IBM AIX <= 4.2.1, Sun Solaris <= 7.0 LC_MESSAGES libc Buffer Overflow Vulnerability (4)

No description provided by source. source: http://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges. This problem is found in both IBM...

Caldera UnixWare 7.1.1 - Message Catalog Environment Variable Format String

// source: https://www.securityfocus.com/bid/4060/info UnixWare is a commercially available Unix Operating System. It was originally developed by SCO, and is now distributed and maintained by Caldera. A format string vulnerability in the locale subsystem could lead to a user gaining elevated...

CVE-1999-0767

CVE-1999-0767 is a buffer overflow vulnerability described in Solaris components (libc, ufsrestore, and rcp) triggered via the LC_MESSAGES environment variable. The available connected records confirm the affected software and the root cause (buffer overflow), with the PT-1999-1338 entry reiterat...

solaris_LCmessages.txt

Subject: Question on Solaris LCMESSAGES libc exploit To: [email protected] Hello, A previous message stated that the LCMESSAGES bug in Solaris has been fixed in 7. However, I am still able to gain root with the below code on Sparc Solaris 7 5/99 Release boxes with MU2 and 7Recommended pat...

CVE-1999-0767

Buffer overflow in Solaris libc, ufsrestore, and rcp via LCMESSAGES environmental variable...

PT-1999-1338 · Oracle · Solaris

Name of the Vulnerable Software and Affected Versions: Solaris affected versions not specified Description: The issue is related to a buffer overflow in Solaris libc, ufsrestore, and rcp, which can be triggered via the LC MESSAGES environmental variable. Recommendations: At the moment, there is n...

IBM AIX 4.2.1 Sun Solaris 7.0 - LC_MESSAGES libc Buffer Overflow (2)

IBM AIX 4.2.1 Sun Solaris 7.0 - LCMESSAGES libc Buffer Overflow 2 // source: https://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges...

IBM AIX 4.2.1 Sun Solaris 7.0 - LC_MESSAGES libc Buffer Overflow (3)

IBM AIX 4.2.1 Sun Solaris 7.0 - LCMESSAGES libc Buffer Overflow 3 / source: https://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges...

IBM AIX 4.2.1 / Sun Solaris 7.0 - LC_MESSAGES libc Buffer Overflow (3)

/ source: https://www.securityfocus.com/bid/268/info A buffer overflow in libc's handling of the LCMESSAGES environment variable allows a malicious user to exploit any suid root program linked agains libc to obtain root privileges. This problem is found in both IBM's AIX and Sun Microsystem's...