CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

739 matches found

CVE•added 2000/10/13 4:0 a.m.•50 views

CVE-2000-0604

CVE-2000-0604 involves the gkermit component on Red Hat Linux installed with the setgid uucp bit, enabling local users to modify files owned by uucp. The underlying issue is an improper installation/permission setup of gkermit, which allows a local attacker to gain partial access to files owned b...

4.6CVSS6.6AI score0.00061EPSS

Exploits0References2Affected Software1

Packet Storm•added 2000/10/11 12:0 a.m.•44 views

ncurses-overflow.txt

OVERVIEW The CRT screen handling library ncurses contains buffer overflows, making programs using it vulnerable. If the programs are setuid or setgid, a local user may elevate their privilege. The problem exists in ncurses versions 4.2 and 5.0, probably earlier, and libocurses. The overflows can ...

Debian•added 2000/09/04 11:56 a.m.•1 views

[SECURITY] new version of screen released

Package: screen Vulnerability: local exploit Debian-specific: no A format string bug was recently discovered in screen which can be used to gain elevated privilages if screen is setuid. Debian 2.1 slink did ship screen setuid and the exploit can be used to gain root privilages. In Debian 2.2 pota...

exploitpack•added 2000/09/01 12:0 a.m.•23 views

AIX 4.24.3 - usrliblpdpioetcpiomkapqd Local Buffer Overflow

AIX 4.24.3 - usrliblpdpioetcpiomkapqd Local Buffer Overflow // source: https://www.securityfocus.com/bid/3238/info // // The 'piomkapqd' utility is a component of the AIX printing subsystem. By default, it is installed setgid and owned by the 'printk' group. // // 'piomkapqd' contains a locally...

Packet Storm•added 2000/06/26 12:0 a.m.•21 views

2dopewars_exploits.txt

two security holes i found for local use in dopewars1.4.7-current. dopewars is setgid=games. by: [email protected]. LOCAL VULNERABILITY 1: insecure popen call, a shell script can handle this. -- dopewars.sh start -- !/bin/sh dopewars.sh1.4.7: shell script by [email protected]. gives...

securityvulns•added 2000/06/22 12:0 a.m.•55 views

rh 6.2 - gid compromises, etc

Probably it's nothing exciting, but several packets supplied with RH 6.2 will allow 500 gid/uid compromises. On every system it HAS some kind of meaning - sometimes just a little exceeding quotas, hiding from accounting, anonymous intrusions to other systems - but sometimes compromised uucp or ne...

NVD•added 2000/06/21 4:0 a.m.•15 views

CVE-2000-0604

gkermit in Red Hat Linux is improperly installed with setgid uucp, which allows local users to modify files owned by uucp...

4.6CVSS6.2AI score0.00061EPSS

Exploits0References2

exploitpack•added 2000/05/29 12:0 a.m.•26 views

Mandriva Linux Mandrake 7.0 - Local Buffer Overflow

Mandriva Linux Mandrake 7.0 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/1265/info The linux cdrecorder binary is vulnerable to a locally exploitable buffer overflow attack. When installed in a Mandrake 7.0 linux distribution, it is by default setgid "cdburner" which is a...

exploitpack•added 2000/05/16 12:0 a.m.•12 views

KDE 1.11.1.11.22.0 kscd - SHELL Environmental Variable

KDE 1.11.1.11.22.0 kscd - SHELL Environmental Variable source: https://www.securityfocus.com/bid/1206/info Some linux distributions S.u.S.E. 6.4 reported ship with kscd a CD player for the KDE Desktop sgid disk. kscd uses the contents of the 'SHELL' environment variable to execute a browser. This...

securityvulns•added 2000/03/23 12:0 a.m.•31 views

Дырка в gpm

при запуске пользовательского приложения из gmp-root сначала выполняется setuid и только потом setgid, который не срабатывает. В результате, пользовательское приложение запускается с gid wheel...

Exploits0References1

securityvulns•added 2000/03/22 12:0 a.m.•26 views

gpm-root

Hi! I've sent report about the following security hole to the authors of gpm, but they seemed to ignore the problem. The problem applies to every gpm version known by me, for example 1.18.1 and 1.19.0. To exploit this problem, gpm-root must be running on a machine and the user needs both login to...

exploitpack•added 2000/03/22 12:0 a.m.•9 views

gpm 1.18.11.19 Debian 2.x RedHat 6.x S.u.S.E 5.36.x - gpm Setgid

gpm 1.18.11.19 Debian 2.x RedHat 6.x S.u.S.E 5.36.x - gpm Setgid source: https://www.securityfocus.com/bid/1069/info A vulnerability exists in the gpm-root program, part of the gpm package. This package is used to enable mice on the consoles of many popular Linux distributions. The problem is a...

Exploit DB•added 2000/03/22 12:0 a.m.•30 views

gpm 1.18.1/1.19 / Debian 2.x / RedHat 6.x / S.u.S.E 5.3/6.x - gpm Setgid

source: https://www.securityfocus.com/bid/1069/info A vulnerability exists in the gpm-root program, part of the gpm package. This package is used to enable mice on the consoles of many popular Linux distributions. The problem is a design error, caused when a programmer chose to attempt to revert ...

exploitpack•added 2000/02/19 12:0 a.m.•13 views

FreeBSD 3.03.13.23.33.4 - AsmonAscpu Local Privilege Escalation

FreeBSD 3.03.13.23.33.4 - AsmonAscpu Local Privilege Escalation source: https://www.securityfocus.com/bid/996/info A vulnerability exists in both the ascpu and asmon ports to FreeBSD. Ascpu and asmon are applets for the popular window manager AfterStep. They retain the look and feel of this windo...

Packet Storm•added 1999/12/31 12:0 a.m.•21 views

wmmon.freebsd.txt

Posted Tuesday, December 21, 1999 - 16:41 by reid: Steve Reid wrote: Wmmon is a popular program for monitoring CPU load and other system utilization. It runs as a dockapp under WindowMaker. The FreeBSD version of this program has a feature that can be trivially exploited to gain group kmem in...

exploitpack•added 1999/12/01 12:0 a.m.•18 views

FreeBSD 3.3 - angband Local Buffer Overflow

FreeBSD 3.3 - angband Local Buffer Overflow // source: https://www.securityfocus.com/bid/840/info The version angband shipped with FreeBSD 3.3-RELEASE is vulnerable to a local buffer overflow attack. Since it is setgid games, a compromise of files and directories owned by group games is possible....

Exploit DB•added 1999/12/01 12:0 a.m.•26 views

FreeBSD 3.3 - Seyon SetGID Dialer

source: https://www.securityfocus.com/bid/838/info FreeBSD 3.3-RELEASE ships with Seyon, a communications program which is known to have several vulnerabilities which can allow for a malicious user to elevate priviliges. The vulnerability, however, is that seyon is still installed setgid dialer i...

exploitpack•added 1999/12/01 12:0 a.m.•13 views

FreeBSD 3.3 - Seyon SetGID Dialer

FreeBSD 3.3 - Seyon SetGID Dialer source: https://www.securityfocus.com/bid/838/info FreeBSD 3.3-RELEASE ships with Seyon, a communications program which is known to have several vulnerabilities which can allow for a malicious user to elevate priviliges. The vulnerability, however, is that seyon ...

Exploit DB•added 1999/12/01 12:0 a.m.•35 views

FreeBSD 3.3 - 'angband' Local Buffer Overflow

// source: https://www.securityfocus.com/bid/840/info The version angband shipped with FreeBSD 3.3-RELEASE is vulnerable to a local buffer overflow attack. Since it is setgid games, a compromise of files and directories owned by group games is possible. / FreeBSD 3.3 angband exploit yields egid o...

Exploit DB•added 1999/11/08 12:0 a.m.•23 views

Muhammad M. Saggaf Seyon 2.14b - Relative Path

source: https://www.securityfocus.com/bid/780/info Seyon uses relative pathnames to spawn two other programs which it requires. It is possible to exploit this vulnerability to obtain the priviliges which seyon runs with. It is installed by default setgid dialer on FreeBSD and root on Irix...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by