39 matches found
EUVD-2001-1108
Malware in sbrugna...
EUVD-2001-1109
Malware in sbrugna...
EUVD-2003-0443
Malware in sbrugna...
EUVD-2001-1110
Malware in sbrugna...
Progress Database 9.1 Environment Variable Local Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7916/info It has been reported that Progress database does not properly handle untrusted input when opening shared libraries. Specifically, the dlopen function used by several Progress utilities checks the user's PATH...
Progress 9.1 sqlcpp Local Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4402/info Progress is a commercial database for Microsoft Windows and Unix systems. A buffer overflow has been reported in the sqlcpp program included with Progress, used as a SQL preprocessor. Execution of arbitrary code...
Progress Database 8.3/9.1 - Multiple Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3404/info Progress is a commercial database for Microsoft Windows and Unix systems. Locally exploitable buffer overflows are prevalent throughout many Progress Database programs. This is largely due to insufficient bounds...
[Full-disclosure] TPTI-07-12: Multiple Vendor Progress Server Heap Overflow Vulnerability
TPTI-07-12: Multiple Vendor Progress Server Heap Overflow Vulnerability http://dvlabs.tippingpoint.com/advisory/TPTI-07-12.html July 12, 2007 -- CVE ID: CVE-2007-2417 -- Affected Vendor: Progress Software -- Affected Products: RSA Authentication Manager Progress Database -- TippingPointTM IPS...
Progress Database Server 8.3b (prodb) Local Root Exploit
No description provided by source. / progress database server v8.3b local root compromise. for sco-unix and linux on linux redhat 6.2 and SCOSV scosysv 3.2 5.05 this is just one of it, advisory about the bug discovery grabbed from packetstorm, which was originally found by:...
CVE-2003-0449
Progress Database 9.1 to 9.1D06 trusts user input to find and load libraries using dlopen, which allows local users to gain privileges via 1 a PATH environment variable that points to malicious libraries, as demonstrated using libjutil.so inproapsv, or 2 the -installdir command line parameter, as...
CVE-2003-0449
Progress Database 9.1 to 9.1D06 trusts user input to find and load libraries using dlopen, which allows local users to gain privileges via 1 a PATH environment variable that points to malicious libraries, as demonstrated using libjutil.so inproapsv, or 2 the -installdir command line parameter, as...
CVE-2003-0449
Progress Database 9.1 to 9.1D06 is affected by an input-trust flaw in library loading via dlopen. Local users can exploit this by placing malicious libraries referenced through PATH or via the -installdir parameter. Affected components include libjutil.so in_proapsv and librocket_r.so in _dbagent...
Progress Database 9.1 - Environment Variable Privilege Escalation
Progress Database 9.1 - Environment Variable Privilege Escalation // source: https://www.securityfocus.com/bid/7916/info It has been reported that Progress database does not properly handle untrusted input when opening shared libraries. Specifically, the dlopen function used by several Progress...
SRT2003-06-13-1009 - Progress _dbagent -installdir dlopen() issue
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
SRT2003-06-13-1009.txt
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
Progress Database 9.1 - Environment Variable Privilege Escalation
// source: https://www.securityfocus.com/bid/7916/info It has been reported that Progress database does not properly handle untrusted input when opening shared libraries. Specifically, the dlopen function used by several Progress utilities checks the user's PATH environment variable when includin...
SRT2003-06-13-0945 - Progress PATH based dlopen() issue
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
SRT2003-04-15-1029 - Progres BINPATHX overflow
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
SRT2003-04-01-1231 - Progress DLC overflows
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...
SRT2003-04-02-1735 - Progress PROSTARTUP root owned file read
Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...