Lucene search
K

131 matches found

RedHat Linux
RedHat Linux
added 2011/04/04 8:17 p.m.3 views

glibc: fix causes linker to search CWD when running privileged program with $ORIGIN in R*PATH

Multiple untrusted search path vulnerabilities in elf/dl-object.c in certain modified versions of the GNU C Library aka glibc or libc6, including glibc-2.5-49.el55.6 and glibc-2.12-1.7.el60.3 in Red Hat Enterprise Linux, allow local users to gain privileges via a crafted dynamic shared object DSO...

6.9CVSS6.2AI score0.00787EPSS
Exploits0References4
NVD
NVD
added 2011/01/07 7:0 p.m.31 views

CVE-2010-3847

elf/dl-load.c in ld.so in the GNU C Library aka glibc or libc6 through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LDAUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object DSO located in an arbitrary...

6.9CVSS8.5AI score0.08747EPSS
Exploits20References21
OSV
OSV
added 2011/01/07 7:0 p.m.11 views

CVE-2010-3847

elf/dl-load.c in ld.so in the GNU C Library aka glibc or libc6 through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LDAUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object DSO located in an arbitrary...

6.5AI score
Exploits0References21
Prion
Prion
added 2011/01/07 7:0 p.m.35 views

Directory traversal

elf/dl-load.c in ld.so in the GNU C Library aka glibc or libc6 through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LDAUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object DSO located in an arbitrary...

6.9CVSS7AI score0.08747EPSS
Exploits20References21Affected Software1
Debian CVE
Debian CVE
added 2011/01/07 6:0 p.m.35 views

CVE-2010-3847

elf/dl-load.c in ld.so in the GNU C Library aka glibc or libc6 through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LDAUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object DSO located in an arbitrary...

6.9CVSS9.2AI score0.08747EPSS
Exploits20
NVD
NVD
added 2010/12/06 9:5 p.m.29 views

CVE-2010-4296

vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 does not properly load libraries, which allows host OS users to gain privileges via...

7.2CVSS6.5AI score0.00368EPSS
Exploits0References10
Prion
Prion
added 2010/12/06 9:5 p.m.23 views

Design/Logic Flaw

vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 does not properly load libraries, which allows host OS users to gain privileges via...

7.2CVSS7AI score0.00368EPSS
Exploits0References10Affected Software4
Cvelist
Cvelist
added 2010/12/06 9:0 p.m.37 views

CVE-2010-4296

vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 does not properly load libraries, which allows host OS users to gain privileges via...

6.5AI score0.00368EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2010/12/06 12:0 a.m.3 views

PT-2010-5404 · Vmware · Vmware Server +3

Name of the Vulnerable Software and Affected Versions: VMware Workstation versions 7.0 through 7.1.2 build 301547 VMware Player versions 3.1.x through 3.1.1 build 301547 VMware Server version 2.0.2 VMware Fusion versions 3.1.x through 3.1.1 build 332100 Description: The issue is related to the...

7.2CVSS6.4AI score0.00368EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2010/11/10 7:0 p.m.4 views

glibc: ld.so insecure handling of $ORIGIN in LD_AUDIT for setuid/setgid programs

elf/dl-load.c in ld.so in the GNU C Library aka glibc or libc6 through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LDAUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object DSO located in an arbitrary...

6.9CVSS7.4AI score0.08747EPSS
Exploits20References4
UbuntuCve
UbuntuCve
added 2010/10/22 12:0 a.m.38 views

CVE-2010-3847

elf/dl-load.c in ld.so in the GNU C Library aka glibc or libc6 through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LDAUDIT environment variable, which allows local users to gain privileges via a crafted dynamic shared object DSO located in an arbitrary...

6.9CVSS7.2AI score0.08747EPSS
Exploits20References2
Packet Storm
Packet Storm
added 2006/08/17 12:0 a.m.33 views

exp_jmp_rand.pl.txt

!/usr/bin/perl -w use strict; expjmprand.pl Mon Apr 3 19:17:14 CEST 2006 Exploit solution against 2.6 stack randomization Using the "jmp %esp" technic. Copyright: bunker - http://rawlab.altervista.org 37F1 A7A1 BB94 89DB A920 3105 9F74 7349 AF4C BFA2 EXPLANATION: In 2.6 kernel we have a ghost...

7.4AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2005/12/30 12:0 a.m.37 views

XnView: Privilege escalation

Background XnView is an efficient multimedia viewer, browser and converter, distributed free for non-commercial use. Description Krzysiek Pawlik of Gentoo Linux discovered that the XnView package for IA32 used the DTRPATH field insecurely, causing the dynamic loader to search for shared libraries...

7.2CVSS7.1AI score0.00417EPSS
Exploits0
Cvelist
Cvelist
added 2005/12/21 2:0 a.m.23 views

CVE-2005-4442

Untrusted search path vulnerability in OpenLDAP before 2.2.28-r3 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH...

6.3AI score0.00463EPSS
Exploits0References3
NVD
NVD
added 2005/12/16 11:3 a.m.18 views

CVE-2005-4279

Untrusted search path vulnerability in Qt-UnixODBC before 3.3.4-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH...

7.2CVSS6.4AI score0.00397EPSS
Exploits0References5
CVE
CVE
added 2005/12/16 11:0 a.m.48 views

CVE-2005-4278

CVE-2005-4278 is an Untrusted search path vulnerability affecting Perl prior to 5.8.7-r1 on Gentoo Linux. Local users in the portage group can gain privileges by placing a malicious shared object in the Portage temporary build directory, which is in RUNPATH. Connected advisories (GLSA 200510-14, ...

7.2CVSS6.3AI score0.00397EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2005/12/16 11:0 a.m.18 views

CVE-2005-4279

Untrusted search path vulnerability in Qt-UnixODBC before 3.3.4-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH...

6.4AI score0.00397EPSS
Exploits0References5
CVE
CVE
added 2005/12/16 11:0 a.m.46 views

CVE-2005-4280

CVE-2005-4280 describes an untrusted search path vulnerability in CMake before 2.2.0-r1 on Gentoo Linux. A local user in the portage group can gain privileges by placing a malicious shared object in the Portage temporary build directory, which is included in the RUNPATH of the affected build. The...

7.2CVSS6.4AI score0.00521EPSS
Exploits0References5
Cvelist
Cvelist
added 2005/12/16 11:0 a.m.22 views

CVE-2005-4278

Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH...

6.3AI score0.00397EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2005/12/16 11:0 a.m.32 views

CVE-2005-4278

Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH...

7.2CVSS6.3AI score0.00397EPSS
Exploits0
Rows per page
Query Builder