CVE-2003-0382

Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable...

DEBIAN-CVE-2003-0382

Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable...

CVE-2003-0400

Vignette StoryServer and Vignette V/5 does not properly calculate the size of text variables, which causes Vignette to return unauthorized portions of memory, as demonstrated using the "--" string in a CookieName argument to the login template, referred to as a "memory leak" in some reports...

pMachine (PHP) : Include() Security Hole

Informations : °°°°°°°°°°°°° Language : PHP Version : Free 2.2.1 Website : http://www.pmachine.com Problem : Include Security Hole PHP Code/Location : °°°°°°°°°°°°°°°°°°° This will work if registerglobals is ON OR OFF. /pm/lib.inc.php : ------------------------------------------------------------...

GNU GNATS 3.113 - Environment Variable Buffer Overflow

GNU GNATS 3.113 - Environment Variable Buffer Overflow // source: https://www.securityfocus.com/bid/8005/info It has been reported that GNATS is prone to a buffer overflow condition when parsing certain environment variables. An attacker can exploit this vulnerability by setting an overly long...

Progress multiple bugs

It's possible to read first line from any file with PROSTARTUP variable. Buffer overflow on DLC variable...

CVE-2003-0377

SQL injection vulnerability in the web-based administration interface for iisPROTECT 2.2-r4, and possibly earlier versions, allows remote attackers to insert arbitrary SQL and execute code via certain variables, as demonstrated using the GroupName variable in SiteAdmin.ASP...

Progress Database 9.1 - Environment Variable Privilege Escalation

// source: https://www.securityfocus.com/bid/7916/info It has been reported that Progress database does not properly handle untrusted input when opening shared libraries. Specifically, the dlopen function used by several Progress utilities checks the user's PATH environment variable when includin...

CVE-2003-0382

Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable...

Mandrake Linux 8.2 /usr/mail local exploit (d86mail.pl)

Exploit for linux platform in category local exploits ======================================================= Mandrake Linux 8.2 /usr/mail local exploit d86mail.pl ======================================================= !/usr/bin/perl Mandrake 8.2 /usr/mail local exploit Usage: perl d86mail.pl...

PT-2003-1574 · Port80 · Iisprotect

Name of the Vulnerable Software and Affected Versions: iisPROTECT versions 2.2-r4 and earlier Description: The issue allows remote attackers to insert arbitrary SQL and execute code via certain variables, such as the GroupName variable in the SiteAdmin.ASP page. This can be exploited by attackers...

Zblast 1.2 - Username Local Buffer Overrun

Zblast 1.2 - Username Local Buffer Overrun // source: https://www.securityfocus.com/bid/7836/info A vulnerability has been reported for zblast, an svgalib-based game. The problem occurs when copying data from a user-supplied environment variable into a static memory buffer. By storing excessive...

SPChat 0.8 Module - Remote File Inclusion

SPChat 0.8 Module - Remote File Inclusion source: https://www.securityfocus.com/bid/7780/info SPChat has been reported prone to a remote file include vulnerability. The issue presents itself due to insufficient sanitization performed on the user-supplied URI variable 'statussess' by the SPChat...

CVE-2003-0269

Buffer overflow in youbin allows local users to gain privileges via a long HOME environment variable...

Vignette 4.x/5.0 - Memory Disclosure

source: https://www.securityfocus.com/bid/7684/info Vignette is prone to an issue which may expose the contents of memory to remote attackers. This condition is due to a flaw in how StoryServer calculates the size of certain characters in URI variables, which may cause data from adjacent memory t...

CVE-2003-0337

The ckconfig command in lsadmin for Load Sharing Facility LSF 5.1 allows local users to execute arbitrary programs by modifying the LSFENVDIR environment variable to reference an alternate lsf.conf file, then modifying LSFSERVERDIR to point to a malicious lim program, which lsadmin then executes...

AIX 4.3/5.1 - diagrpt Arbitrary Privileged Program Execution

source: https://www.securityfocus.com/bid/2916/info AIX ships with a diagnostic reporting utility called 'diagrpt'. This utility is installed setuid root by default. When 'diagrpt' executes, it relies on an environment variable to locate another utility which it executes. This utility is executed...

SudBox Boutique 1.2 - 'login.php' Authentication Bypass

source: https://www.securityfocus.com/bid/7651/info A vulnerability has been reported for SudBox Boutique. The problem occurs due to insufficient initialization of variables and may allow an unauthorized user to gain authenticate. Specifically, by making a malicious request to the login.php scrip...

CVE-2003-0281

Buffer overflow in Firebird 1.0.2 and other versions before 1.5, and possibly other products that use the InterBase codebase, allows local users to execute arbitrary code via a long INTERBASE environment variable when calling 1 gdsinetserver, 2 gdslockmgr, or 3 gdsdrop...

PHP-Proxima - 'autohtml.php' Information Disclosure

source: https://www.securityfocus.com/bid/7598/info A vulnerability has been reported for PHP-Proxima. The problem occurs in the autohtml.php script. Specifically, the script fails to verify the contents of a user-supplied variable before including a specified file into an HTML file. As a result,...