43 matches found
EUVD-2025-36506
The “Diagnostics Tools” page of the web-based configuration utility does not properly validate user-controlled input, allowing an authenticated user with high privileges to inject commands into the command shell of the TropOS 4th Gen device. The injected commands can be exploited to execute sever...
EUVD-2005-0077
Malware in sbrugna...
EUVD-2019-4606
Malware in sbrugna...
EUVD-2005-2749
Malware in sbrugna...
EUVD-2003-0664
Malware in sbrugna...
EUVD-2009-0365
Malware in sbrugna...
CentOS 9 : ncurses-6.2-12.20210508.el9
The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ncurses-6.2-12.20210508.el9 build changelog. - ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security- relevant memory corruptio...
CVE-2019-13046
linker/linker.c in ToaruOS through 1.10.9 has insecure LDLIBRARYPATH handling in setuid applications...
CLSA-2025-1739387560 ncurses: Fix of CVE-2023-29491
CVE-2023-29491: fix triggering memory corruption via malformed terminfo database file when used by a setuid application...
CVE-2019-13046
linker/linker.c in ToaruOS through 1.10.9 has insecure LDLIBRARYPATH handling in setuid applications...
CVE-2019-13046
CVE-2019-13046 affects ToaruOS (up to 1.10.9). The root cause is insecure LD_LIBRARY_PATH handling in setuid applications, enabling potential elevation of privileges within affected binaries. Documented in multiple sources (NVD/Red Hat/others) with ToaruOS prior to 1.10.10 identified as vulnerabl...
SUSE SLED12 / SLES12 Security Update : libvdpau (SUSE-SU-2015:1892-1)
libvdpau was updated to use securegetenv instead of getenv for several variables so it can be more safely used in setuid applications. - CVE-2015-5198: libvdpau: incorrect check for security transition bnc943967 - CVE-2015-5199: libvdpau: directory traversal in dlopen bnc943968 - CVE-2015-5200:...
SUSE-SU-2015:1892-1 Security update for libvdpau
libvdpau was updated to use securegetenv instead of getenv for several variables so it can be more safely used in setuid applications. CVE-2015-5198: libvdpau: incorrect check for security transition bnc943967 CVE-2015-5199: libvdpau: directory traversal in dlopen bnc943968 CVE-2015-5200: libvdpa...
SCO Open Server 5.0.5 X Library Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/638/info A buffer overflow vulnerability in the shared X library may allows local users to obtain higher privileges. Any setuid applications linked against the library are possibly vulnerable. The vulnerability is in the...
QNX Photon phrelay-cfg -s Parameter Overflow
No description provided by source. source: http://www.securityfocus.com/bid/11164/info Reportedly QNX Photon MicroGUI is affected by multiple buffer overflow vulnerabilities in MicroGUI utilities. These issues are due to a failure of the affected applications to validate user-supplied string...
QNX Photon input-cfg -s Parameter Overflow
No description provided by source. source: http://www.securityfocus.com/bid/11164/info Reportedly QNX Photon MicroGUI is affected by multiple buffer overflow vulnerabilities in MicroGUI utilities. These issues are due to a failure of the affected applications to validate user-supplied string...
QNX Photon pkg-installer -s Parameter Overflow
No description provided by source. source: http://www.securityfocus.com/bid/11164/info Reportedly QNX Photon MicroGUI is affected by multiple buffer overflow vulnerabilities in MicroGUI utilities. These issues are due to a failure of the affected applications to validate user-supplied string...
QNX Photon phlocale -s Parameter Overflow
No description provided by source. source: http://www.securityfocus.com/bid/11164/info Reportedly QNX Photon MicroGUI is affected by multiple buffer overflow vulnerabilities in MicroGUI utilities. These issues are due to a failure of the affected applications to validate user-supplied string...
RedHat Linux - Stickiness of /tmp
from: http://marc.info/?l=full-disclosure&m=129842239022495&w=2 Developers should not rely on the stickiness of /tmp on Red Hat Linux --------------------------------------------------------------------- Recent versions of Red Hat Enterprise Linux and Fedora provide seunshare, a setuid root utili...
Mandriva Update for pam MDVSA-2010:220 (pam)
Check for the Version of pam OpenVAS Vulnerability Test Mandriva Update for pam MDVSA-2010:220 pam Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...