16 matches found
EUVD-2006-5313
Malware in sbrugna...
EUVD-2006-5312
Malware in sbrugna...
EUVD-2006-5835
Malware in sbrugna...
EUVD-2006-5836
Malware in sbrugna...
CVE-2006-5851
openexec in OpenBase SQL before 10.0.1 allows local users to create arbitrary files via a symlink attack on the /tmp/output file, a different vulnerability than CVE-2006-5328...
CVE-2006-5852
Untrusted search path vulnerability in openexec in OpenBase SQL before 10.0.1 allows local users to gain privileges via a modified PATH that references a malicious helper binary, as demonstrated by 1 cp, 2 rm, and 3 killall, different vectors than CVE-2006-5327...
CVE-2006-5851
openexec in OpenBase SQL before 10.0.1 allows local users to create arbitrary files via a symlink attack on the /tmp/output file, a different vulnerability than CVE-2006-5328...
CVE-2006-5852
CVE-2006-5852 describes an untrusted search path vulnerability in OpenBase SQL prior to 10.0.1. Local users can gain privileges by placing a malicious helper binary in a modified PATH that OpenBase will reference, with demonstrations involving cp, rm, and killall. The vulnerability stems from PAT...
CVE-2006-5851
CVE-2006-5851 affects OpenBase SQL prior to 10.0.1. It enables local users to create arbitrary files via a symlink attack on the /tmp/output file, constituting a local file-creation vulnerability distinct from CVE-2006-5328. The root cause is a symlink/temporary-file handling issue in OpenBase SQ...
CVE-2006-5852
Untrusted search path vulnerability in openexec in OpenBase SQL before 10.0.1 allows local users to gain privileges via a modified PATH that references a malicious helper binary, as demonstrated by 1 cp, 2 rm, and 3 killall, different vectors than CVE-2006-5327...
CVE-2006-5328
OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2 and earlier and possibly other products, allows local users to create arbitrary files via a symlink attack on the simulation.sql file...
CVE-2006-5327
Untrusted search path vulnerability in OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2 and earlier and possibly other products, allows local users to execute arbitrary code via a modified PATH that references a malicious gzip program, which is executed by gnutar with certain...
CVE-2006-5328
OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2 and earlier and possibly other products, allows local users to create arbitrary files via a symlink attack on the simulation.sql file...
CVE-2006-5327
Untrusted search path vulnerability in OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2 and earlier and possibly other products, allows local users to execute arbitrary code via a modified PATH that references a malicious gzip program, which is executed by gnutar with certain...
CVE-2006-5328
OpenBase SQL 10.0 and earlier (as used in Apple Xcode 2.2 and earlier) is affected by a local privilege escalation vulnerability where an attacker can create arbitrary files via a symlink attack on the simulation.sql file. The root cause is a symlink handling flaw that allows a local user to leve...
CVE-2006-5327
CVE-2006-5327 describes an untrusted search path vulnerability in OpenBase SQL 10.0 and earlier, including usage in Apple Xcode 2.2 and earlier. A local attacker can execute arbitrary code by placing a malicious gzip executable on a modified PATH, which is then invoked by gnutar under certain TAR...