4381 matches found
DEBIAN-CVE-2013-1874
Untrusted search path vulnerability in csi in Chicken before 4.8.2 allows local users to execute arbitrary code via a Trojan horse .csirc in the current working directory...
HawtJNI: predictable temporary file name leading to local arbitrary code execution
The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJN...
VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit
No description provided by source. / 0day Discovered by: InTeL Auther: InTeL Attack Vector: SEH overwrite Type: Local Tested on Win2k SP4 English Software: VCDGear v3.56 build 050213 Website: www.vcdgear.com Description: VCDGear is a program designed to allow a user to extract MPEG streams from C...
Lynx 2.8 '.mailcap' and '.mime.type' Files Local Code Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31917/info Lynx is prone to a local code-execution vulnerability. Successful exploits may allow attackers to execute arbitrary code within the context of the user running the affected application. Versions prior to Lynx...
PHP < 4.4.5 / 5.2.1 (shmop Functions) Local Code Execution Exploit
No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...
UBUNTU-CVE-2014-0476
The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerability when /tmp is not mounted with the noexec option...
DEBIAN-CVE-2011-4089
The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory...
HawtJNI: predictable temporary file name leading to local arbitrary code execution
The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJN...
HawtJNI: predictable temporary file name leading to local arbitrary code execution
The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJN...
HawtJNI: predictable temporary file name leading to local arbitrary code execution
The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJN...
Notepad++ CCompletion Plugin 1.19 - Local Stack Buffer Overflow
Application:Notepad++ Version:6.5.2 UNICODE Get the application from: http://notepad-plus-plus.org/download/v6.5.2.html Plugin:CCompletion Version: Version 1.19 Unicode Get the plugin from: http://sourceforge.net/apps/mediawiki/notepad-plus/index.php?title=PluginCentral Vulnerability:Stack buffer...
Notepad++ CCompletion Plugin 1.19 - Local Stack Buffer Overflow
Notepad++ CCompletion Plugin 1.19 - Local Stack Buffer Overflow Application:Notepad++ Version:6.5.2 UNICODE Get the application from: http://notepad-plus-plus.org/download/v6.5.2.html Plugin:CCompletion Version: Version 1.19 Unicode Get the plugin from:...
HawtJNI: predictable temporary file name leading to local arbitrary code execution
The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJN...
Linux Kernel (Ubuntu 11.10/12.04) - binfmt_script Stack Data Disclosure
Source: http://www.halfdog.net/Security/2012/LinuxKernelBinfmtScriptStackDataDisclosure/ Introduction Problem description: Linux kernel binfmtscript handling in combination with CONFIGMODULES can lead to disclosure of kernel stack data during execve via copy of data from dangling pointer to stack...
HawtJNI: predictable temporary file name leading to local arbitrary code execution
The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJN...
Ubuntu 12.04 LTS / 12.10 / 13.04 : maas vulnerabilities (USN-2013-1)
It was discovered that maas-import-pxe-files incorrectly loaded configuration information from the current working directory. A local attacker could execute code as an administrator if maas-import-pxe-files were run from an attacker-controlled directory. CVE-2013-1057 It was discovered that...
CVE-2013-2035
Race condition in hawtjni-runtime/src/main/java/org/fusesource/hawtjni/runtime/Library.java in HawtJNI before 1.8, when a custom library path is not specified, allows local users to execute arbitrary Java code by overwriting a temporary JAR file with a predictable name in /tmp...
HawtJNI: predictable temporary file name leading to local arbitrary code execution
The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJN...
CVE-2013-0224
The CVE-2013-0224 vulnerability affects the Drupal Video module (7.x-2.x) prior to 7.x-2.9 when using the FFmpeg transcoder. A local attacker can cause arbitrary PHP code execution by modifying a temporary PHP file used to store FFmpeg-related data; exploitation relies on write access to that tem...
Wordpress Funny4You plugin 1.0 Local File Include Vulnerability
I found vulnerable Code in /funny4you/funny4you.php line 33. The Parameter $server isn't declared before include. So an attacker can execute some local code about it. This is private exploit. You can buy it at https://0day.today...