4 matches found
EUVD-2007-0468
Malware in sbrugna...
Arbitrary Code Execution
hylafaxplus is vulnerable to arbitrary code execution. The vulnerability exists as HylaFAX+ through 7.0.2 and HylaFAX Enterprise have scripts that execute binaries from directories writable by unprivileged users e.g., locations under /var/spool/hylafax that are writable by the uucp account. This...
Code injection
Multiple unspecified vulnerabilities in tip in Sun Solaris 8, 9, and 10 allow local users to gain uucp account privileges via unspecified vectors...
CVE-2007-0470
CVE-2007-0470 references multiple unknown vulnerabilities in the SunOS tip utility on Solaris 8/9/10 that enable local privilege escalation to the uucp account. The CVE is addressed by Sun patch 124998-01 for Solaris 10 x86 and 124997-01 for Solaris 10 SPARC, and related advisories note installin...