Lucene search
K

4853 matches found

CVE
CVE
added 2001/05/07 4:0 a.m.54 views

CVE-2001-0141

CVE-2001-0141 affects mgetty: multiple sources confirm insecure temporary-file handling that allows local users to overwrite arbitrary files via a symlink attack in certain configurations. Vulnerable until versions before 1.1.24 (Mandrake/MDKSA-2001:009; Debian DSA-011-2 notes patch in 1.1.21-3po...

1.2CVSS6.2AI score0.00317EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2001/05/07 4:0 a.m.68 views

CVE-2001-0142

CVE-2001-0142 affects squid 2.3 and earlier. The issue is a local symlink/race condition that can cause local users to overwrite arbitrary files via temporary file handling in certain configurations. Impact is described as local privilege/content modification without remote access; CVSS reflects ...

1.2CVSS6.3AI score0.00304EPSS
Exploits0References6Affected Software2
CVE
CVE
added 2001/04/04 4:0 a.m.46 views

CVE-2001-0261

CVE-2001-0261 affects Microsoft Windows 2000 Encrypted File System. The issue is that backups of encrypted files are not properly destroyed, allowing a local attacker to recover the plaintext. The NVD entry assigns a low impact with partial confidentiality loss (CVSS v2 base score 2.1, LOCAL acce...

2.1CVSS6.6AI score0.02562EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2001/03/31 12:0 a.m.27 views

Serious Pitbull LX Vulnerability

Background: Back in February, eWeek and Argus Systems held OpenHack III. "Pitbull vs The Worlds Toughest". With much hype the contest came and went. The result? "17 days, 40,000 Challengers, 5.4 Million Punches and 1 E-Security Champion". As 'the first product to withstand an OpenHack unscathed'...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2001/01/29 12:0 a.m.24 views

Локальный DoS против Windows NT (mutex)

Пользователь может захватить все mutex-объекты, после чего другие приложения не смогут работать с сетью...

1.5AI score
Exploits0References2
Exploit DB
Exploit DB
added 2001/01/25 12:0 a.m.51 views

Solaris 2.6/2.7 - '/usr/bin/write' Local Overflow

include include / /usr/bin/write overflow proof of conecpt. Tested on Solaris 7 x86 Pablo Sor, Buenos Aires, Argentina. 01/2000 [email protected] usage: write-exp shelloffset retaddroffset default offset should work. / long getesp asm"movl %esp,%eax"; char shell =...

7.4AI score
Exploits0
CVE
CVE
added 2001/01/22 5:0 a.m.50 views

CVE-2000-0996

CVE-2000-0996: A format-string vulnerability in the OpenBSD su utility (and possibly other BSD-based OSes) allows a local attacker to gain root privileges via a malformed shell. The issue is described in the NVD entry with a CVSS v2 base score of 7.2 (HIGH) and LOCAL, LOW–complexity conditions, e...

7.2CVSS7.1AI score0.00537EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2001/01/22 5:0 a.m.60 views

CVE-2000-1031

Technical details of CVE-2000-1031 are not publicly provided in the supplied documents; monitor for updates.

4.6CVSS7.8AI score0.00663EPSS
Exploits0References8Affected Software2
NVD
NVD
added 2001/01/09 5:0 a.m.9 views

CVE-2000-1103

rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on the command line...

7.2CVSS6.6AI score0.00941EPSS
Exploits1References2
Cvelist
Cvelist
added 2000/12/19 5:0 a.m.16 views

CVE-2000-1103

rcvtty in BSD 3.0 and 4.0 does not properly drop privileges before executing a script, which allows local attackers to gain privileges by specifying an alternate Trojan horse script on the command line...

6.6AI score0.00941EPSS
Exploits1References2
CVE
CVE
added 2000/12/19 5:0 a.m.51 views

CVE-2000-1103

CVE-2000-1103 affects BSD 3.0/4.0; the rcvtty program does not drop privileges before executing a script, enabling local privilege escalation by supplying an alternate Trojan horse script on the command line. CVSS base score 7.2 (HIGH) from NVD indicates complete impact to confidentiality, integr...

7.2CVSS7AI score0.00941EPSS
Exploits1References2Affected Software1
securityvulns
securityvulns
added 2000/12/02 12:0 a.m.60 views

AnalogX Proxy Server Buffer Overflow Vulnerability

From "zer0-logic" [email protected]: Network Security Solutions Inc. Security Advisory Philippine based Security Company Http://www.nssolution.net Http://connect.to/nssi AnalogX Proxy Server DoS/Buffer Overflow Vulnerabilty Author: Abraham Lincoln H. Handle: zer0logic Email :...

7.1AI score
Exploits0
CVE
CVE
added 2000/10/18 4:0 a.m.46 views

CVE-2000-0880

The CVE-2000-0880 entry concerns LPPlus creating the lpdprocess file with world-writable permissions, which allows local users to kill arbitrary processes by specifying a process ID and using the setuid dcclpdshut program to terminate the specified process. Impact is local access and partial inte...

3.6CVSS6.8AI score0.00745EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2000/10/13 4:0 a.m.23 views

CVE-2000-0468

man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack...

6.3AI score0.00845EPSS
Exploits1References2
Cvelist
Cvelist
added 2000/10/13 4:0 a.m.20 views

CVE-2000-0318

Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot .. attack...

6.3AI score0.01191EPSS
Exploits1References2
CVE
CVE
added 2000/09/21 4:0 a.m.54 views

CVE-2000-0695

The CVE-2000-0695 entry relates to buffer overflows in the pgxconfig component of the Raptor GFX configuration tool, enabling local users to escalate privileges via crafted command line options. Affected software is the pgxconfig utility within Raptor GFX; the underlying issue is a buffer overflo...

7.2CVSS7.1AI score0.00873EPSS
Exploits1References1Affected Software1
exploitpack
exploitpack
added 2000/08/02 12:0 a.m.17 views

IRIX 6.5.x - usrsbindmplay Local Buffer Overflow

IRIX 6.5.x - usrsbindmplay Local Buffer Overflow / source: https://www.securityfocus.com/bid/1528/info Certain versions of IRIX ship with a version of dmplay which is vulnerable to a buffer overflow attack. The program, dmplay, is used to play movie files under IRIX. The problem at hand is the wa...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2000/07/01 12:0 a.m.29 views

Дырки в Secure desktop

Локальные и удаленный возможности для DoS-атаки, включая подмену адреса default gateway...

0.7AI score
Exploits0References1Affected Software1
NVD
NVD
added 2000/06/02 4:0 a.m.18 views

CVE-2000-0468

man in HP-UX 10.20 and 11 allows local attackers to overwrite files via a symlink attack...

4.6CVSS6.3AI score0.00845EPSS
Exploits1References2
CVE
CVE
added 2000/04/10 4:0 a.m.44 views

CVE-2000-0224

The CVE-2000-0224 entry refers to ARCserve agent on SCO UnixWare 7.x. The vulnerability is a local privilege escalation via a symlink attack that could allow a local attacker to obtain root privileges. The description clearly states the affected product/component and the root cause (symlink-relat...

1.2CVSS7AI score0.00563EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder