8766 matches found
RedHat 6 GLIBC/locale - Subsystem Format String
/ source: https://www.securityfocus.com/bid/1634/info Conectiva 4.x/5.x,Debian 2.x,IBM AIX 3.x/4.x,Mandrake 7,RedHat 5.x/6.x,IRIX 6.x, Solaris 2.x/7/8,Turbolinux 6.x,Wirex Immunix OS 6.2 Locale Subsystem Format String Many UNIX operating systems provide internationalization support according to t...
Remote vulnerability in Gopherd 2.x
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 G U A R D E N T GUARDENT SECURITY ADVISORY secure digital infrastructure A0208102000 - ------------------------------------------------------------------------------ - Remote Vulnerability in Gopherd v2.x University of Minnesota August 10, 2000...
sperl 5.00503 (and newer ;) exploit
Not much to say except I feel little bit stupid posting it ... This exploit gives instant root, at least on RedHat 6.x/7.0 Linux boxes I have available for tests... And for sure, all other systems are vulnerable as well - it's just maybe this code will need some refining / tuning / minor changes...
Redhat Linux 6.x remote root exploit
Hi, Included below is an exploit for the recently exposed linux rpc.statd format string vulnerability0. I have tailored it towards current Redhat Linux 6.x installations. It can easily be incorporated into attacks against the other vulnerable Linux distributions. I am not a security expert, but...
Redhat Linux 6.x remote root exploit
Hi, Included below is an exploit for the recently exposed linux rpc.statd format string vulnerability0. I have tailored it towards current Redhat Linux 6.x installations. It can easily be incorporated into attacks against the other vulnerable Linux distributions. I am not a security expert, but...
Redhat Linux 6.x remote root exploit
Hi, Included below is an exploit for the recently exposed linux rpc.statd format string vulnerability0. I have tailored it towards current Redhat Linux 6.x installations. It can easily be incorporated into attacks against the other vulnerable Linux distributions. I am not a security expert, but...
Mandrake 7.0/7.1 / RedHat Kon2 0.3.9 - '/usr/bin/fld' Input File Overflow
/ source: https://www.securityfocus.com/bid/1371/info KON Kanji On Console is a package for displaying Kanji text under Linux and comes with two suid binaries which are vulnerable to buffer overflows. "fld", one of the vulnerable programs, accepts options input from a text file. Through this...
Дырки в утилитах из RedHat
Дырки в утилитах gkermit egid==uucp; slocate gid slocate, slrn, C-Kermit gid=uucp, diskcheck и Mgetty-sendfaxперезапись любого файла, ksu sgid root, eSound, IMAP4rev1 v12.264 DoS,...
Stanley T. Shebs Xconq 7.2.2 - xconq Buffer Overflow
/ source: https://www.securityfocus.com/bid/1495/info Xconq is a multiple player strategy game available for many unix platforms. It contains a number of buffer overflow vulnerabilities including the ability to overflow stack buffers with either the DISPLAY or the USER environment variables. The...
Linux news 21.06.00
Ядро 2.4.0test1-ac22 Работа вошла в привычный режим... Alan выпускает патчи, мы их тестируем. http://www.kernel.org Обновления для 2.2.16 от RedHat После не так давно обнаруженных ошибок в ядре 2.2.16, RedHat выложило подправленную версию ядра. Подробнее:...
Splitvt exploit
Problem ======= Splitvt 1.6.3 contains a buffer overflow, if you have installed splitvt suid root like Debian/Redhat/etc, btw not slackware you should upgrade to 1.6.4. Solution ======= Debian users: see http://www.debian.org/security/2000/20000605a Redhat: Redhat did respond with a "that package...
Remote DOS in linux rpc.lockd
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, all... Found what appears to be a remote DOS in the linux kernel code for NFS lockd. Only requires a restart of the service, but the port stays bound in a iclosewait state for what appears to be an indefinite time. I have only tested this in...
Stelian Pop dump 0.4 - restore Buffer Overflow
Stelian Pop dump 0.4 - restore Buffer Overflow // source: https://www.securityfocus.com/bid/1330/info A buffer overflow exists in the 'restore' program, part of the dump 0.4b15-1 package, distributed with RedHat Linux 6.2. By supplying a long string containing machine executable code at the promp...
Vulnerability in SNTS
I noticed an uncommon scanf overflow in the Simple Network Time Sync daemon and client version 1.0, tested on Redhat 6.1. I haven't looked into this fully yet, but it looks as tho it could be root comprimising as it sits on a priveledged udp port and seems to coredump, but looks like it only give...
Atrus Trivalie Productions Simple Network Time Sync 1.0 - daemon Buffer Overflow
Atrus Trivalie Productions Simple Network Time Sync 1.0 - daemon Buffer Overflow source: https://www.securityfocus.com/bid/1289/info A scanf overflow has been discovered in the Simple Network Time Sync daemon and client version 1.0. Currently the buffer overflow has been tested on RedHat 6.1. It...
Atrus Trivalie Productions Simple Network Time Sync 1.0 - daemon Buffer Overflow
source: https://www.securityfocus.com/bid/1289/info A scanf overflow has been discovered in the Simple Network Time Sync daemon and client version 1.0. Currently the buffer overflow has been tested on RedHat 6.1. It may be possible to obtain root, although it appears one only has 50 characters to...
Cygnus Network Security 4.0KerbNet 5.0 MIT Kerberos 45 RedHat 6.2 - Compatibility krb_rd_req() Local Buffer Overflow (2)
Cygnus Network Security 4.0KerbNet 5.0 MIT Kerberos 45 RedHat 6.2 - Compatibility krbrdreq Local Buffer Overflow 2 // source: https://www.securityfocus.com/bid/1220/info Several buffer overflow vulnerabilities exist in Kerberos 5 implmenetations due to buffer overflows in the Kerberos 4...
Cygnus Network Security 4.0/KerbNet 5.0 / MIT Kerberos 4/5 / RedHat 6.2 - Compatibility 'krb_rd_req()' Local Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/1220/info Several buffer overflow vulnerabilities exist in Kerberos 5 implmenetations due to buffer overflows in the Kerberos 4 compatability code. These include MIT Kerberos 5 releases 1.0.x, 1.1 and 1.1.1, MIT Kerberos 4 patch level 10 and, most...
Local DoS : RedHat 6.0
Hello, I'm not sure if this problem has ever been addressed or not, but considering that I just spent a day recovering from a corrupted root partition and this can be done by any user with window manager access, I thought this might be worth mentioning anyway. While killing yet another zombie...
"gdm" remote hole
Hi, Note that I was going to wait for an official fixed release of gdm, but RedHat have released an errata update to the public, so no point hanging around SUMMARY ======= "gdm" is a replacement for "xdm", the X display manager. gdm is a part of the GNOME desktop. A buffer overflow exists in the...