2856 matches found
CVE-1999-0694
Technical details about CVE-1999-0694 are not publicly available in the provided documents. Monitor for updates.
CVE-1999-0674
CVE-1999-0674 affects the BSD profiling system call. A local user can modify the internal data space of a program via profiling and execve, with potential impact on confidentiality, integrity, and availability as noted in the sources. No remediation steps or concrete exploit details are provided ...
CVE-1999-0674
The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve...
2.2.12.execve.txt
From: [email protected] Subject: execve bug linux-2.2.12 While doing some debugging, I discovered a really nasty stack smash bug in linux-2.2.12. The I haven't checked previous versions of the 2.2 kernel but bug appears to be fixed in linux-2.2.13pre17. If I am reading this correctly, the...
SuSE_root_exploit.txt
nlservd/rnavc local root exploit for Linux x86 tested on SuSE 6.2 exploits Arkiea's Knox backup package. gcc -o knox knox.c ./knox NOTE: you MUST have void mainsetuidgeteuid; system"/bin/bash"; compiled in /tmp/ui for this to work. To exploit rnavc, simply change the execl call to...
linux_stealth_module.txt
Subject: yet another article about stealth modules in linux. To: [email protected] abtrom: anti btrom .................. Preface: ........ I've seen many stealth modules for Linux. New ways of of hiding the modules are found, so the 'lsmod' cant find them, etc, etc. But the problem is tha...
NetBSD 1.4 OpenBSD 2.5 Solaris 7.0 - profil(2) Modify The Internal Data Space
NetBSD 1.4 OpenBSD 2.5 Solaris 7.0 - profil2 Modify The Internal Data Space / source: https://www.securityfocus.com/bid/570/info Some BSD's use a profil2 system call that dates back to "version 6" unix. This system call arranges for the kernel to sample the PC and increment an element of an array...
NetBSD 1.4 / OpenBSD 2.5 / Solaris 7.0 - 'profil(2)' Modify The Internal Data Space
/ source: https://www.securityfocus.com/bid/570/info Some BSD's use a profil2 system call that dates back to "version 6" unix. This system call arranges for the kernel to sample the PC and increment an element of an array on every profile clock tick. The security issue stems from the fact that...
HP-UX 10.x/11.x - Aserver PATH
source: https://www.securityfocus.com/bid/1929/info Aserver is a server program that ships with HP-UX versions 10.x and above that is used to interface client applications with the audio hardware. Because it talks to hardware, it is installed setuid root by default. During normal execution, Aserv...
HP HP-UX 10.20 IBM AIX 4.1.5 - connect() Denial of Service
HP HP-UX 10.20 IBM AIX 4.1.5 - connect Denial of Service source: https://www.securityfocus.com/bid/352/info Certain versions of AIX and HP/UX contained a bug in the way the OS handled the connect system call. The connect call is used to initiate a connection on a socket. Because of the flaw in th...
HP HP-UX 10.20 / IBM AIX 4.1.5 - 'connect()' Denial of Service
source: https://www.securityfocus.com/bid/352/info Certain versions of AIX and HP/UX contained a bug in the way the OS handled the connect system call. The connect call is used to initiate a connection on a socket. Because of the flaw in the handling code under AIX certain versions will reboot wh...
IRIX 6.2/6.3/6.4 - xfs truncate() Privilege Check
/ source: https://www.securityfocus.com/bid/1540/info The truncate system call on a number of versions of the IRIX operating system with the xfs file system does not properly check permissions before truncating a file, making it possible for unprivileged users to damage files to which they would...
SGI IRIX 6.4 - 'netprint' Local Privilege Escalation
source: https://www.securityfocus.com/bid/395/info A vulnerability exists in the netprint program, shipping with Irix 6.x and 5.x by Silicon Graphics. The netprint program calls the "disable" command via a system call, without specifying an explicit path. Therefore, any program in the path named...
SGI IRIX 6.4 - netprint Local Privilege Escalation
SGI IRIX 6.4 - netprint Local Privilege Escalation source: https://www.securityfocus.com/bid/395/info A vulnerability exists in the netprint program, shipping with Irix 6.x and 5.x by Silicon Graphics. The netprint program calls the "disable" command via a system call, without specifying an...
PT-2010-5689 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: SUSE Linux Enterprise affected versions not specified kernel-vmipae-debuginfo affected versions not specified kernel-kdumppae-debuginfo affected versions not specified Linux kernel versions prior to 2.6.36-rc4-next-20100915 Description: The...
PT-2004-3722 · Linux · Kernel-Image-2.4.19-Sun4U +7
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.4.26 Linux kernel versions prior to 2.6.6 aa-sources versions prior to 2.4.23-r2 kernel-image-2.4.18-powerpc-xfs version kernel-image-2.4.18-sun4u version kernel-image-2.4.18-sun4u-smp version...