Solaris 7/8/9 CDE libDtHelp - Buffer Overflow Non-Exec Stack Privilege Escalation

Solaris 7/8/9 CDE libDtHelp - Buffer Overflow Non-Exec Stack Privilege Escalation. CVE-2003-0834. Local exploit for Solaris platform / $Id: raptorlibdthelp2.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorlibdthelp2.c - libDtHelp.so local, Solaris/SPARC 7/8/9 Copyright c 2003-2004 Marco Ivaldi...

Aspell (word-list-compress) - Command Line Stack Overflow

/ Fuck private exploits . Fuck iranian hacking and security !! teams who are just some fucking kiddies. Fuck all "Security money makers" word-list-compress local exploit - SECU Coded by : c0d3r / root . razavi1366atyahoodotcom word-list-compress is not setuid . so good for backdooring . gratz fly...

Aspell (word-list-compress) - Command Line Stack Overflow

Aspell word-list-compress - Command Line Stack Overflow / Fuck private exploits . Fuck iranian hacking and security !! teams who are just some fucking kiddies. Fuck all "Security money makers" word-list-compress local exploit - SECU Coded by : c0d3r / root . razavi1366atyahoodotcom...

CVE-2004-1033

Fcron 2.0.1, 2.9.4, and possibly earlier versions leak file descriptors of open files, which allows local users to bypass access restrictions and read fcron.allow and fcron.deny via the EDITOR environment variable...

CVE-2004-0238

Multiple buffer overflows in Overkill 0verkill 0.15pre3 might allow local users to execute arbitrary code in the client via a long HOME environment variable in the 1 loadcfg and 2 savecfg functions; possibly allow remote attackers to execute arbitrary code via long strings to 3 the sendmessage...

CVE-2004-0318

Load Sharing Facility LSF 4.x, 5.x, and 6.x uses the LSFEAUTHUID environment variable, if it exists, instead of the real UID of the user, which could allow remote attackers within the local cluster to gain privileges...

SQL Injection in phpBT (bug.php - Add)

| | | | | | | | || | | | | | | | | |/ / / / | | | / | '| |/ / | | | | V V / | |/ / | | | | | |// // |/ ,|| || http://www.howdark.com ---------------------------------------------------------------------------------------------------------------------------------- // Information...

phpbugtraq.txt

| | | | | \ | | | || | | | | | | | | |/ \ \ /\ / / | | | / | '| |/ / | | | | \ V V / | |/ / | | | | | |// // |/ ,|| ||\ http://www.howdark.com ---------------------------------------------------------------------------------------------------------------------------------- // Information...

Security fix for the ALT Linux 6 package sudo version 1:1.6.7p5-alt4

Nov. 12, 2004 Dmitry V. Levin 1:1.6.7p5-alt4 - Backported upstream fix that restricts exporting of shell functions and CDPATH shell variable CAN-2004-1051. - Added help to control...

Security fix for the ALT Linux 5 package sudo version 1:1.6.7p5-alt4

Nov. 12, 2004 Dmitry V. Levin 1:1.6.7p5-alt4 - Backported upstream fix that restricts exporting of shell functions and CDPATH shell variable CAN-2004-1051. - Added help to control...

Security fix for the ALT Linux 8 package sudo version 1:1.6.7p5-alt4

Nov. 12, 2004 Dmitry V. Levin 1:1.6.7p5-alt4 - Backported upstream fix that restricts exporting of shell functions and CDPATH shell variable CAN-2004-1051. - Added help to control...

golddig -- local buffer overflow vulnerabilities

Two buffer overflow vulnerabilities where detected. Both issues can be used by local users to gain group games privileges on affected systems. The first overflow exists in the map name handling and can be triggered when a very long name is given to the program during command-line execution The...

CVE-2004-0958

phpvariables.c in PHP before 5.0.2 allows remote attackers to read sensitive memory contents via 1 GET, 2 POST, or 3 COOKIE GPC variables that end in an open bracket character, which causes PHP to calculate an incorrect string length...

NSFOCUS SA2004-02 : HP-UX stmkfont Local Privilege Escalation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NSFOCUS Security AdvisorySA2004-02 Topic: HP-UX stmkfont Local Privilege Escalation Vulnerability Release Date: 2004-10-20 CVE CAN ID: CAN-2004-0965 http://www.nsfocus.com/english/homepage/research/0402.htm Affected system: =================== - - HP-...

CVE-2004-0884

CVE-2004-0884 affects the Cyrus-SASL libraries (libsasl and libsasl2) up to version 2.1.18. The vulnerability arises because these libraries trust the SASL_PATH environment variable to locate SASL plug-ins, allowing a local attacker to cause arbitrary code execution by pointing SASL_PATH to malic...

sudo -- environmental variable CDPATH is not cleared

A sudo bug report says: sudo doesn't unset the CDPATH variable, which leads to possible security problems...

DSA-568-1 cyrus-sasl-mit - unsanitised input

Bulletin has no description...

DSA-563-3 cyrus-sasl - unsanitised input

Bulletin has no description...

GLSA-200410-03 : NetKit-telnetd: buffer overflows in telnet and telnetd

The remote host is affected by the vulnerability described in GLSA-200410-03 NetKit-telnetd: buffer overflows in telnet and telnetd A possible buffer overflow exists in the parsing of option strings by the telnet daemon, where proper bounds checking is not applied when writing to a buffer...

NetKit-telnetd: buffer overflows in telnet and telnetd

Background NetKit-telnetd is a standard Linux telnet client and server from the NetKit utilities. Description A possible buffer overflow exists in the parsing of option strings by the telnet daemon, where proper bounds checking is not applied when writing to a buffer. Additionaly, another possibl...