Lucene search
+L

3064 matches found

CVE
CVE
added 2005/06/28 4:0 a.m.55 views

CVE-2002-1826

The CVE-2002-1826 issue affects grsecurity 1.9.4 for the Linux kernel (2.4.18). Local users can bypass read-only protections by using mmap to directly map /dev/mem or /dev/kmem into kernel memory, as described in multiple sources (NVD/Red Hat/CVE lists). The connected documents provide the vulner...

4.6CVSS6.7AI score0.01003EPSS
Exploits1References3Affected Software1
CERT
CERT
added 2005/02/21 12:0 a.m.35 views

OpenConnect Webconnect read-only directory traversal vulnerability in jretest.html

Overview OpenConnect Webconnect contains a read-only directory traversal vulnerability in the file jretest.html. Description OpenConnect Webconnect provides secured web access and emulation services for backend mainframes and UNIX servers. Versions of Webconnect prior to 6.4.5 and 6.5.1 running o...

5CVSS6AI score0.12251EPSS
Exploits1References2
NVD
NVD
added 2005/01/10 5:0 a.m.25 views

CVE-2004-1190

SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices...

2.1CVSS5AI score0.00396EPSS
Exploits1References6
OSV
OSV
added 2005/01/10 5:0 a.m.4 views

DEBIAN-CVE-2004-0770

romload.c in DGen Emulator 1.23 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files during decompression of 1 gzip or 2 bzip ROM files...

2.1CVSS6.6AI score0.00342EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2004/12/31 5:0 a.m.22 views

CVE-2004-0813

Unknown vulnerability in the SGIO functionality in ide-cd allows local users to bypass read-only access and perform unauthorized write and erase operations...

2.1CVSS5.9AI score0.00413EPSS
Exploits0References1
Cvelist
Cvelist
added 2004/12/15 5:0 a.m.29 views

CVE-2004-1190

SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices...

4.9AI score0.00396EPSS
Exploits1References6
securityvulns
securityvulns
added 2004/09/28 12:0 a.m.28 views

Linux CD protection bypass

user with read-only access can bypass these permissions and perform write and erase operations on media in a drive...

3.1AI score
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2004/09/24 4:0 a.m.27 views

CVE-2004-0813

Unknown vulnerability in the SGIO functionality in ide-cd allows local users to bypass read-only access and perform unauthorized write and erase operations...

5.9AI score0.00413EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.34 views

Mandrake Linux Security Advisory : rsync (MDKSA-2002:009)

Sebastian Krahmer of the SuSE Security Team performed an audit on the rsync tool and discovered that in several places signed and unsigned numbers were mixed, with the end result being insecure code. These flaws could be abused by remote users to write 0 bytes into rsync's memory and trick rsync...

10CVSS6AI score0.34016EPSS
Exploits0References1
NVD
NVD
added 2003/10/06 4:0 a.m.17 views

CVE-2003-0680

Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions...

7.5CVSS6.6AI score0.01206EPSS
Exploits0References1
CVE
CVE
added 2003/09/18 4:0 a.m.46 views

CVE-2003-0680

CVE-2003-0680 affects NFS on SGI IRIX (6.5.21 and earlier). The issue is described as an unknown vulnerability that may allow an NFS client to bypass read-only restrictions. The provided connected documents do not supply a root cause, affected software details beyond SGI IRIX, or any remediation/...

7.5CVSS7AI score0.01206EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2003/09/18 4:0 a.m.22 views

CVE-2003-0680

Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions...

6.6AI score0.01206EPSS
Exploits0References1
securityvulns
securityvulns
added 2003/05/18 12:0 a.m.39 views

Re[2]: EXPLOIT: Buffer overflow in Explorer.exe on Windows XP SP1

hello bugtraq, From MSDN: ---cut--- DWORD GetPrivateProfileSection LPCTSTR lpAppName, LPTSTR lpReturnedString, DWORD nSize, LPCTSTR lpFileName ; skip nSize in Size of the buffer pointed to by the lpReturnedString parameter, in TCHARs. Windows 95/98/Me: The maximum buffer size is 32,767 characters...

7.5AI score
Exploits0
NVD
NVD
added 2002/12/31 5:0 a.m.15 views

CVE-2002-1826

grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory...

4.6CVSS6.3AI score0.01003EPSS
Exploits1References3
securityvulns
securityvulns
added 2002/05/18 12:0 a.m.39 views

Grsecurity problem - modifying "read-only kernel"

Affected: Grsecurityand maybe other linux hardening patchs. Description: Grsecurity and maybe other linux hardening patchs integrates a variant of the patch published in phrack p58-0x07 article supposed to forbid writing to /dev/mem and /dev/kmem by disabling function dowritemem. This is done by...

7AI score
Exploits0
CVE
CVE
added 2002/03/09 5:0 a.m.64 views

CVE-1999-1382

CVE-1999-1382 describes a local privilege escalation in NetWare NFS mode 1 and 2. The issue arises when NetWare-NFS implements the Unix Read Only flag by changing a file’s ownership to root, which can be exploited by a local user who creates a setuid program and marks it as Read Only; NetWare-NFS...

7.2CVSS6.9AI score0.00359EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.44 views

CVE-1999-1382

NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to "Read Only," which NetWare-NFS changes to a setuid root program...

6.5AI score0.00359EPSS
Exploits0References4
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.24 views

CVE-1999-1358

When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to bypass restrictions that would otherwise be enforced by the policy, possibly by changing the policy...

6.4AI score0.0141EPSS
Exploits0References2
Cvelist
Cvelist
added 2001/09/18 4:0 a.m.24 views

CVE-2001-0203

Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and administrative privileges, by accessing a file that contains hashed passphrases, and using the hashes during authentication...

6.7AI score0.02301EPSS
Exploits1References3
CERT
CERT
added 2001/05/01 12:0 a.m.13 views

Cisco IOS creates SNMP read-only community string

Overview There is a vulnerability that permits unauthorized access to several switch and router products manufactured by Cisco Systems. An attacker who gains access to an affected device can read its configuration, creating an information leak. Description Certain versions of the Cisco...

6.7AI score
Exploits0References2
Rows per page
Query Builder