provided in the connected documents. The sources only indicate an unspecified local confidentiality issue related to ksh93 in Oracle Solaris 11 Express. Monitor for updates.