MidHosting FTP Daemon 1.0.1 - Shared Memory Local Denial of Service

source: https://www.securityfocus.com/bid/7956/info It has been reported that MidHosting FTP Daemon does not properly implement shared memory when the m flag -m is enabled. Because of this, an attacker could corrupt process memory, causing the service to crash...

ActivCard password cache memory leakage

In December of the 2002 I was analysing the ActivCard product for a client. During the analysis I noticed that making a memory dump of the process "scardsrv" was possible to obtain the users stored staticaly in the card. This issue at first, could seem smaller, although in depth already it has a...

CVE-2001-1036

The connected records show a concrete vulnerability in GNU findutils locate prior to version 4.2.31. The flaw is a heap-based buffer overflow in the visit_old_format function (locate/locate.c) that can be triggered by a long pathname stored in a locate database using the old format, potentially a...

3.3/4.0/4.2 MERCUR MailServer - Control-Service Buffer Overflow

// source: https://www.securityfocus.com/bid/5261/info // MERCUR Mailserver is prone to a remotely exploitable buffer overflow condition. The condition is due to insufficient bounds checking in the Control-Service component, which listens on TCP port 32000 by default. It is possible to corrupt...

GNU Screen 3.9.x Braille Module - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/4578/info Screen is a freely available, open source terminal management software package. It is distributed and maintained by the Free Software Foundation. It is available for the Unix and Linux platforms. Under some circumstances, it may be possible f...

SLRNPull 0.9.6 - Spool Directory Command Line Parameter Buffer Overflow

SLRNPull 0.9.6 - Spool Directory Command Line Parameter Buffer Overflow source: https://www.securityfocus.com/bid/4569/info N is a freely available, open source news reading utility. It is developed and maintained by the SLRN project, and designed for use on various operating systems. This proble...

CVE-2001-0653

Sendmail 8.10.0 through 8.11.5, and 8.12.0 beta, allows local users to modify process memory and possibly gain privileges via a large value in the 'category' part of debugger -d command line arguments, which is interpreted as a negative number...

CVE-2001-0653

CVE-2001-0653 affects Sendmail 8.10.0–8.11.5 and 8.12.0 beta. The root cause is an input-validation/overflow in the debugger (-d) category handling: a large numeric value can be interpreted as a signed negative index, bypassing bounds checks and allowing local writes to process memory. Consequenc...

CVE-2001-0653

Sendmail 8.10.0 through 8.11.5, and 8.12.0 beta, allows local users to modify process memory and possibly gain privileges via a large value in the 'category' part of debugger -d command line arguments, which is interpreted as a negative number...

Linux Kernel 2.22.4 - procfs Stream redirection to Process Memory Privilege Escalation

Linux Kernel 2.22.4 - procfs Stream redirection to Process Memory Privilege Escalation / source: https://www.securityfocus.com/bid/2937/info The Linux /proc filesystem is a virtual filesystem provided by the Linux Kernel as an interface to some process and system information and parameters. Under...