Lucene search
+L

47 matches found

CNNVD
CNNVD
added 2022/05/02 12:0 a.m.4 views

glibc 安全特征问题漏洞

glibc GNU C Library is the C standard library implemented by the GNU Project. A security vulnerability exists in glibc, which stems from the fact that application build-time regular expressions may not correctly detect the runtime linker, and the application's pattern detection may fail to detect...

8.4CVSS7.7AI score0.00303EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2022/05/02 12:0 a.m.5 views

PT-2022-13668 · Fapolicyd +4 · Fapolicyd +4

Name of the Vulnerable Software and Affected Versions: fapolicyd affected versions not specified Description: A vulnerability was found due to an assumption on how glibc names the runtime linker. A build time regular expression may not correctly detect the runtime linker, causing pattern detectio...

8.4CVSS8AI score0.00303EPSS
Exploits0References24
0day.today
0day.today
added 2017/04/13 12:0 a.m.23 views

PonyOS 4.0 - fluttershy LD_LIBRARY_PATH Local Kernel Exploit

Exploit for linux platform in category local exploits !/usr/bin/python PonyOS 4.0 has added several improvements over previous releases including support for setuid binaries and dynamic libraries. The run-time linker does not sanitize environment variables when running setuid files allowing for...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2017/04/02 12:0 a.m.17 views

Linux Kernel (PonyOS 4.0) - fluttershy LD_LIBRARY_PATH Local Privilege Escalation

Linux Kernel PonyOS 4.0 - fluttershy LDLIBRARYPATH Local Privilege Escalation !/usr/bin/python PonyOS 4.0 has added several improvements over previous releases including support for setuid binaries and dynamic libraries. The run-time linker does not sanitize environment variables when running...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2014/10/14 12:0 a.m.36 views

IBM AIX privilege escalation

Privilege escalation via runtime linker...

7.2CVSS4.8AI score0.00576EPSS
Exploits4References1Affected Software2
securityvulns
securityvulns
added 2014/10/14 12:0 a.m.52 views

CVE-2014-3074 - Runtime Linker Allows Privilege Escalation Via Arbitrary File Writes in IBM AIX

Vulnerability title: Runtime Linker Allows Privilege Escalation Via Arbitrary File Writes in IBM AIX CVE: CVE-2014-3074 Vendor: IBM Product: AIX Affected version: AIX 6.1 and 7.1 and VIOS 2.2. Reported by: Tim Brown Details: It has been identified that the runtime linker allows privilege escalati...

7.2CVSS1.4AI score0.00576EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2014/08/20 12:0 a.m.33 views

AIX 7.1 TL 3 : malloc (IV62808)

It has been identified that the runtime linker allows privilege escalation via arbitrary file writes with elevated privileges programs. When MALLOCOPTIONS and MALLOCBUCKETS environment variables are set with bucket statistics options and by executing certain setuid programs, a non-privileged user...

7.2CVSS5.5AI score0.00576EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2014/08/20 12:0 a.m.47 views

AIX 6.1 TL 9 : malloc (IV62805)

It has been identified that the runtime linker allows privilege escalation via arbitrary file writes with elevated privileges programs. When MALLOCOPTIONS and MALLOCBUCKETS environment variables are set with bucket statistics options and by executing certain setuid programs, a non-privileged user...

7.2CVSS5.5AI score0.00576EPSS
Exploits4References2
NVD
NVD
added 2014/07/02 10:35 a.m.15 views

CVE-2014-3074

The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently gain privileges, by setting crafted MALLOCOPTIONS and MALLOCBUCKETS environment-variable values and then executing a setuid program...

7.2CVSS6AI score0.00576EPSS
Exploits4References15
Prion
Prion
added 2014/07/02 10:35 a.m.15 views

Design/Logic Flaw

The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently gain privileges, by setting crafted MALLOCOPTIONS and MALLOCBUCKETS environment-variable values and then executing a setuid program...

7.2CVSS6.5AI score0.00576EPSS
Exploits4References15Affected Software2
Cvelist
Cvelist
added 2014/07/02 10:0 a.m.28 views

CVE-2014-3074

The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently gain privileges, by setting crafted MALLOCOPTIONS and MALLOCBUCKETS environment-variable values and then executing a setuid program...

6AI score0.00576EPSS
Exploits4References15
CVE
CVE
added 2014/07/02 10:0 a.m.100 views

CVE-2014-3074

The CVE-2014-3074 incident affects IBM AIX 6.1/7.1 (and VIOS 2.2.x) where the runtime linker allows local privilege escalation by manipulating MALLOCOPTIONS/MALLOCBUCKETS and then running a setuid program to create a root-owned 666 file. The root cause is in the malloc subsystem used by the AIX r...

7.2CVSS5.9AI score0.00576EPSS
Exploits4References15Affected Software2
Tenable Nessus
Tenable Nessus
added 2014/07/01 12:0 a.m.20 views

AIX 7.1 TL 3 : malloc (IV60940)

It has been identified that the runtime linker allows privilege escalation via arbitrary file writes with elevated privileges programs. When MALLOCOPTIONS and MALLOCBUCKETS environment variables are set with bucket statistics options and by executing certain setuid programs, a non-privileged user...

0.4AI score0.00576EPSS
Exploits4References2
NVD
NVD
added 2011/10/18 1:55 a.m.21 views

CVE-2011-4060

The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LDDEBUGOUTPUT and LDDEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack...

3.3CVSS6.2AI score0.00302EPSS
Exploits0References8
securityvulns
securityvulns
added 2011/03/15 12:0 a.m.36 views

Medium severity flaw in QNX Neutrino RTOS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Nth Dimension Security Advisory NDSA20110310 Date: 10th March 2011 Author: Tim Brown mailto:[email protected] URL: http://www.nth-dimension.org.uk/ / http://www.machine.org.uk/ Product: QNX Neutrino RTOS 6.5.0...

0.2AI score
Exploits0
security_vulns
security_vulns
added 2007/01/01 12:0 a.m.7 views

Izik : Reverse Engineering with LD_PRELOAD

July, 06 2005г.| Izik Reverse Engineering with LDPRELOAD This paper is about the LDPRELOAD feature, and how it can be useful for reverse engineering dynamically linked executables. This technique allows you to hijack functions/inject code and manipulate the application flow. Compiling Methods...

7.6AI score
Exploits0
NVD
NVD
added 2005/06/29 4:0 a.m.20 views

CVE-2005-2072

The runtime linker ld.so in Solaris 8, 9, and 10 trusts the LDAUDIT environment variable in setuid or setgid programs, which allows local users to gain privileges by 1 modifying LDAUDIT to reference malicious code and possibly 2 using a long value for LDAUDIT...

7.2CVSS6.7AI score0.00998EPSS
Exploits1References9
Cvelist
Cvelist
added 2005/06/29 4:0 a.m.28 views

CVE-2005-2072

The runtime linker ld.so in Solaris 8, 9, and 10 trusts the LDAUDIT environment variable in setuid or setgid programs, which allows local users to gain privileges by 1 modifying LDAUDIT to reference malicious code and possibly 2 using a long value for LDAUDIT...

6.7AI score0.00998EPSS
Exploits1References9
CVE
CVE
added 2005/06/29 4:0 a.m.63 views

CVE-2005-2072

CVE-2005-2072 affects the runtime linker (ld.so) in Solaris 8, 9, and 10, where LD_AUDIT in setuid/setgid contexts can be abused to gain privileges (including by using a long LD_AUDIT value). Connected advisories list vendor patches addressing this: Solaris 8/9/10 patches 109147-44, 109148-42, 11...

7.2CVSS6.7AI score0.00998EPSS
Exploits1References9Affected Software2
exploitpack
exploitpack
added 2004/12/24 12:0 a.m.68 views

Solaris 2.6789 (SPARC) - ld.so.1 Local Privilege Escalation

Solaris 2.6789 SPARC - ld.so.1 Local Privilege Escalation / $Id: raptorldpreload.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorldpreload.c - ld.so.1 local, Solaris/SPARC 2.6/7/8/9 Copyright c 2003-2004 Marco Ivaldi Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 throug...

7.2CVSS0.1AI score0.03523EPSS
Exploits5
Rows per page
Query Builder