RedHat 6.1/6.2/7.0/7.1 - Man Cache File Creation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2815/info A vulnerability exists in the 'man' system manual pager program. It is possible for local users to cause man to cache files in the system cache directory from outside of the configured manual page hierarchy sear...

Red Hat Directory Server LDAP内存泄漏拒绝服务漏洞

BUGTRAQ ID: 30872 CVE ID: CVE-2008-3283 CNCVE ID：CNCVE-20083283 Red Hat Directory Server是一款LDAPv3兼容的目录服务程序。 Red Hat Directory Server存在多个内存泄漏问题，远程攻击者可以利用漏洞使目录服务器消耗大量内存，可能导致应用程序崩溃或不可期的终止。 目前没有详细漏洞细节提供。 RedHat Directory Server 8 EL 5 RedHat Directory Server 8 EL 4 RedHat Directory Server 7.1 SP6...

Maelstrom 1.4.3 abartity file overwrite

Program: Maelstrom Version: 1.4.3 Distribution: RedHat 7.1 When trying to break stuff, ltracing Maelstrom showed the following: fopen"/tmp/f", "w" = 0x08081f58 fprintf0x08081f58, "Main program = sn", "Maelstrom" = 25 fclose0x08081f58 = 0 Which made we wonder if it followed symbolic links, by doin...

squid DoS

Dear All, I'd like to inform about a DoS bug I recently found in SQUID regarding handling of mkdir-only PUT requests - please look at http://www.squid-cache.org/bugs/showbug.cgi?id=233 for more info. From my testing, it applies both to Squid 2.3 and 2.4 series. Tested on RedHat 6.2 and 7.1. This...

man 1.5h10 + man 1.5i-4 exploits

This advisory is also stored, along with the exploits at http://generic.labs.pulltheplug.com/zen/ as man.txt ====================================================================== Local root from /usr/bin/man + /etc/cron.daily/makewhatis.cron Redhat 7.0 Redhat 7.1 on other distributions it may al...

RedHat 6.1/6.2/7.0/7.1 - Man Cache File Creation

source: https://www.securityfocus.com/bid/2815/info A vulnerability exists in the 'man' system manual pager program. It is possible for local users to cause man to cache files in the system cache directory from outside of the configured manual page hierarchy search path. Combined with the...