35 matches found
Solaris Update for ps command 109023-07
Check for the Version of ps command OpenVAS Vulnerability Test Solaris Update for ps command 109023-07 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
CVE-2007-0805
HP Tru64 UNIX 5.1 1885 is affected by CVE-2007-0805 via the ps command (/usr/ucb/ps) exposing environment variables of arbitrary processes when using the auxewww argument. The issue stems from local information disclosure; it is described as a family with CVE-1999-1587. Connected sources corrobor...
HP Tru64 Alpha OSF1 5.1 - 'ps' Information Leak
!/bin/ksh osf1tru64ps.ksh exploit Tested on OSF1 V5.1 1885 alpha ps executable - information leak Author: Andrea "bunker" Purificato http://rawlab.mindcreations.com the "ps" command also /usr/ucb/ps on HP OSF1 v5.1 Alpha, developed without an eye to security, allows unprivileged users to see valu...
Solaris 9 (sparc) : 120240-01
SunOS 5.9: ps cmd patch. Date this patch was last updated by Sun : Mar/24/06 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Sun Solaris 8/9 UCB/PS - Command Local Information Disclosure
source: https://www.securityfocus.com/bid/19662/info Sun Solaris is prone to a local information-disclosure vulnerability. This issue allows local attackers to gain access to potentially sensitive information that may aid them in further attacks. The following proof of concept is available:...
CVE-2001-1565
The CVE affects the MacOS X Point-to-Point Protocol daemon (pppd) for versions 10.0 to 10.1.5. The issue is that the daemon exposes the username and password on the process command line, allowing local users to read authentication information via the ps utility. Root cause: credentials displayed ...
CVE-1999-0164
A race condition in the Solaris ps command allows an attacker to overwrite critical files...
CVE-1999-0301
Buffer overflow in SunOS/Solaris ps command...
CVE-1999-0301
CVE-1999-0301 describes a buffer overflow in the SunOS/Solaris ps command. The connected sources confirm a local vulnerability in the ps utility that could allow a user to escalate privileges (impacting confidentiality, integrity, and availability) as indicated by the CVE record’s base metrics. T...
CVE-1999-0301
Buffer overflow in SunOS/Solaris ps command...
Solaris 2.5.0/2.5.1 ps & chkey Data Buffer Exploit
Exploit for solaris platform in category local exploits ================================================== Solaris 2.5.0/2.5.1 ps & chkey Data Buffer Exploit ================================================== cat psexpl.po psexpl.c include include include define BUFLENGTH 632 define EXTRA 256 int...
Solaris 2.5.0/2.5.1 ps / chkey - Data Buffer
cat psexpl.po psexpl.c include include include define BUFLENGTH 632 define EXTRA 256 int mainint argc, char argv char bufBUFLENGTH + EXTRA; / ps will grok this file for the exploit code / char envp="NLSPATH=/tmp/foo",0; ulong longp; uchar charp; / This will vary depending on your libc / ulong...
SGI IRIX 6.5.4 / Solaris 2.5.1 - ps(1) Buffer Overflow
source: https://www.securityfocus.com/bid/220/info The ps command prints information about active processes on a system. Due to insufficient bounds checking on arguments supplied to ps, it is possible to overwrite the internal data space of the ps program. As ps is setuid root, this vulnerability...
SGI IRIX 6.5.4 Solaris 2.5.1 - ps(1) Buffer Overflow
SGI IRIX 6.5.4 Solaris 2.5.1 - ps1 Buffer Overflow source: https://www.securityfocus.com/bid/220/info The ps command prints information about active processes on a system. Due to insufficient bounds checking on arguments supplied to ps, it is possible to overwrite the internal data space of the p...
CVE-1999-0164
A race condition in the Solaris ps command allows an attacker to overwrite critical files...