CVE-2002-0391

Integer overflow in xdrarray function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdrarray through RPC services such as rpc.cmsd and dmispd...

CVE-2002-0651

Buffer overflow in the DNS resolver code used in libc, glibc, and libbind, as derived from ISC BIND, allows remote malicious DNS servers to cause a denial of service and possibly execute arbitrary code via the stub resolvers...

DEBIAN-CVE-2002-0651

Buffer overflow in the DNS resolver code used in libc, glibc, and libbind, as derived from ISC BIND, allows remote malicious DNS servers to cause a denial of service and possibly execute arbitrary code via the stub resolvers...

NetBSD Security Advisory 2002-006: buffer overrun in libc DNS resolver

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-006 ================================= Topic: buffer overrun in libc DNS resolver Version: NetBSD-current: source prior to June 26, 2002 NetBSD-1.6 beta:source prior to June 26, 2002 NetBSD-1.5.2: affected NetBSD-1.5.1: affected...

Remote buffer overflow in resolver code of libc

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ----------------------------------------------------------------------------- Pine Internet Security Advisory ----------------------------------------------------------------------------- Advisory ID : PINE-CERT-20020601 Authors : Joost Pol...

CVE-2002-0175

The CVE-2002-0175 issue concerns libsafe 2.0-11 and earlier, where format-string protection can be bypassed by using certain characters ("'" and "I") that are implemented in glibc but not in libsafe. The connected Mandrake advisory (MDKSA-2002:026) states that this bypass arises from how printf w...

Buffer overflows in Compaq Tru64 Unix

Buffer overflow in libc locale functions and -session switch of dtprintinfo...

locale_sol.txt

----/ Exploiting the Libc Locale Subsystem Format String Vulnerability on Solaris/SPARC ---/ 10/10/2000 -/ Solar Eclipse ---/ I. Introduction This paper describes in detail the exploitation of the libc locale format strin g vulnerability on Solaris/SPARC. The full source code for the exploit is...

FreeBSD-SA-01:40.fts

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:40 Security Advisory FreeBSD, Inc. Topic: fts3 routines contain race condition REVISED Category: core Module: libc Announced: 2001-06-04 Revised: 2001-08-16 Credits: Nick...

Дырка в libc старых версий Solaris (getgrnam)

Классическое переполнение буфера в getgrnam...

lpset.overflow

Here's an overflow exploit that works on a non-exec stack on x86 boxes. It demonstrates how it is possible to thread together several libc calls. I have not seen any other exploits for x86 that have done this.. for the lpset bug in sol7 x86. Tim N. define BASE 0xdff40000 define STACK 0x8047e30...

CVE-1999-0964

CVE-1999-0964: Buffer overflow in FreeBSD libc setlocale triggered by a long PATH_LOCALE environment variable. The flaw enables local attackers to execute arbitrary code, with impacts listed as complete confidentiality, integrity and availability. Root cause is a buffer overflow in setlocale; no ...

CVE-1999-0789

CVE-1999-0789 concerns a buffer overflow in the AIX ftpd (FTP daemon) within the libc library. Connected sources describe the root cause as a buffer overflow in the libc used by AIX FTPd, with offshoots noting a remote overflow that could crash the FTP server and, in some reports, allow the remot...

CVE-1999-0789

Buffer overflow in AIX ftpd in the libc library...

CVE-1999-0966

The vulnerability is in the Solaris libc: a buffer overflow in the getopt function that can be triggered by a long argv[0], potentially allowing local users to gain root privileges. Connected PT-security data confirms Solaris as the affected platform and notes that affected versions are not speci...

CVE-1999-0767

CVE-1999-0767 is a buffer overflow vulnerability described in Solaris components (libc, ufsrestore, and rcp) triggered via the LC_MESSAGES environment variable. The available connected records confirm the affected software and the root cause (buffer overflow), with the PT-1999-1338 entry reiterat...

CVE-1999-0767

Buffer overflow in Solaris libc, ufsrestore, and rcp via LCMESSAGES environmental variable...

[SECURITY] Updated i386 package for sendmail

The version of sendmail that was listed in the earlier advisory today was compiled with the wrong version of libc. This has been corrected in version 8.9.3-3slink1.0.1 . wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Intel ia32 architecture:...

[SECURITY] Updated i386 package for sendmail

------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman December 7, 1999 - ------------------------------------------------------------------------ The version of sendmail that was...

CVE-1999-0789

Buffer overflow in AIX ftpd in the libc library...