72 matches found
Debian DSA-462-1 : xitalk - missing privilege release
Steve Kemp from the Debian Security Audit Project discovered a problem in xitalk, a talk intercept utility for the X Window System. A local user can exploit this problem and execute arbitrary commands under the GID utmp. This could be used by an attacker to remove traces from the utmp file...
xitalk privilege escalation
It's possible to obtain utmp group privileges...
DSA-462 xitalk - missing privilege release
Bulletin has no description...
[SECURITY] [DSA 408-1] New screen packages fix group utmp exploit
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 408-1 [email protected] http://www.debian.org/security/ Martin Schulze January 5th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 408-1] New screen packages fix group utmp exploit
-------------------------------------------------------------------------- Debian Security Advisory DSA 408-1 [email protected] http://www.debian.org/security/ Martin Schulze January 5th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 408-1] New screen packages fix group utmp exploit
-------------------------------------------------------------------------- Debian Security Advisory DSA 408-1 [email protected] http://www.debian.org/security/ Martin Schulze January 5th, 2004 http://www.debian.org/security/faq -...
DSA-408 screen - integer overflow
Bulletin has no description...
Переполнение буфера в rxvt, xvt (buffer overflow)
Переполненеи буфера дает egid utmp...
[SECURITY] new version of screen released
Package: screen Vulnerability: local exploit Debian-specific: no A format string bug was recently discovered in screen which can be used to gain elevated privilages if screen is setuid. Debian 2.1 slink did ship screen setuid and the exploit can be used to gain root privilages. In Debian 2.2 pota...
CVE-1999-0120
CVE-1999-0120 concerns Solaris: an improperly writable utmp file (writable by non-root users) enables local privilege escalation to root. The root cause is that the utmp file is writable by non-root users, allowing manipulation that can compromise confidentiality, integrity, and availability. The...
CVE-1999-0120
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root...
CVE-1999-0120
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root...