3064 matches found
CVE-2002-1826
The CVE-2002-1826 issue affects grsecurity 1.9.4 for the Linux kernel (2.4.18). Local users can bypass read-only protections by using mmap to directly map /dev/mem or /dev/kmem into kernel memory, as described in multiple sources (NVD/Red Hat/CVE lists). The connected documents provide the vulner...
OpenConnect Webconnect read-only directory traversal vulnerability in jretest.html
Overview OpenConnect Webconnect contains a read-only directory traversal vulnerability in the file jretest.html. Description OpenConnect Webconnect provides secured web access and emulation services for backend mainframes and UNIX servers. Versions of Webconnect prior to 6.4.5 and 6.5.1 running o...
CVE-2004-1190
SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices...
DEBIAN-CVE-2004-0770
romload.c in DGen Emulator 1.23 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files during decompression of 1 gzip or 2 bzip ROM files...
CVE-2004-0813
Unknown vulnerability in the SGIO functionality in ide-cd allows local users to bypass read-only access and perform unauthorized write and erase operations...
CVE-2004-1190
SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices...
Linux CD protection bypass
user with read-only access can bypass these permissions and perform write and erase operations on media in a drive...
CVE-2004-0813
Unknown vulnerability in the SGIO functionality in ide-cd allows local users to bypass read-only access and perform unauthorized write and erase operations...
Mandrake Linux Security Advisory : rsync (MDKSA-2002:009)
Sebastian Krahmer of the SuSE Security Team performed an audit on the rsync tool and discovered that in several places signed and unsigned numbers were mixed, with the end result being insecure code. These flaws could be abused by remote users to write 0 bytes into rsync's memory and trick rsync...
CVE-2003-0680
Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions...
CVE-2003-0680
CVE-2003-0680 affects NFS on SGI IRIX (6.5.21 and earlier). The issue is described as an unknown vulnerability that may allow an NFS client to bypass read-only restrictions. The provided connected documents do not supply a root cause, affected software details beyond SGI IRIX, or any remediation/...
CVE-2003-0680
Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions...
Re[2]: EXPLOIT: Buffer overflow in Explorer.exe on Windows XP SP1
hello bugtraq, From MSDN: ---cut--- DWORD GetPrivateProfileSection LPCTSTR lpAppName, LPTSTR lpReturnedString, DWORD nSize, LPCTSTR lpFileName ; skip nSize in Size of the buffer pointed to by the lpReturnedString parameter, in TCHARs. Windows 95/98/Me: The maximum buffer size is 32,767 characters...
CVE-2002-1826
grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory...
Grsecurity problem - modifying "read-only kernel"
Affected: Grsecurityand maybe other linux hardening patchs. Description: Grsecurity and maybe other linux hardening patchs integrates a variant of the patch published in phrack p58-0x07 article supposed to forbid writing to /dev/mem and /dev/kmem by disabling function dowritemem. This is done by...
CVE-1999-1382
CVE-1999-1382 describes a local privilege escalation in NetWare NFS mode 1 and 2. The issue arises when NetWare-NFS implements the Unix Read Only flag by changing a file’s ownership to root, which can be exploited by a local user who creates a setuid program and marks it as Read Only; NetWare-NFS...
CVE-1999-1382
NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to "Read Only," which NetWare-NFS changes to a setuid root program...
CVE-1999-1358
When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to bypass restrictions that would otherwise be enforced by the policy, possibly by changing the policy...
CVE-2001-0203
Watchguard Firebox II firewall allows users with read-only access to gain read-write access, and administrative privileges, by accessing a file that contains hashed passphrases, and using the hashes during authentication...
Cisco IOS creates SNMP read-only community string
Overview There is a vulnerability that permits unauthorized access to several switch and router products manufactured by Cisco Systems. An attacker who gains access to an affected device can read its configuration, creating an information leak. Description Certain versions of the Cisco...