792 matches found
Debian DSA-466-1 : linux-kernel-2.2.10-powerpc-apus - failing function and TLB flush
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...
Debian DSA-189-1 : luxman - local root exploit
iDEFENSE reported about a vulnerability in LuxMan, a maze game for GNU/Linux, similar to the PacMan arcade game. When successfully exploited a local attacker gains read-write access to the memory, leading to a local root compromise in many ways, examples of which include scanning the file for...
Debian DSA-456-1 : linux-kernel-2.2.19-arm - failing function and TLB flush
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...
Debian DSA-092-1 : wmtv - local root exploit
Nicolas Boullis found a nasty security problem in the wmtv a dockable video4linux TV player for windowmaker package as distributed in Debian GNU/Linux 2.2. wmtv can optionally run a command if you double-click on the TV window. This command can be specified using the -e command line option...
Debian DSA-453-1 : linux-kernel-2.2.20-i386+m68k+powerpc - failing function and TLB flush
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...
Debian DSA-101-1 : sudo - Local root exploit
Sebastian Krahmer from SuSE found a vulnerability in sudo which could easily lead into a local root exploit. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-101. The text itself is copyrig...
Debian DSA-454-1 : linux-kernel-2.2.22-alpha - failing function and TLB flush
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...
Debian DSA-054-1 : cron - local root exploit
A recent fall 2000 security fix to cron introduced an error in giving up privileges before invoking the editor. This was discovered by Sebastian Krahmer from SuSE. A malicious user could easily gain root access. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
CDRDAO Local Root Exploit
Exploit for linux platform in category local exploits ========================= CDRDAO Local Root Exploit ========================= !/bin/sh DIR=pwd echo "" echo "cdrdao local root exploit - gr doesn't protect you this time" echo "Karol Wi?sek " echo "" sleep 2 umask 000 echo -n " Checking if...
OpenSSH < 3.2.1 AFS/Kerberos Ticket/Token Passing Overflow
Binary data 1989.prm...
Mac OS X Panther Internet Connect Local Root Exploit
Exploit for macOS platform in category local exploits ==================================================== Mac OS X Panther Internet Connect Local Root Exploit ==================================================== Date: 25.07.2004 Author: B-r00t. 2004. Email: B-r00t Vendor: Apple Operating System:...
RHEL 2.1 : mysql (RHSA-2003:094)
Updated packages are available that fix both a double-free security vulnerability and a remote root exploit security vulnerability found in the MySQL server. Updated 11 Aug 2003 Updated mysqlclient9 packages are now included. These were previously missing from this erratum. MySQL is a multi-user,...
Rlpr Advisory
,'| .-''-.....--'; / '. ..-' , ,--...--''' .--''' /' -';' ; ; ; ...--'' ...--..' .;.' fL ,....----''' ,..--'' felinemenace.org Program: rlprd 2.0.4 Impact: remote root Discovered: jaguar Writeup and exploits: Andrew Griffiths 1 Background It is a package that makes it possible or at the very leas...
CVS Remote Entry Line Heap Overflow Root Exploit (Linux/FreeBSD)
Exploit for multiple platform in category remote exploits ================================================================ CVS Remote Entry Line Heap Overflow Root Exploit Linux/FreeBSD ================================================================ include include include include include includ...
[SECURITY] [DSA 514-1] New Linux 2.2.20 packages fix local root exploit (sparc)
-------------------------------------------------------------------------- Debian Security Advisory DSA 514-1 [email protected] http://www.debian.org/security/ Martin Schulze June 4th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 514-1] New Linux 2.2.20 packages fix local root exploit (sparc)
-------------------------------------------------------------------------- Debian Security Advisory DSA 514-1 [email protected] http://www.debian.org/security/ Martin Schulze June 4th, 2004 http://www.debian.org/security/faq -...
DSA-514 kernel-image-sparc-2.2 - failing function and TLB flush
Bulletin has no description...
NetBSD Security Advisory 2004-007: Systrace systrace_exit() local root
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2004-007 ================================= Topic: Systrace systraceexit local root Version: NetBSD-current: source prior to Apr 16, 2004 netBSD 2.0 branch: source prior to Apr 16, 2004 netBSD 1.6.2: not affected NetBSD 1.6.1: not affecte...
HP Web JetAdmin 6.5 (connectedNodes.ovpl) Remote Root Exploit
Exploit for hardware platform in category remote exploits ============================================================= HP Web JetAdmin 6.5 connectedNodes.ovpl Remote Root Exploit ============================================================= !/usr/bin/perl use IO::Socket; This is an exploit for H...
[SECURITY] [DSA 495-1] New Linux 2.4.16 packages fix local root exploit (arm)
-------------------------------------------------------------------------- Debian Security Advisory DSA 495-1 [email protected] http://www.debian.org/security/ Martin Schulze April 26th, 2004 http://www.debian.org/security/faq -...