1289 matches found
Linux Kernel 2.6.32 (Ubuntu 10.04) - proc Handling SUID Privilege Escalation
Linux Kernel 2.6.32 Ubuntu 10.04 - proc Handling SUID Privilege Escalation Source: http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/ proc Handling of Already Opened Files: Subvert The Stack Base Address Randomization With Suid-Binaries Problem description: Latest ubuntu lucid sto...
ProFTPD受控制源软件包后门安全漏洞
ProFTPD是一款开放源代码FTP服务程序。 ProFTPD的特定时期版本被插入了后门代码,远程攻击者可利用这些后门非授权获取对FTP服务器的访问,从而控制系统。 此问题影响项目的主FTP服务器和所有镜像服务器发布的被攻击的ProFTPD 1.3.3c源代码包,此代码包中包含允许远程root权限访问的后门。2010年11月28日至12月2日期间下载的源代码受此问题影响。 ProFTPD Project ProFTPD 1.3.x 厂商补丁: ProFTPD Project --------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Local Root Privilege systemtap Escalation Vulnerability
Exploit for linux platform in category local exploits ======================================================= Local Root Privilege systemtap Escalation Vulnerability ======================================================= CVE-2010-4170 printf "install uprobes /bin/sh" exploit.conf;...
USN-959-2: PAM vulnerability
USN-959-1 fixed vulnerabilities in PAM. This update provides the corresponding updates for Ubuntu 10.10. Original advisory details: Denis Excoffier discovered that the PAM MOTD module in Ubuntu did not correctly handle path permissions when creating user file stamps. A local attacker could exploi...
Tripwire Format String (CVE-2004-0536)
Tripwire is a software tool that checks file system changes on a target system. Tripwire scans file systems for changes and can be configured to send an email report with the scan details. There is a format string vulnerability in the implementation of the C++ class cPipedMailMessage in Tripwire...
DEBIAN-CVE-2010-1161
Race condition in GNU nano before 2.2.4, when run by root to edit a file that is not owned by root, allows local user-assisted attackers to change the ownership of arbitrary files via vectors related to the creation of backup files...
Ubuntu Update for cups, cupsys vulnerabilities USN-906-1
Ubuntu Update for Linux kernel vulnerabilities USN-906-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9061.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for cups, cupsys vulnerabilities USN-906-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Ubuntu Update for samba vulnerability USN-893-1
Ubuntu Update for Linux kernel vulnerabilities USN-893-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN8931.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for samba vulnerability USN-893-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-893-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[USN-869-1] Linux kernel vulnerabilities
=========================================================== Ubuntu Security Notice USN-869-1 December 10, 2009 linux vulnerability CVE-2009-1298, CVE-2009-4131 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 9.10 This...
USN-869-1: Linux kernel vulnerabilities
David Ford discovered that the IPv4 defragmentation routine did not correctly handle oversized packets. A remote attacker could send specially crafted traffic that would cause a system to crash, leading to a denial of service. The fix was included in the earlier kernels from USN-864-1...
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : linux, linux-source-2.6.15 vulnerabilities (USN-852-1)
Solar Designer discovered that the z90crypt driver did not correctly check capabilities. A local attacker could exploit this to shut down the device, leading to a denial of service. Only affected Ubuntu 6.06. CVE-2009-1883 Michael Buesch discovered that the SGI GRU driver did not correctly check...
Sun VirtualBox VBoxNetAdpCtl配置工具本地特权提升漏洞
Bugraq ID: 36604 Sun VirtualBox是一款功能强大的x86虚拟机软件。 Sun VirtualBox VBoxNetAdpCtl配置工具存在未明错误,本地攻击者可以利用漏洞以root特权执行任意命令。 Sun VirtualBox 3.0.6 Sun VirtualBox 3.0.4 Sun VirtualBox 3.0.2 Sun VirtualBox 3.0 用户可参考如下安全公告获得补丁信息: http://sunsolve.sun.com/search/document.do?assetkey=1-66-268188-1...
Sun Solaris Cluster本地特权提升漏洞
Bugraq ID: 36486 Sun Solaris是一款商业性质的操作系统。 Solaris Cluster 3.2配置工具clsetup存在一个未明错误,本地攻击者可以利用漏洞以root特权执行任意命令。 目前没有详细漏洞细节提供。 Sun Cluster 3.2 Sun Solaris 用户可参考如下安全公告获得补丁信息: http://sunsolve.sun.com/search/document.do?assetkey=1-66-267148-1...
FreeBSD 'kqueue'存在一个未明NULL指针引用漏洞
Bugraq ID: 36375 FreeBSD是一款开放源代码的操作系统。 FreeBSD包含的kqueue存在一个未明NULL指针引用漏洞,本地攻击者可以利用漏洞获得root特权,目前没有详细漏洞细节提供。 FreeBSD FreeBSD 6.0 .x FreeBSD FreeBSD 6.0 -STABLE FreeBSD FreeBSD 6.0 -RELEASE FreeBSD FreeBSD 6.4-RELEASE-p5 FreeBSD FreeBSD 6.4-RELEASE-p4 FreeBSD FreeBSD 6.4-RELEASE-p2 FreeBSD FreeBSD 6....
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : shadow vulnerability (USN-695-1)
Paul Szabo discovered a race condition in login. While setting up tty permissions, login did not correctly handle symlinks. If a local attacker were able to gain control of the system utmp file, they could cause login to change the ownership and permissions on arbitrary files, leading to a root...
Debian: Security Advisory (DSA-1709-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-1709-1 shadow - privilege escalation
Bulletin has no description...
Linux/x86 - setuid(0) + Break chroot (../ 10x Loop) Shellcode (34 bytes)
Linux/x86 - setuid0 + Break chroot ../ 10x Loop Shellcode 34 bytes. Shellcode exploit for Linuxx86 platform / The setuid0+chroot shellcode. It is the one of the smallest shellcodes in the !!world!! it will put '../' 10 times Size 34 bytes OS Linux /rootteam/dev0id rootteam.void.ru...
FreeBSD -- netgraph / bluetooth privilege escalation
Problem Description: Some function pointers for netgraph and bluetooth sockets are not properly initialized. Impact: A local user can cause the FreeBSD kernel to execute arbitrary code. This could be used by an attacker directly; or it could be used to gain root privilege or to escape from a jail...