Ensure That the su Command Is Restricted

The su command enables a common user to have the permissions of the superuser or other users. It is often used for switching the user from a common user to the root user. The su command provides a convenient way for users to change their identities. However, if the su command is run without...

HP-UX PHCO_29329 : HP-UX NLSPath, Local Increase in Privilege (HPSBUX00294 SSRT3656 rev.2)

s700800 11.22 libc cumulative patch : Superuser cannot restrict the paths set in the NLSPATH environment variable for setuid root programs which are using catopen3C and executed by others. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin we...

[USN-71-1] PostgreSQL vulnerability

=========================================================== Ubuntu Security Notice USN-71-1 February 01, 2005 postgresql vulnerability http://archives.postgresql.org/pgsql-bugs/2005-01/msg00269.php =========================================================== A security issue affects the following...

USN-71-1: PostgreSQL vulnerability

John Heasman discovered a local privilege escalation in the PostgreSQL server. Any user could use the LOAD extension to load any shared library into the PostgreSQL server; the library's initialisation function was then executed with the permissions of the server. Now the use of LOAD is restricted...