Lucene search
K

289 matches found

Prion
Prion
added 2017/08/23 12:29 a.m.8 views

Code injection

mcmnm in BMC Patrol allows local users to gain privileges via a crafted libmcmclnx.so file in the current working directory, because it is setuid root and the RPATH variable begins with the .: substring...

7.2CVSS7.5AI score0.0045EPSS
Exploits1References1
NVD
NVD
added 2017/08/23 12:29 a.m.16 views

CVE-2017-13130

mcmnm in BMC Patrol allows local users to gain privileges via a crafted libmcmclnx.so file in the current working directory, because it is setuid root and the RPATH variable begins with the .: substring...

7.8CVSS7.6AI score0.0045EPSS
Exploits1References1
Cvelist
Cvelist
added 2017/08/23 12:0 a.m.13 views

CVE-2017-13130

mcmnm in BMC Patrol allows local users to gain privileges via a crafted libmcmclnx.so file in the current working directory, because it is setuid root and the RPATH variable begins with the .: substring...

7.6AI score0.0045EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.46 views

OracleVM 3.3 : glibc (OVMSA-2014-0017)

The remote OracleVM system is missing necessary patches to address critical security updates : - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475, - Don't use alloca in addgetnetgrentX 1087789. - Adjust...

7.5CVSS7.6AI score0.18099EPSS
Exploits6References5
0day.today
0day.today
added 2014/11/20 12:0 a.m.74 views

Compaq/Hewlett Packard Glance 11.00 Privilege Escalation Vulnerability

It has been identified that binaries that are executed with elevated privileges SetGID and SetUID programs in Compaq/HP's Glance for Linux have been compiled in manner that means they searched for libraries in insecure locations. Versions 11.00 and below are affected. Vulnerability title:...

4.4CVSS2AI score0.0708EPSS
Exploits9
Packet Storm
Packet Storm
added 2014/11/19 12:0 a.m.56 views

Compaq/Hewlett Packard Glance 11.00 Privilege Escalation

Vulnerability title: SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH in Compaq/Hewlett Packard Glance for Linux CVE: CVE-2014-2630 Vendor: Compaq/Hewlett Packard Product: Glance for Linux Affected version: 11.00 and subsequent Fixed version: HPSBMU03086 rev.3 Reported by: Tim...

4.4CVSS0.8AI score0.0708EPSS
Exploits9
myhack58
myhack58
added 2014/10/31 12:0 a.m.19 views

Linux dynamic link library contains the vulnerability-vulnerability warning-the black bar safety net

Description Nebula is the one for Linux. the right to exploit exercises virtual machine,the first 1 5 off Level15 provides such a vulnerability of the program flag15 ! Find the link named libc. so. 6 dynamic link libraries,but the/var/tmp directory for the current userlevel15can be written,it...

0.6AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.40 views

PyPAM - Python bindings for PAM - Double Free Corruption

No description provided by source. === LSE Leading Security Experts - Security Advisory 2012-03-01 === PyPAM -- Python bindings for PAM - Double Free Corruption --------------------------------------------------------- Affected Versions ================= PyPAM = 0.4.2 Red Hat PyPAM = 0.5.0-12...

7.5CVSS0.2AI score0.14294EPSS
Exploits6
securityvulns
securityvulns
added 2014/06/14 12:0 a.m.58 views

CVE-2014-0907 - SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH In IBM DB2

Vulnerability title: SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH In IBM DB2 CVE: CVE-2014-0907 Vendor: IBM Product: DB2 Affected version: V9.1, V9.5, V9.7, V10.1 and V10.5 Fixed version: V9.7 FP9a, V10.1 FP3a, V10.1 FP4 and V10.5 FP3a Reported by: Tim Brown Details: It ha...

7.2CVSS0.3AI score0.00658EPSS
Exploits0
NVD
NVD
added 2014/05/14 12:55 a.m.23 views

CVE-2014-2591

Untrusted search path vulnerability in BMC Patrol for AIX 3.9.00 allows local users to gain privileges via a crafted library, related to an incorrect RPATH setting...

6.9CVSS6.5AI score0.01312EPSS
Exploits2References2
Prion
Prion
added 2014/05/14 12:55 a.m.16 views

Design/Logic Flaw

Untrusted search path vulnerability in BMC Patrol for AIX 3.9.00 allows local users to gain privileges via a crafted library, related to an incorrect RPATH setting...

6.9CVSS7AI score0.01312EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2014/05/14 12:0 a.m.25 views

CVE-2014-2591

Untrusted search path vulnerability in BMC Patrol for AIX 3.9.00 allows local users to gain privileges via a crafted library, related to an incorrect RPATH setting...

6.5AI score0.01312EPSS
Exploits2References2
CVE
CVE
added 2014/05/14 12:0 a.m.52 views

CVE-2014-2591

CVE-2014-2591 affects BMC Patrol for AIX 3.9.00 and is caused by an incorrect RPATH setting that enables untrusted search path exploitation. This allows local users to gain privileges by loading a crafted library. The vulnerability is a local privilege escalation risk due to insecure runtime libr...

6.9CVSS6.7AI score0.01312EPSS
Exploits2References2Affected Software1
securityvulns
securityvulns
added 2014/04/21 12:0 a.m.62 views

CVE-2013-6216 - SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH in multiple HP products on Linux

Vulnerability title: SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH in HP Array Configuration Utility, HP Array Diagnostics Utility, HP ProLiant Array Diagnostics and SmartSSD Wear Gauge Utility Running on Linux CVE: CVE-2013-6216 Vendor: HP Product: HP Array Configuration...

2.1CVSS0.5AI score0.00528EPSS
Exploits1
Packet Storm
Packet Storm
added 2014/04/14 12:0 a.m.46 views

BMC Patrol For AIX Insecure RPATH Use

Vulnerability title: SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH in BMC Patrol for AIX CVE: CVE-2014-2591 Vendor: BMC Product: Patrol for AIX Affected version: 3.9.00 Fixed version: N/A Reported by: Tim Brown Details: It has been identified that binaries that are executed...

6.9CVSS6.8AI score0.01312EPSS
Exploits2
Packet Storm
Packet Storm
added 2014/04/14 12:0 a.m.62 views

HP Insecure RPATH Use

Vulnerability title: SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH in HP Array Configuration Utility, HP Array Diagnostics Utility, HP ProLiant Array Diagnostics and SmartSSD Wear Gauge Utility Running on Linux CVE: CVE-2013-6216 Vendor: HP Product: HP Array Configuration...

2.1CVSS6.7AI score0.00528EPSS
Exploits1
securityvulns
securityvulns
added 2013/12/24 12:0 a.m.25 views

libiodbc rpath vulnerability

Unsafe rpath vulnerability in test applications...

2.1AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2013/12/24 12:0 a.m.37 views

[slackware-security] llvm (SSA:2013-350-03)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security llvm SSA:2013-350-03 New llvm packages are available for Slackware 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+...

7.7AI score
Exploits0
securityvulns
securityvulns
added 2013/12/24 12:0 a.m.26 views

llvm unsafe rpath

rpath is set to /tmp...

1.3AI score
Exploits0References1Affected Software1
Slackware Linux
Slackware Linux
added 2013/12/17 3:49 a.m.15 views

[slackware-security] llvm

New llvm packages are available for Slackware 14.0, 14.1, and -current to fix a security issue. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/llvm-3.3-i486-3slack14.1.txz: Rebuilt. The LLVM package included binaries with an rpath pointing to the build location in /tmp...

7.4AI score
Exploits0
Rows per page
Query Builder