CVE-2016-10323

Synology Photo Station before 6.3-2958 allows local users to gain privileges by leveraging setuid execution of a "synophotodsmuser --copy-no-ea" command...

EUVD-2016-1507

Malware in sbrugna...

EUVD-2007-0396

Malware in sbrugna...

EUVD-2007-0394

Malware in sbrugna...

VulnCheck KEV: CVE-2023-0386

Linux Kernel contains an improper ownership management vulnerability, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping...

kernel: FUSE filesystem low-privileged user privileges escalation

A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allows a local user to escalat...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a flaw in the OverlayFS subsystem that has a setuid file execution capability. An attacker exploits the...

Command injection

Synology Photo Station before 6.3-2958 allows local users to gain privileges by leveraging setuid execution of a "synophotodsmuser --copy-no-ea" command...

CVE-2016-10323

Synology Photo Station before 6.3-2958 allows local users to gain privileges by leveraging setuid execution of a "synophotodsmuser --copy-no-ea" command...

CVE-2016-10323

Synology Photo Station before 6.3-2958 allows local users to gain privileges by leveraging setuid execution of a "synophotodsmuser --copy-no-ea" command...

CVE-2016-10323

Synology Photo Station prior to version 6.3-2958 contains an elevation of privilege due to a setuid execution flaw in the command "synophoto_dsm_user --copy-no-ea", allowing local users to gain privileges. This is documented across multiple sources (CVE-2016-10323, including Red Hat and CVE recor...

kernel: no access restrictions of /proc/pid/* after setuid program exec

The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lsee...

kernel: no access restrictions of /proc/pid/* after setuid program exec

The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lsee...

kernel: no access restrictions of /proc/pid/* after setuid program exec

The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lsee...

kernel: no access restrictions of /proc/pid/* after setuid program exec

The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lsee...

Design/Logic Flaw

Sun Solaris 9 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572...

Solaris 9 / 10 ld.so Local Root Exploit (2)

Exploit for solaris platform in category local exploits =========================================== Solaris 9 / 10 ld.so Local Root Exploit 2 =========================================== / Solaris 9 on SPARC: $ cat dupa.c / char sh = / setuid / "\x90\x08\x3f\xff\x82\x10\x20\x17\x91\xd0\x20\x08" /...

bsd/x86 execve /bin/sh setuid (0) 29 bytes

Exploit for bsd/x86 platform in category shellcode ========================================== bsd/x86 execve /bin/sh setuid 0 29 bytes ========================================== / BSD version FreeBSD, OpenBSD, NetBSD. email protected 29 bytes. -setuid0; -execve/bin/sh; / char shellcode= "\x31\xc0...

Linux Kernel 2.2.18 (RedHat 6.27.0 2.2.142.2.182.2.18ow4) - ptraceexecve Race Condition Privilege Escalation (1)

Linux Kernel 2.2.18 RedHat 6.27.0 2.2.142.2.182.2.18ow4 - ptraceexecve Race Condition Privilege Escalation 1 / EDB Note: Updated exploit can be found here: https://www.exploit-db.com/exploits/20721/ source: https://www.securityfocus.com/bid/2529/info The Linux kernel is the core of all...