(SRADV00002) Remote root compromise through pam_smb and pam_ntdom

================================================= Secure Reality Pty Ltd. Security Advisory 1 SRADV00002 http://www.securereality.com.au ================================================= Title Remote root compromise through pamsmb and pamntdom Released 11/09/2000 Vulnerable pamsmb - stable versio...

CVE-2000-0356

Pluggable Authentication Modules PAM in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts...

CVE-1999-0342

Linux PAM modules allow local users to gain root access using temporary files...

linux_stealth_module.txt

Subject: yet another article about stealth modules in linux. To: [email protected] abtrom: anti btrom .................. Preface: ........ I've seen many stealth modules for Linux. New ways of of hiding the modules are found, so the 'lsmod' cant find them, etc, etc. But the problem is tha...

Sun Solaris 2.5.1 PAM / unix_scheme - 'passwd' Local Privilege Escalation

/ source: https://www.securityfocus.com/bid/201/info There is a buffer overflow condition on arguments in Pluggable Authentication Modules PAM and unixscheme 5.4 and 5.3. Therefore, an unauthorized user could exploit this vulnerability via the passwd program to gain root access. Under SunOS 5.5.1...

CVE-2018-4643

...

PT-2010-5698 · Suse +2 · Cloop-Kmp-Default +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.36-rc4 cpint-kmp-default affected versions not specified drbd-kmp-default affected versions not specified cloop-kmp-default affected versions not specified Description: The issue allows local users to obtain...

PT-2004-3658 · Debian +3 · Debian +3

Name of the Vulnerable Software and Affected Versions: usbvision-kmp-default versions affected versions not specified usbvision-kmp-bigsmp versions affected versions not specified usbvision-kmp-xenpae versions affected versions not specified usbvision-kmp-xen versions affected versions not...

PT-2004-3714 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.4 and 2.6 kernel-image-2.4.27-3-686-smp kernel-image-2.4.27-3-k7-smp kernel-image-2.4.27-3-itanium-smp kernel-image-2.4.27-3-sparc64-smp kernel-image-2.4.27-3-sparc32-smp kernel-headers-2.4.27-3-686-smp...

PT-2008-6869 · Linux Foundation +2 · Linux +2

Name of the Vulnerable Software and Affected Versions: linux-headers-2.6.18-6 versions 2.6.18-6 and earlier linux-image-2.6.18-6 versions 2.6.18-6 and earlier linux-modules-2.6.18-6 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-686 versions 2.6.18-6 and earlier...

PT-2004-3668 · Debian +1 · Debian +1

Name of the Vulnerable Software and Affected Versions: Debian GNU/Linux kernel-image-2.4.27-4-itanium version 2.4.27-4 Debian GNU/Linux kernel-pcmcia-modules-2.4.27-4-686 version 2.4.27-4 Debian GNU/Linux kernel-pcmcia-modules-2.4.27-4-586tsc version 2.4.27-4 Debian GNU/Linux...

PT-2005-5547 · Debian +4 · Kernel-Source-2.4.27 +15

Name of the Vulnerable Software and Affected Versions: Debian GNU/Linux kernel-image-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux kernel-headers-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux kernel-pcmcia-modules-2.4.27 versions 2.4.27 through 2.4.27-2 Debian GNU/Linux...

PT-2014-9085 · Openbsd +10 · Openssh Sshd +11

Name of the Vulnerable Software and Affected Versions: bash versions prior to 4.3 bash-3.0 bash-3.2 bash-4.1.2 bash-4.2.45 bash-debuginfo bash-debuginfo-3.2 bash-debuginfo-4.1.2 bash-debuginfo-4.2.45 bash-debugsource bash-devel bash-doc bash-doc-4.1.2 bash-doc-4.2.45 bash-loadables...

XSS in various backend modules

More info at https://www.neos.io/blog/xss-in-various-backend-modules.html...