16 matches found
Nomachine NX Server privilege escalation
shell code execution via environment variables manipulation for suid application...
GNU C dynamic linker privilege escalation
Invalid $ORIGIN processing allows to load user library into suid application...
Gentoo Linux Portage privilege escalation
Relative shared library search path in suid application...
Mac OS X writeconfig privilege escalation
launchctl utility is executed by relative path from suid application...
Multiple Mac OS X security privilege escalation
Few suid application binaries are user-writable...
Kerio Webstar privilege escalation
Suid application loads library from current directory...
Rocks Clusters privilege escalation
"mount-loop" and "umount-loop" suid application privilege escalation...
Qpopper poppassd shared library privilege escalation
User can specify shared library path for suid application...
GLSA-200509-08 : Python: Heap overflow in the included PCRE library
The remote host is affected by the vulnerability described in GLSA-200509-08 Python: Heap overflow in the included PCRE library The 're' Python module makes use of a private copy of libpcre which is subject to an integer overflow leading to a heap overflow see GLSA 200508-17. Impact : An attacker...
perl PERLIO_DEBUG privilege escalation
By using PERLIODEBUG variable it's possible to redirect debug output of suid application to any file. Oversized PERLIODEBUG causes buffer overflow...
kstars -- exploitable set-user-ID application fliccd
A KDE Security Advisory explains: Overview KStars includes support for the Instrument Neutral Distributed Interface INDI. The build system of this extra 3rd party software contained an installation hook to install fliccd part of INDI as SUID root application. Erik SjΓΆlund discovered that the code...
[UNIX] Suid Application Execution May Give Local Root
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion When was the last time you checked your server's security? How about a monthly report? http://www.AutomatedScanning.com - Know that you're...
ΠΠ΅ΡΠ΅ΠΏΠΎΠ»Π½Π΅Π½ΠΈΠ΅ Π±ΡΡΠ΅ΡΠ° Π² mtr (buffer overflow)
ΠΠ΅ΡΠ΅ΠΏΠΎΠ»Π½Π΅Π½ΠΈΠ΅ Π±ΡΡΠ΅ΡΠ° Π² suid-ΠΏΡΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΈ Π΄Π°Π΅Ρ Π²ΠΎΠ·ΠΌΠΎΠΆΠ½ΠΎΡΡΡ ΠΈΡΠΏΠΎΠ»ΡΠ·ΠΎΠ²Π°Π½ΠΈΡ RAW-ΡΠΎΠΊΠ΅ΡΠ°...
ΠΠ΅ΡΠ΅ΠΏΠΎΠ»Π½Π΅Π½ΠΈΠ΅ Π±ΡΡΠ΅ΡΠ° Π² hanterm (buffer overflow)
ΠΠ΅ΡΠ΅ΠΏΠΎΠ»Π½Π΅Π½ΠΈΠ΅ Π±ΡΡΠ΅ΡΠ° Π² suid-ΠΏΡΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΈ...
ΠΠ΅ΡΠ΅ΠΏΠΎΠ»Π½Π΅Π½ΠΈΠ΅ Π±ΡΡΠ΅ΡΠ° Π² pileup (buffer overflow)
ΠΠ΅ΡΠ΅ΠΏΠΎΠ»Π½Π΅Π½ΠΈΠ΅ Π±ΡΡΠ΅ΡΠ° Π² suid ΠΏΡΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΈ...
ΠΡΠΎΠ±Π»Π΅ΠΌΡ Ρ ΠΎΠ±ΡΠ°Π±ΠΎΡΡΠΈΠΊΠ°ΠΌΠΈ ΡΠΈΠ³Π½Π°Π»ΠΎΠ² Π² FreeBSD (signal handlers)
ΠΡΠΈ Π²ΡΠΏΠΎΠ»Π½Π΅Π½ΠΈΠΈ exec Π½Π΅ Π²ΡΠ΅ ΠΎΠ±ΡΠ°Π±ΠΎΡΡΠΈΠΊΠΈ ΡΠΈΠ³Π½Π°Π»ΠΎΠ² ΠΎΡΠΈΡΠ°ΡΡΡΡ, ΡΡΠΎ ΠΏΠΎΠ·Π²ΠΎΠ»ΡΠ΅Ρ Π²ΡΡΡΠΎΠΈΡΡ ΡΠ²ΠΎΠΉ ΠΊΠΎΠ΄ Π² suid-ΠΏΡΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠ΅...