Lucene search
+L

1289 matches found

exploitpack
exploitpack
added 2011/01/17 12:0 a.m.22 views

Linux Kernel 2.6.32 (Ubuntu 10.04) - proc Handling SUID Privilege Escalation

Linux Kernel 2.6.32 Ubuntu 10.04 - proc Handling SUID Privilege Escalation Source: http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/ proc Handling of Already Opened Files: Subvert The Stack Base Address Randomization With Suid-Binaries Problem description: Latest ubuntu lucid sto...

0.9AI score
Exploits0
seebug.org
seebug.org
added 2010/12/09 12:0 a.m.32 views

ProFTPD受控制源软件包后门安全漏洞

ProFTPD是一款开放源代码FTP服务程序。 ProFTPD的特定时期版本被插入了后门代码,远程攻击者可利用这些后门非授权获取对FTP服务器的访问,从而控制系统。 此问题影响项目的主FTP服务器和所有镜像服务器发布的被攻击的ProFTPD 1.3.3c源代码包,此代码包中包含允许远程root权限访问的后门。2010年11月28日至12月2日期间下载的源代码受此问题影响。 ProFTPD Project ProFTPD 1.3.x 厂商补丁: ProFTPD Project --------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/11/27 12:0 a.m.33 views

Local Root Privilege systemtap Escalation Vulnerability

Exploit for linux platform in category local exploits ======================================================= Local Root Privilege systemtap Escalation Vulnerability ======================================================= CVE-2010-4170 printf "install uprobes /bin/sh" exploit.conf;...

6.8AI score0.05346EPSS
Exploits10
Ubuntu
Ubuntu
added 2010/10/25 3:19 p.m.75 views

USN-959-2: PAM vulnerability

USN-959-1 fixed vulnerabilities in PAM. This update provides the corresponding updates for Ubuntu 10.10. Original advisory details: Denis Excoffier discovered that the PAM MOTD module in Ubuntu did not correctly handle path permissions when creating user file stamps. A local attacker could exploi...

6.9CVSS5.3AI score0.00941EPSS
Exploits11
Check Point Advisories
Check Point Advisories
added 2010/05/18 12:0 a.m.38 views

Tripwire Format String (CVE-2004-0536)

Tripwire is a software tool that checks file system changes on a target system. Tripwire scans file systems for changes and can be configured to send an email report with the scan details. There is a format string vulnerability in the implementation of the C++ class cPipedMailMessage in Tripwire...

7.2CVSS7.3AI score0.00369EPSS
Exploits0
OSV
OSV
added 2010/04/16 7:30 p.m.1 views

DEBIAN-CVE-2010-1161

Race condition in GNU nano before 2.2.4, when run by root to edit a file that is not owned by root, allows local user-assisted attackers to change the ownership of arbitrary files via vectors related to the creation of backup files...

3.7CVSS6.2AI score0.00275EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2010/03/05 12:0 a.m.29 views

Ubuntu Update for cups, cupsys vulnerabilities USN-906-1

Ubuntu Update for Linux kernel vulnerabilities USN-906-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9061.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for cups, cupsys vulnerabilities USN-906-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

6.9CVSS0.1AI score0.03913EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2010/01/29 12:0 a.m.25 views

Ubuntu Update for samba vulnerability USN-893-1

Ubuntu Update for Linux kernel vulnerabilities USN-893-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN8931.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for samba vulnerability USN-893-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

6.4AI score
Exploits1References2
OpenVAS
OpenVAS
added 2010/01/29 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-893-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS5.9AI score0.00522EPSS
Exploits1References2
securityvulns
securityvulns
added 2009/12/11 12:0 a.m.67 views

[USN-869-1] Linux kernel vulnerabilities

=========================================================== Ubuntu Security Notice USN-869-1 December 10, 2009 linux vulnerability CVE-2009-1298, CVE-2009-4131 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 9.10 This...

7.8CVSS0.1AI score0.03872EPSS
Exploits2
Ubuntu
Ubuntu
added 2009/12/10 12:56 a.m.81 views

USN-869-1: Linux kernel vulnerabilities

David Ford discovered that the IPv4 defragmentation routine did not correctly handle oversized packets. A remote attacker could send specially crafted traffic that would cause a system to crash, leading to a denial of service. The fix was included in the earlier kernels from USN-864-1...

7.8CVSS7.9AI score0.03872EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2009/10/22 12:0 a.m.43 views

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : linux, linux-source-2.6.15 vulnerabilities (USN-852-1)

Solar Designer discovered that the z90crypt driver did not correctly check capabilities. A local attacker could exploit this to shut down the device, leading to a denial of service. Only affected Ubuntu 6.06. CVE-2009-1883 Michael Buesch discovered that the SGI GRU driver did not correctly check...

7.8CVSS6.6AI score0.08156EPSS
Exploits45References18
seebug.org
seebug.org
added 2009/10/09 12:0 a.m.24 views

Sun VirtualBox VBoxNetAdpCtl配置工具本地特权提升漏洞

Bugraq ID: 36604 Sun VirtualBox是一款功能强大的x86虚拟机软件。 Sun VirtualBox VBoxNetAdpCtl配置工具存在未明错误,本地攻击者可以利用漏洞以root特权执行任意命令。 Sun VirtualBox 3.0.6 Sun VirtualBox 3.0.4 Sun VirtualBox 3.0.2 Sun VirtualBox 3.0 用户可参考如下安全公告获得补丁信息: http://sunsolve.sun.com/search/document.do?assetkey=1-66-268188-1...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2009/09/25 12:0 a.m.21 views

Sun Solaris Cluster本地特权提升漏洞

Bugraq ID: 36486 Sun Solaris是一款商业性质的操作系统。 Solaris Cluster 3.2配置工具clsetup存在一个未明错误,本地攻击者可以利用漏洞以root特权执行任意命令。 目前没有详细漏洞细节提供。 Sun Cluster 3.2 Sun Solaris 用户可参考如下安全公告获得补丁信息: http://sunsolve.sun.com/search/document.do?assetkey=1-66-267148-1...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2009/09/18 12:0 a.m.21 views

FreeBSD 'kqueue'存在一个未明NULL指针引用漏洞

Bugraq ID: 36375 FreeBSD是一款开放源代码的操作系统。 FreeBSD包含的kqueue存在一个未明NULL指针引用漏洞,本地攻击者可以利用漏洞获得root特权,目前没有详细漏洞细节提供。 FreeBSD FreeBSD 6.0 .x FreeBSD FreeBSD 6.0 -STABLE FreeBSD FreeBSD 6.0 -RELEASE FreeBSD FreeBSD 6.4-RELEASE-p5 FreeBSD FreeBSD 6.4-RELEASE-p4 FreeBSD FreeBSD 6.4-RELEASE-p2 FreeBSD FreeBSD 6....

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.25 views

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : shadow vulnerability (USN-695-1)

Paul Szabo discovered a race condition in login. While setting up tty permissions, login did not correctly handle symlinks. If a local attacker were able to gain control of the system utmp file, they could cause login to change the ownership and permissions on arbitrary files, leading to a root...

7.2CVSS5.4AI score0.00949EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/01/26 12:0 a.m.20 views

Debian: Security Advisory (DSA-1709-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.5AI score0.00949EPSS
Exploits1References3
OSV
OSV
added 2009/01/21 12:0 a.m.18 views

DSA-1709-1 shadow - privilege escalation

Bulletin has no description...

7.2CVSS6.3AI score0.00949EPSS
Exploits1
Exploit DB
Exploit DB
added 2009/01/01 12:0 a.m.26 views

Linux/x86 - setuid(0) + Break chroot (../ 10x Loop) Shellcode (34 bytes)

Linux/x86 - setuid0 + Break chroot ../ 10x Loop Shellcode 34 bytes. Shellcode exploit for Linuxx86 platform / The setuid0+chroot shellcode. It is the one of the smallest shellcodes in the !!world!! it will put '../' 10 times Size 34 bytes OS Linux /rootteam/dev0id rootteam.void.ru...

7.1AI score
Exploits0
FreeBSD
FreeBSD
added 2008/12/23 12:0 a.m.13 views

FreeBSD -- netgraph / bluetooth privilege escalation

Problem Description: Some function pointers for netgraph and bluetooth sockets are not properly initialized. Impact: A local user can cause the FreeBSD kernel to execute arbitrary code. This could be used by an attacker directly; or it could be used to gain root privilege or to escape from a jail...

3.3AI score
Exploits0
Rows per page
Query Builder