CVE-2002-2089

CVE-2002-2089 is a vulnerability in Solaris 9.0 where the rcp component suffers a buffer overflow, exploitable by a local user via a long command line argument, potentially allowing arbitrary code execution. The description across sources consistently identifies a local-privilege impact with the ...

CVE-2004-2300

Buffer overflow in snmpd in ucd-snmp 4.2.6 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -p command line argument. NOTE: it is not clear whether there are any standard configurations in which snmpd is installed setuid or setgid. If not, then this...

CVE-2002-2016

User-mode Linux UML 2.4.17-8 does not restrict access to kernel address space, which allows local users to execute arbitrary code...

CVE-2001-1553

Buffer overflow in setiathome for SETI@home 3.03, if installed setuid, could allow local users to execute arbitrary code via long command line options 1 socksserver, 2 socksuser, and 3 sockspasswd. NOTE: since the default configuration of setiathome is not setuid, perhaps this issue should not be...

CVE-2002-2041

CVE-2002-2041 affects RTOS 6.1.0 due to multiple buffer overflows that let a local attacker execute arbitrary code. Exploitation vectors are (1) a long ABLANG environment variable in phlocale and (2) a long -u option to pkg-installer. CVSSv2 base score is 7.2 (HIGH); impact is complete confidenti...

CVE-2002-1980

The CVE-2002-1980 entry concerns a buffer overflow in Sun Solaris volumes-d vold (Volume Manager daemon) affecting Solaris 2.5.1 through 8. The underlying flaw is a buffer overflow in vold that allows local users to execute arbitrary code. Affected component: vold; affected platforms: Solaris 2.5...

security flaw

The elfcoredump function in binfmtelf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the createelftables function, causes a negative length argument to pass ...

CVE-2003-1208

Multiple buffer overflows in Oracle 9i 9 before 9.2.0.3 allow local users to execute arbitrary code by 1 setting the TIMEZONE session parameter to a long value, or providing long parameters to the 2 NUMTOYMINTERVAL, 3 NUMTODSINTERVAL or 4 FROMTZ functions...

Cheetah: Untrusted module search path

Background Cheetah is a Python powered template engine and code generator. Description Brian Bird discovered that Cheetah searches for modules in the world-writable /tmp directory. Impact A malicious local user could place a module containing arbitrary code in /tmp, which when imported would run...

CVE-2005-1632

Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/...

DEBIAN-CVE-2005-1632

Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/...

CVE-2004-2013

The CVE-2004-2013 vulnerability affects Linux kernels 2.4.25 and earlier, caused by an integer overflow in the SCTP_SOCKOPT_DEBUG_NAME SCTP socket option in socket.c. An optlen value of -1 allows kmalloc to allocate 0 bytes, enabling a local attacker to potentially execute arbitrary code. Documen...

CVE-2005-0594

The CVE-2005-0594 issue is a local buffer overflow in Apple Mac OS X Server’s NeST (NetInfo Setup Tool) triggered by an overly long -target command-line argument. The flaw allows a local user to execute arbitrary code with the NeST process’s privileges (typically root). Apple addressed this with ...

DEBIAN-CVE-2005-0073

Buffer overflow in queue.c in a support script for sympa 3.3.3, when running setuid, allows local users to execute arbitrary code...

security flaw

Stack-based buffer overflow in shar in GNU sharutils 4.2.1 allows local users to execute arbitrary code via a long -o command line argument...

DEBIAN-CVE-2005-0016

Buffer overflow in the exporteddisplay function in xatitv in gatos before 0.0.5 allows local users to execute arbitrary code...

CVE-2005-1009

Multiple buffer overflows in BakBone NetVault 6.x and 7.x allow 1 remote attackers to execute arbitrary code via a modified computer name and length that leads to a heap-based buffer overflow, or 2 local users to execute arbitrary code via a long Name entry in the configure.cfg file...

CVE-2002-1607

The CVE-2002-1607 entry describes a local-privilege escalation vulnerability in HP Tru64 UNIX: a buffer overflow in the ypmatch component affects Tru64 UNIX versions 5.1a, 5.1, 5.0a, 4.0g, and 4.0f, which could allow a local user to execute arbitrary code. The available sources confirm the affect...

CVE-2002-1602

CVE-2002-1602 describes a buffer overflow in the Braille module for GNU Screen 3.9.11 when HAVE_BRAILLE is defined. This vulnerability could allow local users to execute arbitrary code due to the overflow in the Braille support path. The affected component is the Braille module within GNU Screen;...

CVE-2005-0098

Multiple buffer overflows in the SDL port of abuse abuse-SDL before 2.00 allow local users to execute arbitrary code via the command line...