Lucene search
K

345 matches found

CERT
CERT
added 2001/05/17 12:0 a.m.35 views

glibc unsetenv fails to properly handle environment variables passed more than once to a program

Overview The glibc implementation of unsetenv fails to properly remove one of two successive occurrences of the same environment variable if the variable is redundently passed to a program. Description The glibc implementation of unsetenv, if called to remove an environment variable that occurs t...

7.2CVSS6AI score0.01232EPSS
Exploits1References2
Debian
Debian
added 2001/03/08 11:57 p.m.19 views

[SECURITY] [DSA-032-2] proftp runs as root, /var symlink removal

Package: proftpd Vulnerability: proftpd running as root, /var symlink removal Debian-specific: yes This is an update to the DSA-032-1 advisory. The powerpc package that was listed in that advisory was unfortunately compiled on the wrong system which caused it to not work on a Debian GNU/Linux 2.2...

5.9AI score
Exploits0
securityvulns
securityvulns
added 2000/12/30 12:0 a.m.27 views

/usr/sbin/audlinks has the following behavior: $ id uid=100optyx gid=1other $ mkdir -p /tmp/b/dev $ ln -s /.rhosts /tmp/b/dev/.devfsadmdev.lock $ su root Password: /usr/sbin/audlinks -r /tmp/b ls -l /.rhosts -rw-r--r-- 1 root other 4 Dec 28 14:28 /.rhosts truss output snippet:...

Exploits0
Exploit DB
Exploit DB
added 1999/05/10 12:0 a.m.32 views

Sun Solaris 7.0 - '/usr/dt/bin/dtprintinfo' Local Buffer Overflow

/ source: https://www.securityfocus.com/bid/249/info The dtprintinfo is a setuid commands open the CDE Print Manager window. A stack based buffer overflow in the handling of the "-p" option allow the execution of arbitrary code as root. This vulnerablity has been assigned Sun Bug 4139394. The...

7.4AI score
Exploits0
exploitpack
exploitpack
added 1998/04/06 12:0 a.m.14 views

Slackware Linux 3.4 - netconfig Temporary File

Slackware Linux 3.4 - netconfig Temporary File source: https://www.securityfocus.com/bid/81/info netconfig creates the file /tmp/tmpmsg insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/tmpmsg to any file and wait for root to run the program. This will clober...

0.7AI score
Exploits0
Rows per page
Query Builder