Lucene search
K

567 matches found

exploitpack
exploitpack
added 2000/03/13 12:0 a.m.23 views

Halloween Linux 4.0 RedHat Linux 6.16.2 - imwheel (2)

Halloween Linux 4.0 RedHat Linux 6.16.2 - imwheel 2 // source: https://www.securityfocus.com/bid/1060/info A vulnerability exists in the 'imwheel' package for Linux. This package is known to be vulnerable to a buffer overrun in its handling of the HOME environment variable. By supplying a...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2000/03/13 12:0 a.m.30 views

Halloween Linux 4.0 / RedHat Linux 6.1/6.2 - 'imwheel' (1)

// source: https://www.securityfocus.com/bid/1060/info A vulnerability exists in the 'imwheel' package for Linux. This package is known to be vulnerable to a buffer overrun in its handling of the HOME environment variable. By supplying a sufficiently long string containing machine executable code...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2000/03/13 12:0 a.m.20 views

Sam Hawker wmcdplay 1.0 beta1-2 - Local Buffer Overflow (2)

source: https://www.securityfocus.com/bid/1047/info wmcdplay is cdplayer generally used with the WindowMaker X11 window-manager on unix systems. While wmcdplay is rarely installed at all by default, when it is installed it is typically set setuid root. wmcdplay is vulnerable to a buffer overflow...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/03/11 12:0 a.m.13 views

AT Computing atsar_linux 1.4 - File Manipulation

AT Computing atsarlinux 1.4 - File Manipulation source: https://www.securityfocus.com/bid/1048/info atsar is a linux load monitoring software package released under the GPL by AT Computing. atsadc is a setuid root binary that is included in the atsar package. atsadc is setuid because it obtains...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 1999/12/29 12:0 a.m.20 views

Majordomo 1.94.4/1.94.5 - Local -C Parameter (1)

source: https://www.securityfocus.com/bid/903/info It is possible for a local user to gain majordomo privileges through a vulnerability which allows privileged arbitrary commands to be executed. If the -C parameter is passed to majordomo or one of several other scripts when run with the setuid ro...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 1999/12/28 12:0 a.m.39 views

Great Circle Associates Majordomo 1.94.4 - Local resend

source: https://www.securityfocus.com/bid/902/info It is possible to execute arbitrary commands with elevated privileges through exploiting the majordomo binary, "resend". A setuid root wrapper program calls resend after setuiding and setgiding to lowered but still elevated privileges which it ru...

7AI score
Exploits0
exploitpack
exploitpack
added 1999/11/12 12:0 a.m.16 views

SunOS 4.1.1 - usrreleasebinwinstall Local Privilege Escalation

SunOS 4.1.1 - usrreleasebinwinstall Local Privilege Escalation source: https://www.securityfocus.com/bid/22/info This applies to sites that have installed Sun Source tapes only. The Sun distribution of sources sunsrc has an installation procedure which creates the directory /usr/release/bin and...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 1999/09/19 12:0 a.m.28 views

dtsession_vuln.txt

Subject: Vulnerability in dtsession To: [email protected] Hello, I discovered the following security problem in dtsession actually in libtt.so, part of CDE: Description ----------- The session manager dtsession contains an overflow vulnerability when parsing the environment variable...

7.4AI score
Exploits0
exploitpack
exploitpack
added 1999/08/31 12:0 a.m.7 views

Martin Stover Mars NWE 0.99 - Local Buffer Overflow

Martin Stover Mars NWE 0.99 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/617/info There are several buffer overflows in the setuid root components of the Mars Netware Emulator package. They allow for a local root compromise through the overflowing of buffers without bounds...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 1999/08/25 12:0 a.m.25 views

RedHat Linux 4.2/5.2/6.0 / S.u.S.E Linux 6.0/6.1 - Cron Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/602/info The version of Vixie cron that ships with RedHat versions 4.2, 5.2 and 6.0 is vulnerable to a local buffer overflow attack. By utilizing the MAILTO environment variable, a buffer can be overflown in the cronpopen function, allowing an attacker...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.35 views

digital.unix.bofs.txt

Date: Fri, 19 Feb 1999 14:18:18 -0800 From: Lamont Granquist To: [email protected] Subject: More Buffer Overflows in Digital Unix 1. No return-into-libc exploit for Digital Unix I didn't understand the return-into-libc method really prior to my previous BUGTRAQ post. Since then, I understand i...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 1999/08/16 12:0 a.m.38 views

Oracle 8 8.1.5 - Intelligent Agent (1)

source: https://www.securityfocus.com/bid/585/info A vulnerability in the Oracle Intelligent Agent allows local malicious users to execute arbitrary commands and to create world writable files as the root user. The problem lies in the dbsnmp program located in $ORACLEHOME/bin . This setuid root a...

7.4AI score
Exploits0
Debian
Debian
added 1999/08/14 5:22 p.m.1 views

[SECURITY] new version isdnutils fixes exploitable xmonisdn

We have received reports that the version of xmonisdn as distributed in the isndutils package from Debian GNU/Linux 2.1 has a security problem. Xmonisdn is an X applet that shows the status of the ISDN links. You can configure it to run two scripts when the left or right mouse button are clicked ...

6AI score
Exploits0
exploitpack
exploitpack
added 1999/06/25 12:0 a.m.12 views

VMware 1.0.1 - Local Buffer Overflow

VMware 1.0.1 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/490/info VMWare is virtual machine software produced by VMWare inc. VMWare version 1.0.1 for Linux is vulnerable to a buffer overflow attack. Since VMWare is installed with binaries that are setuid root, local users...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 1999/05/28 12:0 a.m.31 views

RedHat Linux 5.1 - xosview

// source: https://www.securityfocus.com/bid/362/info xosview is an X11 system monitoring application that ships with RedHat 5.1 installed setuid root. A buffer overflow vulnerability was found in Xrm.cc, the offending code listed below: char userrfilename1024; strcpyuserrfilename, getenv"HOME";...

7.4AI score
Exploits0
exploitpack
exploitpack
added 1998/12/24 12:0 a.m.19 views

Solaris 2.5.1 - kcms Local Buffer Overflow (2)

Solaris 2.5.1 - kcms Local Buffer Overflow 2 / source: https://www.securityfocus.com/bid/452/info There is an unchecked sprintf call in the versions of /usr/openwin/bin/kcmsconfigure shipped with solaris 2.5, 2.5.1 and 2.6. Unfortunately, kcmsconfigure is installed setuid root, making it possible...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 1998/10/18 12:0 a.m.24 views

HP-UX 10.x/11.x - Aserver PATH

source: https://www.securityfocus.com/bid/1929/info Aserver is a server program that ships with HP-UX versions 10.x and above that is used to interface client applications with the audio hardware. Because it talks to hardware, it is installed setuid root by default. During normal execution, Aserv...

7.4AI score
Exploits0
Debian
Debian
added 1998/08/31 10:7 p.m.20 views

Subject: [SECURITY] Debian not vulnerable to recent minicom exploit

Description Recent messages on a computer security forum have again reported that there are buffer overflows in minicom. These can lead into root exploits if the program is installed setuid root. Vulnerability Debian GNU/Linux 2.0 is not vulnerable to this exploit. The program minicom as shipped...

6AI score
Exploits0
Exploit DB
Exploit DB
added 1997/09/08 12:0 a.m.33 views

AIX 3.x - bugfiler Arbitrary File Creation

source: https://www.securityfocus.com/bid/1800/info A vulnerability exists in AIX 3. versions of bugfiler, a utility which automates the process of reporting an filing system bugs. Bugfiler, installed setuid root, creates files in a directory specified by the user invoking the program example:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 1997/05/25 12:0 a.m.16 views

SGI IRIX 6.2 - eject Local Privilege Escalation (1)

SGI IRIX 6.2 - eject Local Privilege Escalation 1 // source: https://www.securityfocus.com/bid/351/info A vulnerability exists in the eject program shipped with Irix 6.2 from Silicon Graphics. By supplying a long argument to the eject program, it is possible to overwrite the return address on the...

0.8AI score
Exploits0
Rows per page
Query Builder