7 matches found
EUVD-2000-0169
Malware in sbrugna...
RedHat 4.x/5.x/6.x,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.x man Buffer Overrun (1)
No description provided by source. / source: http://www.securityfocus.com/bid/1011/info RedHat 4.0/4.1/4.2/5.0/5.1/5.2/6.0/6.2,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.2/4.4 man Buffer Overrun Vulnerability A buffer overflow exists in the implementation of the 'man' program shipped with...
RedHat 4.x/5.x/6.x,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.x man Buffer Overrun (2)
No description provided by source. / source: http://www.securityfocus.com/bid/1011/info RedHat 4.0/4.1/4.2/5.0/5.1/5.2/6.0/6.2,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.2/4.4 man Buffer Overrun Vulnerability A buffer overflow exists in the implementation of the 'man' program shipped with...
RedHat man 缓冲区溢出漏洞
在大多数的Linux发布中,/usr/bin/man被设置了sgid man位.设置这一位是为了在 /var/catman目录下创建预先格式化好的man手册页,以便提高访问速度。然而,man 程序多次使用sprintf函数将用户输入的数据储存到固定大小的缓冲区中。这导致用 户可以提供超长的数据来使缓冲区溢出,获得man gid权限,进一步甚至可能获得root 权限。 比如,通过设置MANOAGER变量为超过4000个'A'的字符串,将导致缓冲区溢出: $ MANPAGER=perl -e 'print "A"x4000' man ls ... 1200 setuid500 = 0 120...
CVE-2000-0170
CVE-2000-0170 describes a buffer overflow in the Linux man program triggered by the MANPAGER environment variable, allowing local users to gain privileges. The connected documents reiterate this root cause and the local-privilege impact, but do not provide concrete details on affected product ver...
CVE-2000-0170
Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable...
CVE-2000-0170
Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable...