NetBSD Security Advisory 2003-011: off-by-one error in realpath(3)

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2003-011 ================================= Topic: off-by-one error in realpath3 Version: NetBSD-current: source prior to August 4, 2003 NetBSD 1.6.1: affected NetBSD 1.6: affected NetBSD-1.5.3: affected NetBSD-1.5.2: affected NetBSD-1.5....

FreeBSD Security Advisory FreeBSD-SA-03:08.realpath

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:08.realpath Security Advisory The FreeBSD Project Topic: Single byte buffer overflow in realpath3 Category: core Module: libc Announced: 2003-08-03 Credits:...

FreeBSD-SA-03:08.realpath

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:08.realpath Security Advisory The FreeBSD Project Topic: Single byte buffer overflow in realpath3 Category: core Module: libc Announced: 2003-08-03 Credits:...

WU-FTPD 2.6.2 - realpath() Off-by-One Buffer Overflow

WU-FTPD 2.6.2 - realpath Off-by-One Buffer Overflow // source: https://www.securityfocus.com/bid/8315/info The 'realpath' function is a C-library procedure to resolve the canonical, absolute pathname of a file based on a path that may contain values such as '/', './', '../', or symbolic links. A...

WU-FTPD 2.6.2 - 'realpath()' Off-by-One Buffer Overflow

// source: https://www.securityfocus.com/bid/8315/info The 'realpath' function is a C-library procedure to resolve the canonical, absolute pathname of a file based on a path that may contain values such as '/', './', '../', or symbolic links. A vulnerability that was reported to affect the...

CVE-2003-0466

CVE-2003-0466 affects wu-ftpd: an off-by-one bug in fb_realpath() can trigger a buffer overflow, potentially enabling a remote attacker to execute code and obtain root privileges on affected wu-ftpd versions (up to 2.6.2). The issue is demonstrated via pathnames of length MAXPATHLEN+1 and FTP com...

CVE-2003-0466

Off-by-one error in the fbrealpath function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including 1 STOR, 2 RETR,...

PT-2003-1043 · Washington University · Wu-Ftpd

Name of the Vulnerable Software and Affected Versions: wu-ftpd versions 2.5.0 through 2.6.2 Description: The issue is related to an off-by-one error in the fb realpath function, which may allow attackers to execute arbitrary code. This can be triggered by commands that cause pathnames of length...

FreeBSD 4.8 - realpath() Off-by-One Buffer Overflow

FreeBSD 4.8 - realpath Off-by-One Buffer Overflow source: https://www.securityfocus.com/bid/8315/info The 'realpath' function is a C-library procedure to resolve the canonical, absolute pathname of a file based on a path that may contain values such as '/', './', '../', or symbolic links. A...

FreeBSD 4.8 - 'realpath()' Off-by-One Buffer Overflow

source: https://www.securityfocus.com/bid/8315/info The 'realpath' function is a C-library procedure to resolve the canonical, absolute pathname of a file based on a path that may contain values such as '/', './', '../', or symbolic links. A vulnerability that was reported to affect the...

realpath(3) function contains off-by-one buffer overflow

Overview A function originally derived from 4.4BSD, realpath3, contains a vulnerability that may permit a malicious user to gain root access to the server. This function was derived from the FreeBSD 3.x tree. Other applications and operating systems that use or were derived from this code base ma...

libc.nul.byte.txt

Date: Wed, 14 Oct 1998 11:42:46 +0200 From: Olaf Kirch To: [email protected] Subject: The poisoned NUL byte Summary: you can exploit a single-byte buffer overrun to gain root privs. When, half a day after releasing version 2.2beta37 of the Linux nfs server, I received a message from Larry...

WU-FTPD 2.4.2 SCO Open Server 5.0.5 ProFTPd 1.2 pre1 - realpath Remote Buffer Overflow (1)

WU-FTPD 2.4.2 SCO Open Server 5.0.5 ProFTPd 1.2 pre1 - realpath Remote Buffer Overflow 1 / source: https://www.securityfocus.com/bid/113/info There is a vulnerability in ProFTPD versions 1.2.0pre1 and earlier and in wu-ftpd 2.4.2 beta 18 VR9 and earlier. This vulnerability is a buffer overflow...

WU-FTPD 2.4.2 SCO Open Server 5.0.5 ProFTPd 1.2 pre1 - realpath Remote Buffer Overflow (2)

WU-FTPD 2.4.2 SCO Open Server 5.0.5 ProFTPd 1.2 pre1 - realpath Remote Buffer Overflow 2 / source: https://www.securityfocus.com/bid/113/info There is a vulnerability in ProFTPD versions 1.2.0pre1 and earlier and in wu-ftpd 2.4.2 beta 18 VR9 and earlier. This vulnerability is a buffer overflow...

WU-FTPD 2.4.2 / SCO Open Server 5.0.5 / ProFTPd 1.2 pre1 - 'realpath' Remote Buffer Overflow (2)

/ source: https://www.securityfocus.com/bid/113/info There is a vulnerability in ProFTPD versions 1.2.0pre1 and earlier and in wu-ftpd 2.4.2 beta 18 VR9 and earlier. This vulnerability is a buffer overflow triggered by unusually long path names directory structures. For example, if a user has wri...