Lucene search
K

1630 matches found

FreeBSD Advisory
FreeBSD Advisory
added 2002/03/12 12:0 a.m.6 views

FreeBSD-SA-02:17.mod_frontpage

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:17 Security Advisory FreeBSD, Inc. Topic: modfrontpage port contains exploitable buffer overflow Category: ports Module: modfrontpage Announced: 2002-03-12 Credits: Marti...

6AI score
Exploits0
FreeBSD Advisory
FreeBSD Advisory
added 2002/03/07 12:0 a.m.19 views

FreeBSD-SA-02:13.openssh

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:13 Security Advisory FreeBSD, Inc. Topic: OpenSSH contains exploitable off-by-one bug Category: core, ports Module: openssh, portsopenssh, openssh-portable Announced:...

10CVSS7.5AI score0.14804EPSS
Exploits0
securityvulns
securityvulns
added 2002/02/12 12:0 a.m.31 views

Hewlett Packard AdvanceStack Switch Managment Authentication Bypass Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hewlett Packard AdvanceStack Switch Managment Authentication Bypass Vulnerability Type: Access Validation Error Release Date: February 8, 2002 Product / Vendor: HP AdvanceStack 10Base-T Switching Hubs combine economical 10Base-T functionality with the...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2002/02/08 12:0 a.m.43 views

Символьные линки в wmtv (symbolic link)

При записи файла конфигурации не сбрасываются права суперпользователя и не проверяются символьные линки...

0.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2002/01/08 12:0 a.m.47 views

Inproper input validation in Bugzilla <=2.14 - exploit

Since advisory and patched version is already released, here goes description of vulnerabilities I discovered in Bugzilla almost year ago. 1. Creating files on remote server. ----------------------------------- Nothing spectacular, but this vulnerability may allow us easily at least when using...

8.3AI score
Exploits0
CERT
CERT
added 2002/01/04 12:0 a.m.17 views

Buffer overflow vulnerability in pwck command line utility

Overview The CERT/CC has received a public report of a local buffer overflow vulnerability in the pwck utility. Description The pwck utility performs syntax checking of /etc/password and /etc/shadow password information files. This utility contains a buffer overflow vulnerability in the section o...

8AI score
Exploits0References3
CERT
CERT
added 2002/01/04 12:0 a.m.21 views

Buffer overflow vulnerability in grpck command line utility

Overview The CERT/CC has received a public report of a local buffer overflow vulnerability in the grpck utility. Description The grpck utility performs syntax checking of /etc/group and /etc/gshadow group information files. This utility contains a buffer overflow vulnerability in the section of...

7.9AI score
Exploits0References3
FreeBSD Advisory
FreeBSD Advisory
added 2001/09/24 12:0 a.m.5 views

FreeBSD-SA-01:60.procmail

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:60 Security Advisory FreeBSD, Inc. Topic: Multiple vulnerabilities in procmail signal handling Category: ports Module: procmail Announced: 2001-09-24 Credits: Philip A...

5.8AI score
Exploits0
securityvulns
securityvulns
added 2001/09/21 12:0 a.m.50 views

Проблемы в libutlis/OpenSSH/login (unauthorized access)

При входе клиента не сбрасываются права суперюзера при просмотре параметров задаваемых в пользовательском .loginconf, что позволяет прочитать любой системный файл...

1.1AI score
Exploits0References1
securityvulns
securityvulns
added 2001/09/21 12:0 a.m.44 views

Local vulnerability in libutil derived with FreeBSD 4.4-RC (and earlier)

Hello, OpenSSH derived with FreeBSD 4.4 and earlier doesn't drop privileges before messing with login class capability database. The most problematic is: if newcommand == NULL && !quietlogin && !options.uselogin fname = logingetcapstrlc, "copyright", NULL, NULL; if fname != NULL && f = fopenfname...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2001/08/31 12:0 a.m.11 views

Solaris 2.x7.08 LPD - Remote Command Execution

Solaris 2.x7.08 LPD - Remote Command Execution source: https://www.securityfocus.com/bid/3274/info The print protocol daemon, 'in.lpd' or 'lpd', shipped with Solaris may allow for remote attackers to execute arbitrary commands on target hosts with superuser privileges. The alleged vulnerability i...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2001/08/31 12:0 a.m.26 views

Solaris 2.x/7.0/8 LPD - Remote Command Execution

source: https://www.securityfocus.com/bid/3274/info The print protocol daemon, 'in.lpd' or 'lpd', shipped with Solaris may allow for remote attackers to execute arbitrary commands on target hosts with superuser privileges. The alleged vulnerability is not the buffer overflow discovered by ISS. It...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/08/30 12:0 a.m.55 views

ISSalert: ISS Advisory: Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon

Internet Security Systems Security Advisory August 29, 2001 Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon Synopsis: Internet Security Systems ISS X-Force has discovered a vulnerability in several BSD implementations. A buffer overflow vulnerability exists in the BSD Unix line...

7.5CVSS0.4AI score0.06607EPSS
Exploits0
securityvulns
securityvulns
added 2001/08/28 12:0 a.m.42 views

ISSalert: ISS Advisory: Remote Buffer Overflow Vulnerability in HP-UX Line Printer Daemon

TO UNSUBSCRIBE: email "unsubscribe alert" in the body of your message to [email protected] Contact [email protected] for help with any problems! --------------------------------------------------------------------------- -----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Security...

7.5CVSS0.1AI score0.05501EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2001/08/09 9:38 p.m.4 views

Critical: Red Hat Security Advisory: : Updated Kerberos 5 packages now available

Updated Kerberos 5 packages are now available for Red Hat Linux 6.2, 7, and 7.1. These updates close vulnerabilities due to potential buffer overflows in the Kerberos-aware telnet server included in the krb5-workstation package. By exploiting buffer overflows in the telnet server included in the...

10CVSS6AI score0.37896EPSS
Exploits2References4
securityvulns
securityvulns
added 2001/07/24 12:0 a.m.100 views

Security Advisory 2001-009: Race condition between sugid-exec and ptrace(2)

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2001-009 ================================= Topic: Race condition between sugid-exec and ptrace2 Version: All official releases up to and including 1.5 Severity: Local user may gain superuser privileges Fixed: NetBSD-current: June 15, 200...

7.7AI score
Exploits0
exploitpack
exploitpack
added 2001/06/21 12:0 a.m.23 views

eXtremail 1.x2.1 - Remote Format String (1)

eXtremail 1.x2.1 - Remote Format String 1 // source: https://www.securityfocus.com/bid/2908/info eXtremail is a freeware SMTP server available for Linux and AIX. eXtremail contains a format-string vulnerability in its logging mechanism. Attackers can send SMTP commands argumented with maliciously...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2001/06/21 12:0 a.m.36 views

eXtremail 1.x/2.1 - Remote Format String (1)

// source: https://www.securityfocus.com/bid/2908/info eXtremail is a freeware SMTP server available for Linux and AIX. eXtremail contains a format-string vulnerability in its logging mechanism. Attackers can send SMTP commands argumented with maliciously constructed arguments that will exploit...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2001/06/18 12:0 a.m.17 views

SGI Performance Co-Pilot 2.1.x2.2 - pmpost Symbolic Link

SGI Performance Co-Pilot 2.1.x2.2 - pmpost Symbolic Link // source: https://www.securityfocus.com/bid/2887/info Performance Co-Pilot PCP is a set of services to support system-level performance monitoring developed by SGI. It has traditionally been an IRIX product, however SGI has made it open...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2001/05/10 12:0 a.m.16 views

OpenServer 5.0.55.0.6 HP-UX 1011 Solaris 2.67.08 - rpc.yppasswdd Buffer Overrun

OpenServer 5.0.55.0.6 HP-UX 1011 Solaris 2.67.08 - rpc.yppasswdd Buffer Overrun source: https://www.securityfocus.com/bid/2763/info The rpc.yppasswdd server is used to handle password change requests from yppasswd and modify the NIS password file. A buffer overrun vulnerability has been discovere...

0.6AI score
Exploits0
Rows per page
Query Builder