CVE-2001-0488

pcltotiff in HP-UX 10.x has unnecessary set group id permissions, which allows local users to cause a denial of service...

CVE-2001-0081

swinit in nCipher does not properly disable the Operator Card Set recovery feature even when explicitly disabled by the user, which could allow attackers to gain access to application keys...

CVE-2001-0081

Technical details about CVE-2001-0081 are not publicly provided in the supplied documents. Monitor for updates from vendors and security advisories.

CVE-2001-0081

swinit in nCipher does not properly disable the Operator Card Set recovery feature even when explicitly disabled by the user, which could allow attackers to gain access to application keys...

gtk+ security hole.

while going through a quick audit of gtk i found: gtk+ can be tricked into running arbitrary code via a bogus module. this means any program using gtk that is setid can be exploited via this method. here is an exploit i wrote for this security hole: original xgtk.cworking/un-wrapped:...

Уязвимость в Oracle Listener

Используя команды SET TRCFILE или SET LOGFILE пользователь может перезаписать любой файл своими данными...

iis-unicode.txt

Recently I received an email from Par Osterberg that directed my attention to a post in the Packetstorm forums: http://209.143.242.119/cgi-bin/cbmc/forums.cgi?authkey=anonymous&uname=anonymous&datopic=Windows&mesgcheck=defined&gum=474&editoron= An anonymous person posts that they can run arbitrar...

CVE-1999-0889

Cisco 675 routers running CBOS allow remote attackers to establish telnet sessions if an exec or superuser password has not been set...

CVE-1999-0745

This CVE concerns a buffer overflow in the Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler. The affected component is the PDNSD service used as part of the Source Code Browser on IBM AIX with the C Set ++ toolchain. The description consistently ci...

CVE-1999-0745

Buffer overflow in Source Code Browser Program Database Name Server Daemon pdnsd for the IBM AIX C Set ++ compiler...

CVE-1999-0745

Buffer overflow in Source Code Browser Program Database Name Server Daemon pdnsd for the IBM AIX C Set ++ compiler...

modem-DoS.txt

Date: Sun, 27 Sep 1998 13:52:33 -0400 From: "Max Schau Noc-Wage" Subject: 1+2=3, +++ATH0=Old school DoS +++ATH0 Prepared by Noc-Wage Max Schau, M.C.S.R Brought to you by the wonderful people of hackers undernet and M.C.S.R All OS's using a dial-up connection are at risk. NOTE This is an old...

irc.services.DoS.txt

Date: Thu, 22 Apr 1999 22:53:42 EDT From: Andy Church To: [email protected] Subject: Bug in Services for IRC Networks 4.2.2 A bug has been found in versions through 4.2.2 of Services for IRC Networks which allows any IRC user to crash the program. The channel service's SET SUCCESSOR command do...

Rational Software ClearCase for Unix 3.2 - ClearCase SUID

Rational Software ClearCase for Unix 3.2 - ClearCase SUID source: https://www.securityfocus.com/bid/538/info Rational Software's ClearCase product includes a vulnerability whereby an unprivileged user can have any readable executable set to SUID root.. A 1.5 meg file is copied and then chmod'ed t...

CVE-1999-1413

Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg...

PT-2009-6704 · Little Cms +1 · Liblcms1 +5

Name of the Vulnerable Software and Affected Versions: lcms versions prior to 1.18beta2 liblcms1-dev versions prior to 1.18 liblcms1 versions prior to 1.18 liblcms-utils versions prior to 1.18 lcms-devel-1.18 versions prior to 1.18 Description: The issue involves multiple stack-based buffer...

DEBIAN-CVE-2023-53835

In the Linux kernel, the following vulnerability has been resolved: ext4: don't clear SBRDONLY when remounting r/w until quota is re-enabled When a file system currently mounted read/only is remounted read/write, if we clear the SBRDONLY flag too early, before the quota is initialized, and there ...

PT-2004-3692 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.15 Description: The issue affects the Linux kernel and can lead to a denial of service panic when a page fault occurs due to a set mempolicy call with a 0 bitmask. This can be exploited by local users,...

Cross-Site Scripting

I've picked up on the work started over at 276 and rebased on erusev/master. Since this is rebased on master, I can't point at PR at naNuke/master without running into the merge conflicts that I've already resolved manually. I've implemented what I suggested earlier so that all attributes are...

PT-2010-5671 · Linux +1 · Linux-Pam +1

Name of the Vulnerable Software and Affected Versions: Linux-PAM versions prior to 1.1.2 Description: The issue is related to the run coprocess function in pam xauth.c in the pam xauth module, which does not check the return values of the setuid, setgid, and setgroups system calls. This might all...