3 matches found
IBM Lotus Domino多个TuneKrnl本地权限提升漏洞
Lotus Domino/Notes服务器是一款基于WEB协同工作的应用程序架构,运行在Linux/Unix和Microsoft Windows操作系统平台下。 Lotus Domino的tunekrnl在处理数据拷贝时存在缓冲区溢出漏洞,本地攻击者可能利用此漏洞提升权限。 tunekrnl二进制程序用于设置Linux/proc sysctl,允许Domino增加正在运行内核的资源限制。这个二进制程序默认将所有者设置为root,并将set-user-id位设置为on。由于在进行拷贝时没有正确的验证输入的长度,本地攻击者可能触发缓冲区溢出,获得root权限提升。 IBM Lotus...
Lotus Domino tunekrnl utility buffer overflow
Multiple buffer overflows in suid utility...
[Full-disclosure] iDefense Security Advisory 11.08.06: IBM Lotus Domino 7 tunekrnl Multiple Vulnerabilities
IBM Lotus Domino 7 tunekrnl Multiple Vulnerabilities iDefense Security Advisory 11.08.06 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 08, 2006 I. BACKGROUND IBM Lotus Domino is a software suite designed to facilitate collaboration between co-workers. More information can be found at...