Solaris Runtime Linker (ld.so.1) Buffer Overflow Exploit (SPARC version)

No description provided by source. / ld.so.1 exploit SPARC coded by: osker178 bjr213 psu.edu Alright, so this exploits a fairly standard buffer overflow in the default Solaris runtime linker ld.so.1 discovery by Jouko Pynnonen Only real deviation here from the standard overflow and return into li...

Solaris 10 (x86) : 124923-03

SunOS 5.10x86: ld.so.1 patch. Date this patch was last updated by Sun : Apr/09/07 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if ! definedfunc"bnrando...

Solaris 10 (sparc) : 124922-03

SunOS 5.10: ld.so.1 patch. Date this patch was last updated by Sun : Apr/09/07 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if ! definedfunc"bnrandom"...

CVE-2006-6495

Stack-based buffer overflow in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via large precision padding values in a format string specifier in the format parameter of the doprf function. NOTE: this issue normally does not cross privilege boundaries, except in...

CVE-2006-6494

Directory traversal vulnerability in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via a .. dot dot sequence in the LANG environment variable that points to a locale file containing attacker-controlled format string specifiers...

CVE-2006-6495

CVE-2006-6495 describes a stack-based buffer overflow in ld.so.1 on Sun Solaris 8/9/10. An attacker can trigger arbitrary code execution via large precision padding values in a format string specifier passed to the doprf function, resulting in local code execution. The issue generally does not cr...

Solaris Runtime Linker (ld.so.1) Buffer Overflow Exploit (SPARC version

No description provided by source. / ld.so.1 exploit SPARC coded by: osker178 bjr213 psu.edu Alright, so this exploits a fairly standard buffer overflow in the default Solaris runtime linker ld.so.1 discovery by Jouko Pynnonen Only real deviation here from the standard overflow and return into li...

Solaris 2.6/7/8/9 (ld.so.1) Local Root Exploit (sparc)

No description provided by source. / $Id: raptorldpreload.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorldpreload.c - ld.so.1 local, Solaris/SPARC 2.6/7/8/9 Copyright c 2003-2004 Marco Ivaldi [email protected] Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 throug...

Solaris Runtime Linker (SPARC) - ld.so.1 Local Buffer Overflow

Solaris Runtime Linker SPARC - ld.so.1 Local Buffer Overflow / ld.so.1 exploit SPARC coded by: osker178 bjr213 psu.edu Alright, so this exploits a fairly standard buffer overflow in the default Solaris runtime linker ld.so.1 discovery by Jouko Pynnonen Only real deviation here from the standard...

Solaris Runtime Linker (SPARC) - 'ld.so.1' Local Buffer Overflow

/ ld.so.1 exploit SPARC coded by: osker178 bjr213 psu.edu Alright, so this exploits a fairly standard buffer overflow in the default Solaris runtime linker ld.so.1 discovery by Jouko Pynnonen Only real deviation here from the standard overflow and return into libc scenario is that at the time tha...

CVE-2003-0609

CVE-2003-0609 describes a stack-based buffer overflow in Sun Solaris’ runtime linker ld.so.1 (vulnerable on Solaris 2.6–9) that lets local users gain root privileges when LD_PRELOAD is long. The root cause is a overflow in the dynamic linker when processing LD_PRELOAD, enabling a local privilege ...