CVE-2020-7460

In FreeBSD 12.1-STABLE before r363918, 12.1-RELEASE before p8, 11.4-STABLE before r363919, 11.4-RELEASE before p2, and 11.3-RELEASE before p12, the sendmsg system call in the compat32 subsystem on 64-bit platforms has a time-of-check to time-of-use vulnerability allowing a mailcious userspace...

EUVD-2001-0433

Malware in sbrugna...

EUVD-2000-1077

Malware in sbrugna...

patch: Malicious patch files cause ed to execute arbitrary commands

GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITORPROGRAM invocation using ed can result in code execution. This attack appear to be exploitable via a patch file processed via the patch utility. This is similar to FreeBSD's...

Linux Kernel < 2.6.31-rc4 nfs4_proc_lock() Denial of Service

No description provided by source. Description of problem: execution of a particular program from the Arachne suite reliably causes a kernel panic due to a NULL-pointer dereference in nfs4proclock. Version-Release number of selected component if applicable: 2.6.18-164.2.1.el5 How reproducible:...

HP-UX PHNE_29462 : s700_800 11.22 ftpd(1M) and ftp(1) patch

s700800 11.22 ftpd1M and ftp1 patch : The remote HP-UX host is affected by multiple vulnerabilities : - A potential vulnerability has been identified with HP-UX running ftpd where the vulnerability could be exploited to allow a remote authorized user unauthorized access to files. HPSBUX01119...

CVE-2004-0157

x11.c in xonix 1.4 and earlier uses the current working directory to find and execute the rmail program, which allows local users to execute arbitrary code by modifying the path to point to a malicious rmail program...

Low: Red Hat Security Advisory: : Updated man packages fix minor vulnerability

Updated man packages fix a minor security vulnerability. The man package includes tools for finding and displaying online documentation. Versions of man before 1.51 have a bug where a malformed man file can cause a program named "unsafe" to be run. To exploit this vulnerability a local attacker...

[SECURITY] [DSA 229-2] New IMP packages fix SQL injection and typo

-------------------------------------------------------------------------- Debian Security Advisory DSA 229-2 [email protected] http://www.debian.org/security/ Martin Schulze January 15th, 2003 http://www.debian.org/security/faq -...

Solaris 2.x/7.0/8 - Derived &#039;login&#039; Remote Buffer Overflow

source: https://www.securityfocus.com/bid/3681/info The 'login' program is used in UNIX systems to authenticate users with a username and password. The utility is typically invoked at the console, by 'telnetd', 'rlogind', and if configured to do so, SSH. Versions of 'login' descended from System ...

CVE-2000-0941

Kootenay Web KW Whois 1.0 CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the "whois" parameter...

CVE-2000-0977

mailfile.cgi CGI program in MailFile 1.10 allows remote attackers to read arbitrary files by specifying the target file name in the "filename" parameter in a POST request, which is then sent by email to the address specified in the "email" parameter...

Stelian Pop dump 0.4 - restore Buffer Overflow

Stelian Pop dump 0.4 - restore Buffer Overflow // source: https://www.securityfocus.com/bid/1330/info A buffer overflow exists in the 'restore' program, part of the dump 0.4b15-1 package, distributed with RedHat Linux 6.2. By supplying a long string containing machine executable code at the promp...

RedHat 4.x5.x6.x RedHat man 1.5 Turbolinux man 1.5 Turbolinux 3.54.x - man Buffer Overrun (2)

RedHat 4.x5.x6.x RedHat man 1.5 Turbolinux man 1.5 Turbolinux 3.54.x - man Buffer Overrun 2 / source: https://www.securityfocus.com/bid/1011/info RedHat 4.0/4.1/4.2/5.0/5.1/5.2/6.0/6.2,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.2/4.4 man Buffer Overrun Vulnerability A buffer overflow exis...

NetBSD 1.4 OpenBSD 2.5 Solaris 7.0 - profil(2) Modify The Internal Data Space

NetBSD 1.4 OpenBSD 2.5 Solaris 7.0 - profil2 Modify The Internal Data Space / source: https://www.securityfocus.com/bid/570/info Some BSD's use a profil2 system call that dates back to "version 6" unix. This system call arranges for the kernel to sample the PC and increment an element of an array...

Muhammad A. Muquit wwwcount 2.3 - &#039;Count.cgi&#039; Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/128/info Wwwcount count.cgi is a very popular CGI program used to track website usage. In particular, it enumerates the number of hits on given webpages and increments them on a 'counter'. In October of 1997 two remotely exploitable problems were...

SGI IRIX 6.2 - eject Local Privilege Escalation (2)

SGI IRIX 6.2 - eject Local Privilege Escalation 2 // source: https://www.securityfocus.com/bid/351/info A vulnerability exists in the eject program shipped with Irix 6.2 from Silicon Graphics. By supplying a long argument to the eject program, it is possible to overwrite the return address on the...