DEBIAN-CVE-2005-0155

The PerlIO implementation in Perl 5.8.0, when installed with setuid support sperl, allows local users to create arbitrary files via the PERLIODEBUG variable...

CVE-2005-0070

Synaesthesia 2.1 and earlier, and possibly other versions, when installed setuid root, does not drop privileges before processing configuration and mixer files, which allows local users to read arbitrary files...

CVE-2005-0119

helvis 1.8h21 and earlier allows local users to recover and read the files of other users via the elvrec setuid program...

DEBIAN-CVE-2005-0073

Buffer overflow in queue.c in a support script for sympa 3.3.3, when running setuid, allows local users to execute arbitrary code...

DEBIAN-CVE-2005-0448

Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452...

CVE-2005-0602

Unzip 5.51 and earlier does not properly warn the user when extracting setuid or setgid files, which may allow local users to gain privileges...

ARPUS/Ce Local File Overwrite Exploit (setuid)

Exploit for linux platform in category local exploits ============================================== ARPUS/Ce Local File Overwrite Exploit setuid ============================================== / Copyright Kevin Finisterre - ripped from my perlex.c DISCLAIMER I am in no way responsible for your...

ARPUS/Ce Local Overflow Exploit (setuid) (perl)

Exploit for linux platform in category local exploits =============================================== ARPUS/Ce Local Overflow Exploit setuid perl =============================================== !/usr/bin/perl -w Setuid ARPUS/ce exploit by KF - kflistsatdigitalmunitiondotcom - 4/21/05 Copyright...

ARPUSCe - Local File Overwrite (setuid)

ARPUSCe - Local File Overwrite setuid / Copyright Kevin Finisterre - ripped from my perlex.c DISCLAIMER I am in no way responsible for your stupidity. DISCLAIMER I am in no way liable for any damages caused by compilation and or execution of this code. WARNING DO NOT RUN THIS UNLESS YOU KNOW WHAT...

ARPUS/Ce - Local File Overwrite (setuid)

/ Copyright Kevin Finisterre - ripped from my perlex.c DISCLAIMER I am in no way responsible for your stupidity. DISCLAIMER I am in no way liable for any damages caused by compilation and or execution of this code. WARNING DO NOT RUN THIS UNLESS YOU KNOW WHAT YOU ARE DOING WARNING overwriting...

ARPUS/Ce Local Overflow Exploit (setuid) (perl)

No description provided by source. !/usr/bin/perl -w Setuid ARPUS/ce exploit by KF - kflistsatdigitalmunitiondotcom - 4/21/05 Copyright Kevin Finisterre kfinisterre@threat:/tmp$ ./ceex.pl sh-2.05b id uid=0root gid=1000kfinisterre groups=20dialout,24cdrom,25floppy,29audio,44video,1000kfinisterre 5...

ARPUSCe - Local Overflow (setuid) (Perl)

ARPUSCe - Local Overflow setuid Perl !/usr/bin/perl -w Setuid ARPUS/ce exploit by KF - kflistsatdigitalmunitiondotcom - 4/21/05 Copyright Kevin Finisterre kfinisterre@threat:/tmp$ ./ceex.pl sh-2.05b id uid=0root gid=1000kfinisterre groups=20dialout,24cdrom,25floppy,29audio,44video,1000kfinisterre...

ARPUS/Ce Local File Overwrite Exploit (setuid)

No description provided by source. / Copyright Kevin Finisterre - ripped from my perlex.c DISCLAIMER I am in no way responsible for your stupidity. DISCLAIMER I am in no way liable for any damages caused by compilation and or execution of this code. WARNING DO NOT RUN THIS UNLESS YOU KNOW WHAT YO...

ARPUS/Ce - Local Overflow (setuid)

!/usr/bin/perl -w Setuid ARPUS/ce exploit by KF - kflistsatdigitalmunitiondotcom - 4/21/05 Copyright Kevin Finisterre kfinisterre@threat:/tmp$ ./ceex.pl sh-2.05b id uid=0root gid=1000kfinisterre groups=20dialout,24cdrom,25floppy,29audio,44video,1000kfinisterre 57 bytes long $sc = "\x90"x512; $sc ...

CVE-2005-0970

CVE-2005-0970 concerns Mac OS X 10.3.x and earlier where users can install, create, and execute setuid/setgid scripts, enabling unauthorized activities with escalated privileges through vulnerable scripts. The vulnerability is described as a design flaw in script handling that allows set-user IDs...

BitchX 1.0c20 - Local Buffer Overflow

BitchX 1.0c20 - Local Buffer Overflow / Tested on BitchX-1.0c19 /str0ke / / P.o.C Exploit Code for BitchX made for Version BitchX-1.0c20cvs -- Date 20020325 C 2004. GroundZero Security Research and Software Development http://www.groundzero-security.com released under the GNU GPL -...

iDEFENSE Security Advisory 04.07.05: SGI IRIX gr_osview Information Disclosure Vulnerability

SGI IRIX grosview Information Disclosure Vulnerability iDEFENSE Security Advisory 04.07.05 http://www.idefense.com/application/poi/display?type=vulnerabilities April 7, 2005 I. BACKGROUND The grosview application is a setuid root application that provides a graphical display of usage of certain...

Debian DSA-696-1 : perl - design flaw

Paul Szabo discovered another vulnerability in the File::Path::rmtree function of perl, the popular scripting language. When a process is deleting a directory tree, a different user could exploit a race condition to create setuid binaries in this directory tree, provided that he already had write...

[SECURITY] [DSA 696-1] New perl packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 696-1 [email protected] http://www.debian.org/security/ Martin Schulze March 22nd, 2005 http://www.debian.org/security/faq -...

iDEFENSE Security Advisory 03.21.05: Mac OS X CF_CHARSET_PATH Buffer Overflow Vulnerability

Mac OS X CFCHARSETPATH Buffer Overflow Vulnerability iDEFENSE Security Advisory 03.21.05 www.idefense.com/application/poi/display?id=219&type=vulnerabilities March 21, 2005 I. BACKGROUND Mac OS X is an operating system for the Apple family of microcomputers. More information is available at the...