IBM AIX 5.3 - 'GetShell' / 'GetCommand' File Disclosure

source: https://www.securityfocus.com/bid/16103/info IBM AIX is prone to a local vulnerability in getShell and getCommand. This vulnerability may let the attacker gain unauthorized read access to shell scripts on the computer. -bash-3.00$ ls -l /tmp/k.sh -rwx------ 1 root system 79 2005-12-22 23:...

axisFlaws.txt

/ Public disclosure due lack of responce from Axis Communications / I have found a couple of bugs in Axis Network Camera/Video Servers. I have all Axis stuff in one e-mail, instead of multiple, lazy me.. ; Vulnerable: Axis 2100/2110/2120/2420/2130 Network Camera, 2400/2401 Video Server. There may...

CVE-2003-0704

KisMAC before 0.05d trusts user-supplied variables when chown'ing files or directories, which allows local users to gain privileges via the $DRIVERKEXT environment variable in 1 vihadriver.sh, 2 macjackload.sh, 3 airojackload.sh, 4 setuidenable.sh, 5 setuiddisable.sh, and using a "similar...

MatLab symbolik links problem

Startup shell scripts use temporary files in unsafe way...