Youbin 2.53.03.4 - HOME Buffer Overflow

Youbin 2.53.03.4 - HOME Buffer Overflow source: https://www.securityfocus.com/bid/7503/info It has been reported that youbin is vulnerable to a locally exploitable buffer overflow. The problem is said to occur while processing environment variables. Specifically, an internal memory buffer may be...

Youbin 2.5/3.0/3.4 - 'HOME' Buffer Overflow

source: https://www.securityfocus.com/bid/7503/info It has been reported that youbin is vulnerable to a locally exploitable buffer overflow. The problem is said to occur while processing environment variables. Specifically, an internal memory buffer may be overrun while handling a HOME environmen...

CVE-2003-0171

DirectoryServices in MacOS X trusts the PATH environment variable to locate and execute the touch command, which allows local users to execute arbitrary commands by modifying the PATH to point to a directory containing a malicious touch program...

CVE-2002-1469

scponly does not properly verify the path when finding the 1 scp or 2 sftp-server programs, which could allow remote authenticated users to bypass access controls by uploading malicious programs and modifying the PATH variable in $HOME/.ssh/environment to locate those programs...

CVE-2003-0171

DirectoryServices in MacOS X trusts the PATH environment variable to locate and execute the touch command, which allows local users to execute arbitrary commands by modifying the PATH to point to a directory containing a malicious touch program...

CVE-2003-0171

Summary (CVE-2003-0171) : Mac OS X DirectoryService is vulnerable because it uses system(2) to run touch(1) without a full path, allowing a local attacker to alter PATH and execute a malicious touch as root. This can lead to privilege escalation and DoS. The attack is mediated by terminating Dire...

CVE-2002-1414

Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMINTEMPLATEDIR environment variable...

CVE-2002-1506

Buffer overflow in Linuxconf before 1.28r4 allows local users to execute arbitrary code via a long LINUXCONFLANG environment variable, which overflows an error string that is generated...

CVE-2002-0246

Format string vulnerability in the message catalog library functions in UnixWare 7.1.1 allows local users to gain privileges by modifying the LCMESSAGE environment variable to read other message catalogs containing format strings from setuid programs such as vxprint...

CVE-2002-0512

The CVE-2002-0512 entry describes a local privilege escalation in KDE’s startkde (Caldera OpenLinux 2.3–3.1.1). The root cause is that LD_LIBRARY_PATH is set to include the current working directory, allowing a local attacker to influence loaded libraries (Trojan horse libraries) and potentially ...

CVE-1999-1468

CVE-1999-1468 affects rdist in various UNIX systems. The vulnerability arises when rdist uses popen to invoke sendmail, enabling local users to gain root privileges by modifying the IFS (Internal Field Separator) variable. The provided sources confirm the component and the privileged escalation v...

CVE-1999-1490

CVE-1999-1490 affects xosview 1.5.1 in Red Hat 5.1. The issue is a local privilege escalation where an overly long HOME environmental variable enables a non-privileged user to gain root access. The root cause is not expanded in the provided documents beyond the environmental variable manipulation...

CVE-1999-1490

xosview 1.5.1 in Red Hat 5.1 allows local users to gain root access via a long HOME environmental variable...

CVE-2002-1503

Buffer overflow in Automatic File Distributor AFD 1.2.14 and earlier allows local users to gain privileges via a long MONWORKDIR environment variable or -w workdir argument to 1 afd, 2 afdcmd, 3 afdctrl, 4 initafd, 5 mafd, 6 monctrl, 7 showolog, or 8 udc...

HP-UX 1011 - NLSPATH Environment Variable Format String (2)

HP-UX 1011 - NLSPATH Environment Variable Format String 2 // source: https://www.securityfocus.com/bid/8985/info HP-UX allows the NLSPATH to be set for setuid root programs, which use catopen3C and may be executed by other local users. This could result in privilege escalation as an attacker coul...

Sun Solaris dtsession buffer overflow

Heap overflow on HOME environment variable parsing...

HP-UX 10/11 - NLSPATH Environment Variable Format String (1)

// source: https://www.securityfocus.com/bid/8985/info HP-UX allows the NLSPATH to be set for setuid root programs, which use catopen3C and may be executed by other local users. This could result in privilege escalation as an attacker could specify an arbitrary path for a message catalogue, which...

CVE-2002-1503

Buffer overflow in Automatic File Distributor AFD 1.2.14 and earlier allows local users to gain privileges via a long MONWORKDIR environment variable or -w workdir argument to 1 afd, 2 afdcmd, 3 afdctrl, 4 initafd, 5 mafd, 6 monctrl, 7 showolog, or 8 udc...

CVE-2002-1464

CVE-2002-1464 describes a cross-site scripting (XSS) vulnerability in the CafeLog b2 Weblog Tool. The affected component is the CafeLog b2 Weblog Tool, and the root cause is improper handling of user-supplied data in the GPC variable, enabling remote attackers to inject arbitrary HTML or script. ...

CVE-2002-1472

Untrusted search path vulnerability in libX11.so in xfree86, when used in setuid or setgid programs, allows local users to gain root privileges via a modified LDPRELOAD environment variable that points to a malicious module...