132 matches found
DameWare Mini Remote Control Server - System
/ DameWare Mini Remote Control Server Local SYSTEM Exploit Vulnerable Versions Prior to 3.71.0.0 by [email protected] This code is based on shards.cpp by xenophile / define WIN32LEANANDMEAN include include pragma warningdisable: 4305 pragma warningdisable: 4309 void MakeShellCode char buffer...
CVE-2002-1139
The Compressed Folders feature in Microsoft Windows 98 with Plus! Pack, Windows Me, and Windows XP does not properly check the destination folder during the decompression of ZIP files, which allows attackers to place an executable file in a known location on a user's system, aka "Incorrect Target...
Security Advisory FreeBSD-SA-02:37.kqueue
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:37.kqueue Security Advisory The FreeBSD Project Topic: local users can panic the system using the kqueue mechanism Category: core Module: kqueue Announced: 2002-08-05...
Mandrake 7/8/9 / RedHat 6.x/7 Bonobo EFSTool - Commandline Argument Buffer Overflow (3)
// source: https://www.securityfocus.com/bid/5125/info Bonobo is a set of tools and CORBA interfaces included as part of the Gnome infrastructure. It is designed for use on the Linux and Unix operating systems. A boundry condition error has been discovered in the efstool program. Due to improper...
OS400 - User Account Name Disclosure
OS400 - User Account Name Disclosure source: https://www.securityfocus.com/bid/4059/info AS/400 is a midrange computer platform developed by IBM. It is designed to be highly reliable and efficient, and uses the OS/400 operating system. An information disclosure vulnerability has been reported to...
Bajie 0.78 - Arbitrary Shell Command Execution
Bajie 0.78 - Arbitrary Shell Command Execution source: https://www.securityfocus.com/bid/2389/info Requesting a specailly crafted URL containg arbitrary code, can be exected on a Unix system running Bajie Webserver. Any arbitrary commands appended to a malicious URL after the ';' will be executed...
Elm 2.5.3 - Alternative-Folder Buffer Overflow
// source: https://www.securityfocus.com/bid/2403/info There is a buffer overflow in elm 2.5 PL3. This overflow is accessible by passing a long string to the -f Alternative-Folder command-line option. This vulnerability may not be restricted to this version of elm. / ------------- elm253-exploit....
SGI IRIX 6.5.4 - midikeys Root
SGI IRIX 6.5.4 - midikeys Root source: https://www.securityfocus.com/bid/262/info The setuid root "midikeys" executable can be used to edit arbitrary files via its graphical user interface. This grants malicious users root access to the system. Running the midikeys application, clicking in sounds...
Debian suidmanager 0.18 - Command Execution
Debian suidmanager 0.18 - Command Execution source: https://www.securityfocus.com/bid/94/info /usr/bin/suidexec will execute arbitrary commands as root, as soon as just one suid root shell script can be found on the system: Just invoke /usr/bin/suidexec /path/to/script - it will happily execute...
FreeBSD-SA-96:15.ppp
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-96:15 Security Advisory FreeBSD, Inc. Topic: security compromise from ppp Category: core Module: ppp Announced: 1996-07-04 Affects: FreeBSD 2.0.5, 2.1, 2.1-stable, and...
Immunity Canvas: REXD
Name| rexd ---|--- CVE| CVE-1999-0627 Exploit Pack| CANVAS Description| rexd Notes| CVE Name: CVE-1999-0627 Notes: Rexd doesn't do any authentication. This is a known problem VENDOR: Unix CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0627 CVSS: 0.0...
CVE-2011-3470
...