595 matches found
Slackware Linux 3.5 - etcgroup Local Privilege Escalation
Slackware Linux 3.5 - etcgroup Local Privilege Escalation source: https://www.securityfocus.com/bid/155/info Due to the way /bin/login behaves when a /etc/group file is not present under Slackware's version of the password shadowing suite, users who log in while this file is not present will be...
Slackware Linux 3.5 - '/etc/group' Local Privilege Escalation
source: https://www.securityfocus.com/bid/155/info Due to the way /bin/login behaves when a /etc/group file is not present under Slackware's version of the password shadowing suite, users who log in while this file is not present will be given uid and gid 0. This will allow them unrestricted acce...
CVE-1999-1498
Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file...
Slackware Linux 3.4 - pkgtool Temporary File
Slackware Linux 3.4 - pkgtool Temporary File source: https://www.securityfocus.com/bid/82/info pkgtool creates the file /tmp/reply insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/reply to any file and wait for root to run the program. This will clober the...
Slackware Linux 3.4 - 'netconfig' Temporary File
source: https://www.securityfocus.com/bid/81/info netconfig creates the file /tmp/tmpmsg insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/tmpmsg to any file and wait for root to run the program. This will clober the target file. The file created has...
Slackware Linux 3.4 - 'makebootdisk' Temporary File
source: https://www.securityfocus.com/bid/78/info makebootdisk creates the file /tmp/return insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/return to any file and wait for root to run the program. This will clober the target file. The file created has...
Slackware Linux 3.4 - 'pkgtool' Temporary File
source: https://www.securityfocus.com/bid/82/info pkgtool creates the file /tmp/reply insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/reply to any file and wait for root to run the program. This will clober the target file. The file created has permissions...
Slackware Linux 3.4 liloconfig-color temporary file Vulnerability
Exploit for linux platform in category dos / poc $ ln -s /tmp/reply /etc/passwd 0day.today 2017-12-31...
Slackware Linux 3.13.2 - color_xterm Local Buffer Overflow (1)
Slackware Linux 3.13.2 - colorxterm Local Buffer Overflow 1 source: https://www.securityfocus.com/bid/369/info In Slackware Linux 3.1 and 3.2, the version of color xterm included is vulnerable to a buffer overflow attack that allows for a local user to gain root access. / exploit for colorxterm,...
Slackware Linux 3.13.2 - color_xterm Local Buffer Overflow (2)
Slackware Linux 3.13.2 - colorxterm Local Buffer Overflow 2 / source: https://www.securityfocus.com/bid/369/info In Slackware Linux 3.1 and 3.2, the version of color xterm included is vulnerable to a buffer overflow attack that allows for a local user to gain root access. / / colorxterm buffer...
Slackware Linux 3.1/3.2 - 'color_xterm' Local Buffer Overflow (2)
/ source: https://www.securityfocus.com/bid/369/info In Slackware Linux 3.1 and 3.2, the version of color xterm included is vulnerable to a buffer overflow attack that allows for a local user to gain root access. / / colorxterm buffer overflow exploit for Linux with non-executable stack Copyright...
Slackware Linux 3.1/3.2 - 'color_xterm' Local Buffer Overflow (1)
source: https://www.securityfocus.com/bid/369/info In Slackware Linux 3.1 and 3.2, the version of color xterm included is vulnerable to a buffer overflow attack that allows for a local user to gain root access. / exploit for colorxterm, modified by zgv / / original exploit coded by Ming Zhang for...
CVE-1999-1489
Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument...
Slackware Linux 3.1 - usrX11binSuperProbe Local Buffer Overflow
Slackware Linux 3.1 - usrX11binSuperProbe Local Buffer Overflow / source: https://www.securityfocus.com/bid/364/info superprobe is an program supplied with XFree86 that helps determine video hardware. It is shipped with Slackware Linux 3.1 and is installed setuid root. There is an exploitable...
Slackware Linux 3.1 - '/usr/X11/bin/SuperProbe' Local Buffer Overflow
/ source: https://www.securityfocus.com/bid/364/info superprobe is an program supplied with XFree86 that helps determine video hardware. It is shipped with Slackware Linux 3.1 and is installed setuid root. There is an exploitable strcpy buffer overflow in the TestChip function which allows for a...