1630 matches found
FreeBSD-SA-02:17.mod_frontpage
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:17 Security Advisory FreeBSD, Inc. Topic: modfrontpage port contains exploitable buffer overflow Category: ports Module: modfrontpage Announced: 2002-03-12 Credits: Marti...
FreeBSD-SA-02:13.openssh
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:13 Security Advisory FreeBSD, Inc. Topic: OpenSSH contains exploitable off-by-one bug Category: core, ports Module: openssh, portsopenssh, openssh-portable Announced:...
Hewlett Packard AdvanceStack Switch Managment Authentication Bypass Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hewlett Packard AdvanceStack Switch Managment Authentication Bypass Vulnerability Type: Access Validation Error Release Date: February 8, 2002 Product / Vendor: HP AdvanceStack 10Base-T Switching Hubs combine economical 10Base-T functionality with the...
Символьные линки в wmtv (symbolic link)
При записи файла конфигурации не сбрасываются права суперпользователя и не проверяются символьные линки...
Inproper input validation in Bugzilla <=2.14 - exploit
Since advisory and patched version is already released, here goes description of vulnerabilities I discovered in Bugzilla almost year ago. 1. Creating files on remote server. ----------------------------------- Nothing spectacular, but this vulnerability may allow us easily at least when using...
Buffer overflow vulnerability in pwck command line utility
Overview The CERT/CC has received a public report of a local buffer overflow vulnerability in the pwck utility. Description The pwck utility performs syntax checking of /etc/password and /etc/shadow password information files. This utility contains a buffer overflow vulnerability in the section o...
Buffer overflow vulnerability in grpck command line utility
Overview The CERT/CC has received a public report of a local buffer overflow vulnerability in the grpck utility. Description The grpck utility performs syntax checking of /etc/group and /etc/gshadow group information files. This utility contains a buffer overflow vulnerability in the section of...
FreeBSD-SA-01:60.procmail
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:60 Security Advisory FreeBSD, Inc. Topic: Multiple vulnerabilities in procmail signal handling Category: ports Module: procmail Announced: 2001-09-24 Credits: Philip A...
Проблемы в libutlis/OpenSSH/login (unauthorized access)
При входе клиента не сбрасываются права суперюзера при просмотре параметров задаваемых в пользовательском .loginconf, что позволяет прочитать любой системный файл...
Local vulnerability in libutil derived with FreeBSD 4.4-RC (and earlier)
Hello, OpenSSH derived with FreeBSD 4.4 and earlier doesn't drop privileges before messing with login class capability database. The most problematic is: if newcommand == NULL && !quietlogin && !options.uselogin fname = logingetcapstrlc, "copyright", NULL, NULL; if fname != NULL && f = fopenfname...
Solaris 2.x7.08 LPD - Remote Command Execution
Solaris 2.x7.08 LPD - Remote Command Execution source: https://www.securityfocus.com/bid/3274/info The print protocol daemon, 'in.lpd' or 'lpd', shipped with Solaris may allow for remote attackers to execute arbitrary commands on target hosts with superuser privileges. The alleged vulnerability i...
Solaris 2.x/7.0/8 LPD - Remote Command Execution
source: https://www.securityfocus.com/bid/3274/info The print protocol daemon, 'in.lpd' or 'lpd', shipped with Solaris may allow for remote attackers to execute arbitrary commands on target hosts with superuser privileges. The alleged vulnerability is not the buffer overflow discovered by ISS. It...
ISSalert: ISS Advisory: Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon
Internet Security Systems Security Advisory August 29, 2001 Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon Synopsis: Internet Security Systems ISS X-Force has discovered a vulnerability in several BSD implementations. A buffer overflow vulnerability exists in the BSD Unix line...
ISSalert: ISS Advisory: Remote Buffer Overflow Vulnerability in HP-UX Line Printer Daemon
TO UNSUBSCRIBE: email "unsubscribe alert" in the body of your message to [email protected] Contact [email protected] for help with any problems! --------------------------------------------------------------------------- -----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Security...
Critical: Red Hat Security Advisory: : Updated Kerberos 5 packages now available
Updated Kerberos 5 packages are now available for Red Hat Linux 6.2, 7, and 7.1. These updates close vulnerabilities due to potential buffer overflows in the Kerberos-aware telnet server included in the krb5-workstation package. By exploiting buffer overflows in the telnet server included in the...
Security Advisory 2001-009: Race condition between sugid-exec and ptrace(2)
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2001-009 ================================= Topic: Race condition between sugid-exec and ptrace2 Version: All official releases up to and including 1.5 Severity: Local user may gain superuser privileges Fixed: NetBSD-current: June 15, 200...
eXtremail 1.x2.1 - Remote Format String (1)
eXtremail 1.x2.1 - Remote Format String 1 // source: https://www.securityfocus.com/bid/2908/info eXtremail is a freeware SMTP server available for Linux and AIX. eXtremail contains a format-string vulnerability in its logging mechanism. Attackers can send SMTP commands argumented with maliciously...
eXtremail 1.x/2.1 - Remote Format String (1)
// source: https://www.securityfocus.com/bid/2908/info eXtremail is a freeware SMTP server available for Linux and AIX. eXtremail contains a format-string vulnerability in its logging mechanism. Attackers can send SMTP commands argumented with maliciously constructed arguments that will exploit...
SGI Performance Co-Pilot 2.1.x2.2 - pmpost Symbolic Link
SGI Performance Co-Pilot 2.1.x2.2 - pmpost Symbolic Link // source: https://www.securityfocus.com/bid/2887/info Performance Co-Pilot PCP is a set of services to support system-level performance monitoring developed by SGI. It has traditionally been an IRIX product, however SGI has made it open...
OpenServer 5.0.55.0.6 HP-UX 1011 Solaris 2.67.08 - rpc.yppasswdd Buffer Overrun
OpenServer 5.0.55.0.6 HP-UX 1011 Solaris 2.67.08 - rpc.yppasswdd Buffer Overrun source: https://www.securityfocus.com/bid/2763/info The rpc.yppasswdd server is used to handle password change requests from yppasswd and modify the NIS password file. A buffer overrun vulnerability has been discovere...