Linksys BEFSX41 System Log Viewer Log_Page_Num Variable Overflow DoS

The remote host seems to be a Linksys EtherFast Cable Firewall/Router. This product is vulnerable to a remote denial of service attack : if logging is enabled, an attacker can specify a long URL which results in the router becoming unresponsive. %NASLMINLEVEL 70300 Linksys EtherFast Cable/DSL...

HP-UX dtprintinfo buffer overflow

Buffer overflow on oversized DISPLAY variable...

HP-UX 11 CDE DTPrintInfo - Display Environment Variable Buffer Overflow

source: https://www.securityfocus.com/bid/8795/info It has been reported that dtprintinfo, installed setuid root by default, is susceptible to a locally exploitable buffer overflow vulnerability. The condition is triggered when the value of the DISPLAY environment variable is set to a string...

DEBIAN-CVE-2003-1053

Multiple buffer overflows in XShisen allow attackers to execute arbitrary code via a long 1 -KCONV command line option or 2 XSHISENLIB environment variable...

CVE-2003-1053

Multiple buffer overflows in XShisen allow attackers to execute arbitrary code via a long 1 -KCONV command line option or 2 XSHISENLIB environment variable...

CVE-2003-0830

Buffer overflow in marbles 1.0.2 and earlier allows local users to gain privileges via a long HOME environment variable...

Freesweep buffer overflow

Buffer overflow during HOME variable parsing...

DSA-390 marbles - buffer overflow

Bulletin has no description...

CVE-2003-0742

SCO Internet Manager mana allows local users to execute arbitrary programs by setting the REMOTEADDR environment variable to cause menu.mana to run as if it were called from ncsahttpd, then modifying the PATH environment variable to point to a malicious "hostname" program...

PT-2003-1835 · Sco · Sco Internet Manager

Name of the Vulnerable Software and Affected Versions: SCO Internet Manager mana affected versions not specified Description: The issue allows local users to execute arbitrary programs. This is achieved by setting the REMOTE ADDR environment variable to make menu.mana run as if it were called fro...

CVE-2003-0704

KisMAC before 0.05d trusts user-supplied variables when chown'ing files or directories, which allows local users to gain privileges via the $DRIVERKEXT environment variable in 1 vihadriver.sh, 2 macjackload.sh, 3 airojackload.sh, 4 setuidenable.sh, 5 setuiddisable.sh, and using a "similar...

Liquid War 5.4.55.5.6 - HOME Environment Variable Buffer Overflow

Liquid War 5.4.55.5.6 - HOME Environment Variable Buffer Overflow // source: https://www.securityfocus.com/bid/8629/info Liquid War has been reported prone to a buffer overflow condition when handling HOME environment variables of excessive length. The issue presents itself, due to a lack of...

Liquid War 5.4.5/5.5.6 - HOME Environment Variable Buffer Overflow

// source: https://www.securityfocus.com/bid/8629/info Liquid War has been reported prone to a buffer overflow condition when handling HOME environment variables of excessive length. The issue presents itself, due to a lack of sufficient boundary checks performed on data contained in the HOME...

OpenServer 5.0.7 OpenServer 5.0.6 OpenServer 5.0.5 : SCO Internet Manager - local users can gain root level privileges.

To: [email protected] [email protected] [email protected] -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SCO Security Advisory Subject: OpenServer 5.0.7 OpenServer 5.0.6 OpenServer 5.0.5 : SCO Internet Manager - local users can gain root level privileges. Advisory...

SCO OpenServer 5.0.x - 'mana' 'REMOTE_ADDR' Authentication Bypass

!/bin/sh source: https://www.securityfocus.com/bid/8616/info It has been reported that SCO OpenServer Internet Manager 'mana' process is prone to an authentication bypass issue. The issue is reported to occur as a local user is able to export the REMOTEADDR environment variable and set its value ...

SRT2003-09-11-1200 - setgid man MANPL overflow

The full version of this advisory can be found at. http://www.secnetops.com/research/advisories/SRT2003-09-11-1200.txt Quick Summary: Advisory Number : SRT2003-09-11-1200 Product : Andries Brouwer man Version : Version =1.5m1 Vendor : ftp://ftp.win.tue.nl/pub/linux-local/utils/man Class : Local...

Buffer overflow in man

Buffer overflow on -S key, MANPL variable...

ZH2003-26SA (security advisory): TSguestbook Ver. 2.1 Cross-Site Scripting Vulnerability

ZH2003-26SA security advisory: TSguestbook Ver. 2.1 Cross-Site Scripting Vulnerability Published: 31/08/2003 Released: 31/08/2003 Name: TSguestbook http://www.tsinter.net Affected Systems: All versions Issue: Remote attackers can insect XSS script Author: Trash-80 - [email protected]...

CVE-2003-0609

Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long LDPRELOAD environment variable...

newsPHP 216 - Remote File Inclusion

source: https://www.securityfocus.com/bid/8488/info A file include vulnerability has been reported in the nphpd.php module of newsPHP that may permit an attacker to include and execute malicious script code on a vulnerable host. The issue is reported to exist in the LangFile variable of nphpd.php...