4096 matches found
Sam Lantinga splitvt 1.6.3 - Local Buffer Overflow
Sam Lantinga splitvt 1.6.3 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/1346/info A buffer overflow condition that could be exploited to obtain root exists in splitvt 1.6.3 and earlier. Splitvt is distributed with several Linux distributions. / Local exploit for Debian...
xsoldier (FreeBSD 3.3/Linux Mandrake 7.0) - Local Buffer Overflow (2)
/ source: https://www.securityfocus.com/bid/871/info Certain versions of FreeBSD 3.3 Confirmed and Linux Mandrake confirmed ship with a vulnerable binary in their X11 games package. The binary/game in question, xsoldier, is a setuid root binary meant to be run via an X windows console. The binary...
Solaris 7 x86 lp exploit.
Setuid proggie /usr/bin/lp has an easily exploitable buffer overflow. This exploit is for Solaris 7 x86 version, no sparc exploit is available to my knowledge. later, DiGiT / solaris 2.7 /usr/bin/lp local exploit, i386. discovered by DiGiT. try offset 150-250 if sploit fails greets: !ADM,...
mtr-0.41 root exploit
/ c 2000 babcia padlina / buffer0verfl0w security www.b0f.com / / freebsd mtr-0.41 local root exploit / include stdio.h include sys/param.h include sys/stat.h include string.h define NOP 0x90 define BUFSIZE 10000 define ADDRS 1200 long getespvoid asm"movl esp, eaxn"; int mainargc, argv int argc;...
Solaris 2.67.0 - lp -d Option Buffer Overflow
Solaris 2.67.0 - lp -d Option Buffer Overflow // source: https://www.securityfocus.com/bid/1143/info A buffer overrun has been discovered in the lp program, as included with Sun's Solaris 7 operating system. By passing well crafted, machine executable code of sufficient length to the -d option of...
Sam Hawker wmcdplay 1.0 beta1-2 - Local Buffer Overflow (1)
Sam Hawker wmcdplay 1.0 beta1-2 - Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/1047/info wmcdplay is cdplayer generally used with the WindowMaker X11 window-manager on unix systems. While wmcdplay is rarely installed at all by default, when it is installed it is typically...
[SECURITY] New version of mtr released
------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman March 9, 2000 - ------------------------------------------------------------------------ Package: mtr Vulnerability type: possible...
CVE-1999-0730
CVE-1999-0730 concerns the zsoelim program in the Debian man-db package, where a symlink attack allows local users to overwrite files. The vulnerability is described across multiple connected records (Red Hat, CVE listing, NVD) as a local attack with potential complete impact on confidentiality, ...
analogx.www.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Happy New Year! to All!! Local / Remote GET Buffer Overflow Vulnerability in AnalogX SimpleServer:WWW HTTP Server v1.1 USSR Advisory Code: USSR-99029 Release Date: December 31, 1999 5/5 not the original one, original 5/5 will be released 15/01/1900 :...
Netscape Communicator 4.5 - prefs.js Buffer Overflow
// source: https://www.securityfocus.com/bid/893/info Netscape Communicator 4.5 has an unchecked buffer, through which code can be injected for execution via the prefs.js preferences file. This could be exploited locally to run arbitrary code at the privilege level of the current user. The buffer...
SCO Unixware 7.0 - 'xlock(1)' 'Username' Local Buffer Overflow
// source: https://www.securityfocus.com/bid/825/info Certain versions of Unixware ship with a version of xlock which is vulnerable to a buffer overflow attack. The xlock1 program locks the local X display until a username and password are entered. In this instance a user can provide an overly lo...
CVE-1999-0413
CVE-1999-0413 describes a buffer overflow in the SGI X server that enables a local user to gain root privileges via the X server font path. The Red Hat and CVE records corroborate the same core issue: a local-exploit path that could lead to full compromise on affected systems running SGI X server...
CVE-1999-0339
The CVE-1999-0339 issue affects Solaris’ libauth, where a buffer overflow in the library permits local users to gain additional privileges, potentially root access. Affected component: libauth on Solaris; vulnerability type: buffer overflow leading to local privilege escalation. Impact as describ...
libtermcap_exploit.txt
Subject: local libtermcap exploit To: [email protected] Well, I wrote this a little while back. This is a serious bug, so people should be able to test their systems properly. All admins should definitely upgrade to the newest libtermcap. - sk8 of LS / Local exploit for suid root programs...
glibc_exploit.txt
Subject: Linux glibc 2.1.x / wu-ftpd =2.5 / BeroFTPD / lynx / vlock / mc / glibc 2.0.x To: [email protected] First of all, something less or more personal - sorry to all [email protected] people for this post. I'm really angry, as this stuff become well-known without my knowledge... so, only a...
SCO Open Server 5.0.5 - X Library Buffer Overflow (1)
SCO Open Server 5.0.5 - X Library Buffer Overflow 1 // source: https://www.securityfocus.com/bid/638/info A buffer overflow vulnerability in the shared X library may allows local users to obtain higher privileges. Any setuid applications linked against the library are possibly vulnerable. The...
RedHat Linux 6.0 Slackware Linux 4.0 - Termcap tgetent() Local Buffer Overflow (2)
RedHat Linux 6.0 Slackware Linux 4.0 - Termcap tgetent Local Buffer Overflow 2 // source: https://www.securityfocus.com/bid/588/info A buffer overflow existed in libtermcap's tgetent function, which could cause the user to execute arbitrary code if they were able to supply their own termcap file...
IBM AIX 4.3.1 - adb Denial of Service
IBM AIX 4.3.1 - adb Denial of Service source: https://www.securityfocus.com/bid/520/info adb is the debugger that ships with IBM's AIX operating system. It is possible for a local user to cause a local denial of service through exploiting the version of adb shipped with AIX 4.2 through 4.3.1. The...
SCO Open Server 5.0.5 - XBase Buffer Overflow
// source: https://www.securityfocus.com/bid/479/info The XBase package that ships with SCO OpenServer 5.0. is vulnerable to several buffer overflow attacks in many different XBase tools. The tools that are installed setuid root allow local users to gain superuser privileges. This is because they...
RedHat Linux 5.1 - xosview
RedHat Linux 5.1 - xosview // source: https://www.securityfocus.com/bid/362/info xosview is an X11 system monitoring application that ships with RedHat 5.1 installed setuid root. A buffer overflow vulnerability was found in Xrm.cc, the offending code listed below: char userrfilename1024;...