CVE-1999-0786

The dynamic linker in Solaris allows a local user to create arbitrary files via the LDPROFILE environmental variable and a symlink attack...

dtsession_vuln.txt

Subject: Vulnerability in dtsession To: [email protected] Hello, I discovered the following security problem in dtsession actually in libtt.so, part of CDE: Description ----------- The session manager dtsession contains an overflow vulnerability when parsing the environment variable...

CVE-1999-0767

Buffer overflow in Solaris libc, ufsrestore, and rcp via LCMESSAGES environmental variable...

PT-1999-1338 · Oracle · Solaris

Name of the Vulnerable Software and Affected Versions: Solaris affected versions not specified Description: The issue is related to a buffer overflow in Solaris libc, ufsrestore, and rcp, which can be triggered via the LC MESSAGES environmental variable. Recommendations: At the moment, there is n...

RedHat Linux 4.25.26.0 S.u.S.E Linux 6.06.1 - Cron Buffer Overflow (1)

RedHat Linux 4.25.26.0 S.u.S.E Linux 6.06.1 - Cron Buffer Overflow 1 // source: https://www.securityfocus.com/bid/602/info The version of Vixie cron that ships with RedHat versions 4.2, 5.2 and 6.0 is vulnerable to a local buffer overflow attack. By utilizing the MAILTO environment variable, a...

CVE-1999-0769

Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable...

CVE-1999-0872

Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file...

RedHat Linux 4.25.26.0 S.u.S.E Linux 6.06.1 - Cron Buffer Overflow (2)

RedHat Linux 4.25.26.0 S.u.S.E Linux 6.06.1 - Cron Buffer Overflow 2 // source: https://www.securityfocus.com/bid/602/info The version of Vixie cron that ships with RedHat versions 4.2, 5.2 and 6.0 is vulnerable to a local buffer overflow attack. By utilizing the MAILTO environment variable, a...

Caldera OpenLinux 2.2 Debian 2.12.2 RedHat 6.0 - Vixie Cron MAILTO Sendmail

Caldera OpenLinux 2.2 Debian 2.12.2 RedHat 6.0 - Vixie Cron MAILTO Sendmail Caldera OpenLinux 2.2 ,Debian Linux 2.1/2.2,RedHat Linux = 6.0 Vixie Cron MAILTO Sendmail Vulnerability source: https://www.securityfocus.com/bid/611/info Failure by the vixie cron daemon from validating the contents of a...

CVE-1999-0740

Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable...

dtap2.txt

http://www.rootshell.com/ From [email protected] Mon Nov 2 08:12:39 1998 Date: Mon, 2 Nov 1998 18:05:59 +0100 MET From: Andrea Costantino To: [email protected], [email protected] Subject: another /usr/dt/bin/dtappgather feature! There's attached the message related to this new feature...

solaris-mkcookie.txt

RSI.0012.12-03-98.SOLARIS.MKCOOKIE |:::. |::::: |::::. |::::: |::::: |::::. .. :: .. .. :: .. .. .. :: |:::: |:::: |:::: :::::: |::::: |:::: |: |: :: |: |: |:: |: |: :: |: :: |::::: |: |::::: |::::: |::::: Repent Security Incorporated, RSI http://www.repsec.com RSI ALERT ADVISORY --- CREDIT...

tcsh.6.07.bof.txt

Date: Mon, 17 May 1999 09:53:19 +0200 From: arkth To: [email protected] Subject: tcsh overflow While few days ago there was discussion about bash overflow on bugtraq i found another overflow in tcsh-6.07.09-1 rh 5.2 . The problem is in too long $HOME evironment variable very old thing - zgv...

asp-server-var.passwds.txt

Date: Wed, 12 Aug 1998 19:26:27 +0800 From: VINCENT LOK Subject: obtain domain users password via asp server variable Dear all, Just noticed that with basic authentication on IIS, one can obtain password of users accessing the ASP page via the server variable AUTHPASSWORD. The line in an asp file...

CVE-1999-0888

dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLEHOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script...

Oracle 8 8.1.5 - Intelligent Agent (2)

// source: https://www.securityfocus.com/bid/585/info A vulnerability in the Oracle Intelligent Agent allows local malicious users to execute arbitrary commands and to create world writable files as the root user. The problem lies in the dbsnmp program located in $ORACLEHOME/bin . This setuid roo...

Oracle 8 8.1.5 - Intelligent Agent (1)

Oracle 8 8.1.5 - Intelligent Agent 1 source: https://www.securityfocus.com/bid/585/info A vulnerability in the Oracle Intelligent Agent allows local malicious users to execute arbitrary commands and to create world writable files as the root user. The problem lies in the dbsnmp program located in...

Oracle 8 8.1.5 - Intelligent Agent (1)

source: https://www.securityfocus.com/bid/585/info A vulnerability in the Oracle Intelligent Agent allows local malicious users to execute arbitrary commands and to create world writable files as the root user. The problem lies in the dbsnmp program located in $ORACLEHOME/bin . This setuid root a...

Oracle 8 8.1.5 - Intelligent Agent (2)

Oracle 8 8.1.5 - Intelligent Agent 2 // source: https://www.securityfocus.com/bid/585/info A vulnerability in the Oracle Intelligent Agent allows local malicious users to execute arbitrary commands and to create world writable files as the root user. The problem lies in the dbsnmp program located...

CVE-1999-0690

HP CDE program includes the current directory in root's PATH variable...