7 matches found
MTools 3.9.x MFormat Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9746/info It has been reported that mformat is prone to a privilege escalation vulnerability when installed as a setUID application. This issue is due to a design error allowing a user to create any arbitrary files as the...
Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service
Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service Bugtraq ID: 36097 Class: Input Validation Error Published: Jan 17 2009 12:00AM Updated: Nov 12 2009 08:06PM Credit: Peter Valchev Vulnerable: SuSE openSUSE 11.0 SuSE openSUSE 10.3 SuSE Linux 9 SuSE Linux 11 SuSE Linux 10.0 RedHat...
CUPS '_cupsImageReadTIFF()'整数溢出漏洞
BUGTRAQ ID: 34571 CVE ID:CVE-2009-0163 CNCVE ID:CNCVE-20090163 Common Unix Printing SystemCUPS是一款通用Unix打印系统,是Unix环境下的跨平台打印解决方案,基于Internet打印协议,提供大多数PostScript和raster打印机服务。 CUPS处理TIFF图像存在整数溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。...
trn-test.txt
/ /usr/bin/trn local root exploit By ZzagorR - http://www.rootbinbash.com / / sh-2.05b$ ./trn usage : ./trn ret buf example : ./trn 0xbfffff64 + mandrake 9.2 = 0xbfffff96 + slackware 10.0.0= 0xbfffff98 + slackware 9.1.0= 0xbfffff84 sh-2.05b$ sh-2.05b$ ./trn 0xbfffff84 128 BOO % 128 RET % bfffff84...
Mandrake Slackware usrbintrn - Local Privilege Escalation (Not SUID)
Mandrake Slackware usrbintrn - Local Privilege Escalation Not SUID / /usr/bin/trn local root exploit By ZzagorR - http://www.rootbinbash.com / / sh-2.05b$ ./trn usage : ./trn ret buf example : ./trn 0xbfffff64 + mandrake 9.2 = 0xbfffff96 + slackware 10.0.0= 0xbfffff98 + slackware 9.1.0= 0xbfffff8...
/usr/bin/trn Local Exploit (not suid)
No description provided by source. / /usr/bin/trn local root exploit By ZzagorR - http://www.rootbinbash.com / / sh-2.05b$ ./trn usage : ./trn ret buf example : ./trn 0xbfffff64 + mandrake 9.2 = 0xbfffff96 + slackware 10.0.0= 0xbfffff98 + slackware 9.1.0= 0xbfffff84 sh-2.05b$ sh-2.05b$ ./trn...
Hijacking Apache 2 via mod_perl
Product: modperl Versions: 1.9909 / apache 2.0.47 URL: http://perl.apache.org Impact: Daemon Hijacking Bug class: Leaked Descriptor Vendor notified: Yes Fix available: No Date: 01/21/04 Issue: ====== Modperl under apache 2.0.x leaks critical file descriptors that can be used to takeover hijack th...