11 matches found
CVE-2022-24951
A race condition exists in Eternal Terminal prior to version 6.2.0 which allows a local attacker to hijack Eternal Terminal's IPC socket, enabling access to Eternal Terminal clients which attempt to connect in the future...
Eternal Terminal 竞争条件问题漏洞
Eternal Terminal is a remote shell by Jason Gauci Personal Developer. A security vulnerability exists in Eternal Terminal versions prior to 6.2.0, which stems from a vulnerability that allows a local attacker to hijack Eternal Terminal's IPC sockets to gain access to Eternal Terminal clients that...
Eric Allman Sendmail 8.8 .x Socket Hijack Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/774/info Through exploiting a combination of seemingly low-risk vulnerabilities in sendmail, it is possible for a malicious local user to have an arbitrary program inherit or hijack the file descriptor for the socket...
UBUNTU-CVE-2013-1427
The configuration file for the FastCGI PHP support for lighttpd before 1.4.28 on Debian GNU/Linux creates a socket file with a predictable name in /tmp, which allows local users to hijack the PHP control socket and perform unauthorized actions such as forcing the use of a different version of PHP...
Solaris SPARC / x86 Local Socket Hijack Exploit
No description provided by source. / $ An open security advisory 7 - SUN Solaris SOREUSEADDR Local Socket Hijack Bug 1: Bug Researcher: c0ntex - c0ntexbatgmail.com 2: Bug Released: July 06 2005 3: Bug Impact Rate: Medium / Hi 4: Bug Scope Rate: Local / Remote ...
CVE-2006-6476
FRAgent.exe in Mandiant First Response MFR before 1.1.1, when run in daemon mode and when the agent is bound to 0.0.0.0 all interfaces, opens sockets in non-exclusive mode, which allows local users to hijack the socket, and capture data or cause a denial of service loss of daemon operation...
Solaris Socket Hijack
/ $ An open security advisory 7 - SUN Solaris SOREUSEADDR Local Socket Hijack Bug 1: Bug Researcher: c0ntex - c0ntexbatgmail.com 2: Bug Released: July 06 2005 3: Bug Impact Rate: Medium / Hi 4: Bug Scope Rate: Local / Remote $ This advisory and/or proof of concept code must not be used for...
Solaris (SPARCx86) - Local Socket Hijack
Solaris SPARCx86 - Local Socket Hijack / $ An open security advisory 7 - SUN Solaris SOREUSEADDR Local Socket Hijack Bug 1: Bug Researcher: c0ntex - c0ntexbatgmail.com 2: Bug Released: July 06 2005 3: Bug Impact Rate: Medium / Hi 4: Bug Scope Rate: Local / Remote $ This advisory and/or proof of...
CVE-2004-1224
The CVE-2004-1224 entry concerns an off-by-one in the mtr_curses_keyaction function affecting MTR versions 0.55–0.65. This flaw can allow local attackers to hijack raw sockets via the 's' keybinding, leaving a buffer without a NULL terminator. Affected products are multiple CVE trackers (NVD, OSV...
CVE-2004-1224
Off-by-one error in the mtrcurseskeyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NULL terminator...
Eric Allman Sendmail 8.8.x - Socket Hijack
Eric Allman Sendmail 8.8.x - Socket Hijack // source: https://www.securityfocus.com/bid/774/info Through exploiting a combination of seemingly low-risk vulnerabilities in sendmail, it is possible for a malicious local user to have an arbitrary program inherit or "hijack" the file descriptor for t...