4 matches found
CVE-2024-22116
An administrator with restricted permissions can exploit the script execution functionality within the Monitoring Hosts section. The lack of default escaping for script parameters enabled this user ability to execute arbitrary code via the Ping script, thereby compromising infrastructure...
CVE-2006-0151
sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158...
Microsoft Active Directory security vulnerability
A few weeks ago, I was developing a script to be run on UNIX that would query a Microsoft Active Directory server via LDAP. I authenticated to the Windows 2000 Realm using Kerberos V for information on Kerberos interoperability see...
script.command.txt
------------------------------------------------------------- Title: Silly hardlink vulnerability in UNIX 'script' command Linux version maintainer: Andries Brouwer [email protected] Bug found by: Marco van Berkum [email protected] Date: 17-12-2001 Priority: low...