SquirrelMail 1.2.x - Theme Remote Command Execution

SquirrelMail 1.2.x - Theme Remote Command Execution source: https://www.securityfocus.com/bid/4385/info SquirrelMail is a feature rich webmail program implemented in the PHP4 language. It is available for Linux and Unix based operating systems. SquirrelMail allows for extended functionality throu...

CVE-2002-0143

Buffer overflow in Eterm of Enlightenment Imlib2 1.0.4 and earlier allows local users to execute arbitrary code via a long HOME environment variable...

CVE-2002-0132

Buffer overflow in Chinput 3.0 allows local users to execute arbitrary code via a long HOME environment variable...

memberlist.php of vBulletin

vBulletin ALL versions Vendor status: notified 3/18/2; no response Within the first few lines of code in memberlist.php, the variable $letterbits is evaled. Because of the way PHP initializes variables, we can inject HTML, or JavaScript into the document. So by directing a user to, for example:...

CVE-2001-1178

Buffer overflow in xman allows local users to gain privileges via a long MANPATH environment variable...

CVE-2001-1091

The CVE-2001-1091 entry concerns NetBSD 1.4.x–1.5.1 where the dump and dump_lfs commands do not drop privileges properly, allowing local users to gain privileges via the RCMD_CMD environment variable. This is the stated root cause and impact. The available documents do not provide remediation det...

CVE-2002-0125

Buffer overflow in ClanLib library 0.5 may allow local users to execute arbitrary code in games that use the library, such as 1 Super Methane Brothers, 2 Star War, 3 Kwirk, 4 Clankanoid, and others, via a long HOME environment variable...

CVE-2001-1148

Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to 1 atcronsh, 2 auditsh, 3 authsh, 4 backupsh, 5 lpsh, 6 sysadm.menu, or 7 termsh...

CVE-2001-1129

The CVE-2001-1129 entry covers multiple components of Progress database 9.1C (probuild, dbutil, mprosrv, mprshut, proapsv, progres, proutil, rfutil, and prolib). The vulnerability is a local format-string flaw in the PROMSGS environment file that allows a local user to execute arbitrary code. The...

CVE-1999-1327

Buffer overflow in linuxconf 1.11r11-rh2 on Red Hat Linux 5.1 allows local users to gain root privileges via a long LANG environmental variable...

CVE-2001-0533

Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environmental variable...

CVE-2001-0739

Guardian Digital WebTool in EnGarde Secure Linux 1.0.1 allows restarted services to inherit some environmental variables, which could allow local users to gain root privileges...

CVE-2001-0366

The CVE-2001-0366 issue affects saposcol in SAP R/3 Web Application Server Demo prior to 1.5, where the process trusts the PATH environment variable to locate and execute the expand program. This design allows local users to escalate to root by altering PATH to point to a Trojan horse expand prog...

CVE-1999-1385

Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via a long HOME environment variable...

CVE-2001-0833

Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary code via a long ORACLEHOME environment variable, aka the "Oracle Trace Collection Security Vulnerability."...

CVE-2001-1049

CVE-2001-1049 affects Phorecast PHP script prior to version 0.40. The vulnerability enables a remote attacker to include arbitrary files from remote web sites by issuing an HTTP request that sets the includedir variable. This is a remote file inclusion (RFI) type issue, with the attack surface ti...

CVE-1999-1120

The vulnerability CVE-1999-1120 affects SGI IRIX 6.4 and earlier where netprint trusts the PATH environment variable to locate and execute the disable program. This trust allows local users to gain privileges. Documented impact indicates local privilege escalation; exploitation details are not pr...

DoS против CVS (uninitialized variable)

Неинициализированная глобальная переменная открывает возможность атаки на отказ...

[SECURITY] [DSA 117-1] New CVS packages fix potential security problems

-------------------------------------------------------------------------- Debian Security Advisory DSA 117-1 [email protected] http://www.debian.org/security/ Martin Schulze March 5th, 2002 - -------------------------------------------------------------------------- Package : cvs Vulnerability...

[SECURITY] [DSA 117-1] New CVS packages fix potential security problems

-------------------------------------------------------------------------- Debian Security Advisory DSA 117-1 [email protected] http://www.debian.org/security/ Martin Schulze March 5th, 2002 - -------------------------------------------------------------------------- Package : cvs Vulnerability...