Progress multiple bugs

It's possible to read first line from any file with PROSTARTUP variable. Buffer overflow on DLC variable...

CVE-2003-0377

SQL injection vulnerability in the web-based administration interface for iisPROTECT 2.2-r4, and possibly earlier versions, allows remote attackers to insert arbitrary SQL and execute code via certain variables, as demonstrated using the GroupName variable in SiteAdmin.ASP...

Progress Database 9.1 - Environment Variable Privilege Escalation

// source: https://www.securityfocus.com/bid/7916/info It has been reported that Progress database does not properly handle untrusted input when opening shared libraries. Specifically, the dlopen function used by several Progress utilities checks the user's PATH environment variable when includin...

CVE-2003-0382

Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable...

Mandrake Linux 8.2 /usr/mail local exploit (d86mail.pl)

Exploit for linux platform in category local exploits ======================================================= Mandrake Linux 8.2 /usr/mail local exploit d86mail.pl ======================================================= !/usr/bin/perl Mandrake 8.2 /usr/mail local exploit Usage: perl d86mail.pl...

PT-2003-1574 · Port80 · Iisprotect

Name of the Vulnerable Software and Affected Versions: iisPROTECT versions 2.2-r4 and earlier Description: The issue allows remote attackers to insert arbitrary SQL and execute code via certain variables, such as the GroupName variable in the SiteAdmin.ASP page. This can be exploited by attackers...

Zblast 1.2 - Username Local Buffer Overrun

Zblast 1.2 - Username Local Buffer Overrun // source: https://www.securityfocus.com/bid/7836/info A vulnerability has been reported for zblast, an svgalib-based game. The problem occurs when copying data from a user-supplied environment variable into a static memory buffer. By storing excessive...

SPChat 0.8 Module - Remote File Inclusion

SPChat 0.8 Module - Remote File Inclusion source: https://www.securityfocus.com/bid/7780/info SPChat has been reported prone to a remote file include vulnerability. The issue presents itself due to insufficient sanitization performed on the user-supplied URI variable 'statussess' by the SPChat...

CVE-2003-0269

Buffer overflow in youbin allows local users to gain privileges via a long HOME environment variable...

Vignette 4.x/5.0 - Memory Disclosure

source: https://www.securityfocus.com/bid/7684/info Vignette is prone to an issue which may expose the contents of memory to remote attackers. This condition is due to a flaw in how StoryServer calculates the size of certain characters in URI variables, which may cause data from adjacent memory t...

CVE-2003-0337

The ckconfig command in lsadmin for Load Sharing Facility LSF 5.1 allows local users to execute arbitrary programs by modifying the LSFENVDIR environment variable to reference an alternate lsf.conf file, then modifying LSFSERVERDIR to point to a malicious lim program, which lsadmin then executes...

AIX 4.3/5.1 - diagrpt Arbitrary Privileged Program Execution

source: https://www.securityfocus.com/bid/2916/info AIX ships with a diagnostic reporting utility called 'diagrpt'. This utility is installed setuid root by default. When 'diagrpt' executes, it relies on an environment variable to locate another utility which it executes. This utility is executed...

SudBox Boutique 1.2 - 'login.php' Authentication Bypass

source: https://www.securityfocus.com/bid/7651/info A vulnerability has been reported for SudBox Boutique. The problem occurs due to insufficient initialization of variables and may allow an unauthorized user to gain authenticate. Specifically, by making a malicious request to the login.php scrip...

CVE-2003-0281

Buffer overflow in Firebird 1.0.2 and other versions before 1.5, and possibly other products that use the InterBase codebase, allows local users to execute arbitrary code via a long INTERBASE environment variable when calling 1 gdsinetserver, 2 gdslockmgr, or 3 gdsdrop...

PHP-Proxima - 'autohtml.php' Information Disclosure

source: https://www.securityfocus.com/bid/7598/info A vulnerability has been reported for PHP-Proxima. The problem occurs in the autohtml.php script. Specifically, the script fails to verify the contents of a user-supplied variable before including a specified file into an HTML file. As a result,...

CVE-2003-0269

Buffer overflow in youbin allows local users to gain privileges via a long HOME environment variable...

CVE-2003-0269

CVE-2003-0269: Buffer overflow in youbin enables local privilege escalation when a long HOME environment variable is supplied. Described as LOCAL attack, with LOW complexity and no authentication required; impact is complete confidentiality, integrity, and availability. No remediation details are...

ListProc 8.2.9 - Catmail ULISTPROC_UMASK Buffer Overflow

ListProc 8.2.9 - Catmail ULISTPROCUMASK Buffer Overflow source: https://www.securityfocus.com/bid/7533/info ListProc catmail has been reported prone to a buffer overflow vulnerability when handling a ULISTPROCUMASK environment variable of excessive length. The issue is likely due to a lack of...

ListProc 8.2.9 - Catmail ULISTPROC_UMASK Buffer Overflow

source: https://www.securityfocus.com/bid/7533/info ListProc catmail has been reported prone to a buffer overflow vulnerability when handling a ULISTPROCUMASK environment variable of excessive length. The issue is likely due to a lack of sufficient bounds checking performed when copying the...

Buffer overflow in youbin

Buffer overflow on GOME variable processing...