7 matches found
EUVD-2001-0095
Malware in sbrugna...
EUVD-2001-0190
Malware in sbrugna...
wu-ftpd 2.6.0 Remote Format Strings Exploit
No description provided by source. / 12:40 11/10/00: Tool for either attack or defense within an information warfare setting. Rather, it is a small program demonstrating proof of concept. Default values for solaris 2.8 and inetd. If you are not the intended recipient, or a person responsible for...
Two (2) Critical Path inJoin V4.0 Directory Server Issues
Per our policy at http://www.nmrc.org/advise/policy.txt, we are releasing these advisories as these are not high priority and the vendor has a fix that is scheduled to be released soon. In an effort to save bandwidth, both advisories are in this single email. NMRC will see you at DefCon in Las...
CVE-2001-0095
Catman in Solaris 2.7/2.8 creates insecure temporary files with predictable names in world-writable /tmp, enabling local users to perform a symlink attack to overwrite arbitrary files. The root cause is predictable temp-file naming and symlink handling when run as root. Impact is local privilege ...
CVE-2001-0190
Vulnerable component: Solaris cu (cu) in /usr/bin/cu. Root cause: buffer overflow triggered by a long program name (arg0). Impact: local privilege escalation on Solaris 2.8 and earlier (and potentially other OSes as per CVE). Remediation: apply Solaris Update for cu 111071-01 (cu update) or equiv...
CVE-2001-0095
catman in Solaris 2.7 and 2.8 allows local users to overwrite arbitrary files via a symlink attack on the smanPID temporary file...