Lynx 2.8 - '.mailcap'/'.mime.type' Local Code Execution

source: https://www.securityfocus.com/bid/31917/info Lynx is prone to a local code-execution vulnerability. Successful exploits may allow attackers to execute arbitrary code within the context of the user running the affected application. Versions prior to Lynx 2.8.6rel.4 are affected. .mime.type...

lynx: .mailcap and .mime.types files read from CWD

Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious 1 .mailcap and 2 mime.types files in the current working directory...

CVE-2008-4589

Heap-based buffer overflow in the tvtumin.sys kernel driver in Lenovo Rescue and Recovery 4.20, including 4.20.0511 and 4.20.0512, allows local users to execute arbitrary code via a long file name...

CVE-2008-4451

The SysInspector AntiStealth driver esiasdrv.sys 3.0.65535.0 in ESET System Analyzer Tool 1.1.1.0 allows local users to execute arbitrary code via a certain METHODNEITHER IOCTL request to \Device\esiasdrv that overwrites a pointer...

CVE-2008-4451

The SysInspector AntiStealth driver esiasdrv.sys 3.0.65535.0 in ESET System Analyzer Tool 1.1.1.0 allows local users to execute arbitrary code via a certain METHODNEITHER IOCTL request to \Device\esiasdrv that overwrites a pointer...

FreeBSD Ports: cyrus-sasl

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2008-3577

Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the "-g" parameter in the ttdmain function. NOTE: it is unlikely that this issue would cross privilege boundaries in typical environments...

Integer overflow

Integer signedness error in the ipsetsrcfilter function in the IP Multicast Filter in uts/common/inet/ip/ipmulti.c in the kernel in Sun Solaris 10 and OpenSolaris before snv92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large val...

CVE-2008-2710

Integer signedness error in the ipsetsrcfilter function in the IP Multicast Filter in uts/common/inet/ip/ipmulti.c in the kernel in Sun Solaris 10 and OpenSolaris before snv92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large val...

CVE-2008-2230

Untrusted search path vulnerability in 1 reportbug 3.8 and 3.31, and 2 reportbug-ng before 0.2008.06.04, allows local users to execute arbitrary code via a malicious module file in the current working directory...

QEMU Buffer overflow via crafted "net socket listen" option

Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of...

CVE-2008-2147

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

DEBIAN-CVE-2008-2147

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

Open Office.org 2.31 swriter Local Code Execution Exploit

No description provided by source. / Open Office.org 2.31 swriter local code execution exploit. This bug has been patched in OOo 2.4. Spawns calc.exe if successful. [email protected] / include stdio.h include string.h include stdlib.h...

Open Office.org 2.31 swriter Local Code Execution Exploit

Exploit for unknown platform in category local exploits...

Open Office.org 2.31 - swriter Local Code Execution

Open Office.org 2.31 - swriter Local Code Execution / Open Office.org 2.31 swriter local code execution exploit. This bug has been patched in OOo 2.4. Spawns calc.exe if successful. [email protected] / include include include / win32exec - EXITFUNC=process CMD=calc.exe Size=164...

Open Office.org 2.31 - swriter Local Code Execution

/ Open Office.org 2.31 swriter local code execution exploit. This bug has been patched in OOo 2.4. Spawns calc.exe if successful. [email protected] / include include include / win32exec - EXITFUNC=process CMD=calc.exe Size=164 Encoder=PexFnstenvSub http://metasploit.com / unsigned char...

Buffer overflow in moxa driver

Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver moxa.c in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value...

mswork-insecure.txt

BKIS Research 21/04/2008 - Microsoft Work ActiveX Insecure Method Exploit - ====================================================================== Table of Contents Affected Software....................................................1...

CVE-2008-1671

startkdeinit in KDE 3.5.5 through 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" probably command-line arguments that cause startkdeinit to send SIGUSR1 signals to other processes...