CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9563 matches found

Exploit DB•added 1997/05/13 12:0 a.m.•30 views

Elm 2.3/2.4 - TERM Environment Variable Local Buffer Overrun

source: https://www.securityfocus.com/bid/8030/info A buffer overrun has been discovered in Elm. The problem occurs due to insufficient bounds checking performed before copying user-supplied data into an internal memory buffer. Specifically, a TERM environment variable containing excessive data...

7.4AI score

Exploits0

NVD•added 1997/05/07 4:0 a.m.•7 views

CVE-1999-1461

inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find and execute the ttsession program, which allows local users to obtain root access by modifying the PATH to point to a Trojan horse ttsession program...

7.2CVSS0.00913EPSS

Exploits1References3

Exploit DB•added 1997/05/07 12:0 a.m.•18 views

SGI IRIX 6.4 - 'rmail' Local Privilege Escalation

source: https://www.securityfocus.com/bid/460/info A vulnerability exists in the rmail utility, included by SGI with it's Irix operating system. By failing to sanity check the contents of an environment variable, arbitrary commands may be executed with gid mail. rmail is used with uucp. The...

7.4AI score

Exploits0

exploitpack•added 1997/05/07 12:0 a.m.•12 views

SGI IRIX 6.4 - rmail Local Privilege Escalation

SGI IRIX 6.4 - rmail Local Privilege Escalation source: https://www.securityfocus.com/bid/460/info A vulnerability exists in the rmail utility, included by SGI with it's Irix operating system. By failing to sanity check the contents of an environment variable, arbitrary commands may be executed...

0.9AI score

Exploits0

NVD•added 1997/04/29 4:0 a.m.•5 views

CVE-1999-1296

Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos configuration file, which can be specified via the KRBCONF environmental variable...

7.2CVSS0.00063EPSS

Exploits0References1

Snyk•added 1997/04/29 4:0 a.m.•4 views

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow. Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos configuration file, which can be specified via the KRBCONF...

8.4CVSS7.2AI score0.00063EPSS

Exploits0References3

Positive Technologies•added 1997/03/01 12:0 a.m.•2 views

PT-1997-1131 · Xmcd · Xmcd

Name of the Vulnerable Software and Affected Versions: xmcd version 2.0p12 Description: The issue allows local users to gain access through an environmental variable due to a buffer overflow. Recommendations: For xmcd version 2.0p12, consider restricting access to environmental variables to...

7.2CVSS6.5AI score0.00115EPSS

Exploits0References3

exploitpack•added 1997/02/13 12:0 a.m.•21 views

UNICOS 9MAX 1.3mk 1.5 AIX 4.2 libc 5.2.18 RedHat 4 IRIX 6 Slackware 3 - NLS (2)

UNICOS 9MAX 1.3mk 1.5 AIX 4.2 libc 5.2.18 RedHat 4 IRIX 6 Slackware 3 - NLS 2 / source: https://www.securityfocus.com/bid/711/info Cray UNICOS 9.0/9.2/MAX 1.3/mk 1.5,AIX include include char shellcode = "\x31\xc0\xb0\x31\xcd\x80\x93\x31\xc0\xb0\x17\xcd\x80\x68\x59\x58\xff\xe1"...

0.6AI score

Exploits0

Exploit DB•added 1997/02/13 12:0 a.m.•26 views

UNICOS 9/MAX 1.3/mk 1.5 / AIX 4.2 / libc 5.2.18 / RedHat 4 / IRIX 6 / Slackware 3 - NLS (2)

/ source: https://www.securityfocus.com/bid/711/info Cray UNICOS 9.0/9.2/MAX 1.3/mk 1.5,AIX include include char shellcode = "\x31\xc0\xb0\x31\xcd\x80\x93\x31\xc0\xb0\x17\xcd\x80\x68\x59\x58\xff\xe1" "\xff\xd4\x31\xc0\x99\x89\xcf\xb0\x2e\x40\xae\x75\xfd\x89\x39\x89\x51\x04"...

7.4AI score

Exploits0

exploitpack•added 1997/02/13 12:0 a.m.•24 views

UNICOS 9MAX 1.3mk 1.5 AIX 4.2 libc 5.2.18 RedHat 4 IRIX 6 Slackware 3 - NLS (1)

UNICOS 9MAX 1.3mk 1.5 AIX 4.2 libc 5.2.18 RedHat 4 IRIX 6 Slackware 3 - NLS 1 / source: https://www.securityfocus.com/bid/711/info Cray UNICOS 9.0/9.2/MAX 1.3/mk 1.5,AIX = 4.2,Linux libc = 5.2.18,RedHat 4.0,IRIX 6.2,Slackware 3.1 Natural Language Service NLS Vulnerability 1 A buffer overflow...

0.7AI score

Exploits0

NVD•added 1997/02/06 5:0 a.m.•7 views

CVE-1999-0046

Buffer overflow of rlogin program using TERM environmental variable...

10CVSS0.06924EPSS

Exploits0References1

Positive Technologies•added 1997/02/06 12:0 a.m.•4 views

PT-1997-1026 · Rlogin · Rlogin

Name of the Vulnerable Software and Affected Versions: rlogin affected versions not specified Description: The issue concerns a buffer overflow in the rlogin program, which can be triggered using the TERM environmental variable. Recommendations: At the moment, there is no information about a newe...

10CVSS6.8AI score0.06924EPSS

Exploits0References4

FreeBSD Advisory•added 1997/02/05 12:0 a.m.•5 views

FreeBSD-SA-97:01.setlocale

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-97:01 Security Advisory Revised: Wed Feb 05 09:58:56 PDT 1997 FreeBSD, Inc. Topic: setlocale bug in all released versions of FreeBSD Category: core Module: libc Announced:...

6.3AI score

Exploits0

NVD•added 1996/12/19 5:0 a.m.•7 views

CVE-1999-1385

Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via a long HOME environment variable...

7.2CVSS0.0005EPSS

Exploits0References4

Exploit DB•added 1996/12/04 12:0 a.m.•40 views

BSD/OS 2.1 / DG/UX 4.0 / Debian 0.93 / Digital UNIX 4.0 B / FreeBSD 2.1.5 / HP-UX 10.34 / IBM AIX 4.1.5 / NetBSD 1.0/1.1 / NeXTstep 4.0 / SGI IRIX 6.3 / SunOS 4.1.4 - 'rlogin' Local Privilege Escalation

/ source: https://www.securityfocus.com/bid/242/info The SUID rlogin program is used to establish remote sessions. A buffer overflow condition has been found in the rlogin program that may allow an unauthorized user to gain root access. The overflow in particular is in the rlogin code that handle...

7.4AI score

Exploits0

exploitpack•added 1996/12/04 12:0 a.m.•20 views

BSDOS 2.1 DGUX 4.0 Debian 0.93 Digital UNIX 4.0 B FreeBSD 2.1.5 HP-UX 10.34 IBM AIX 4.1.5 NetBSD 1.01.1 NeXTstep 4.0 SGI IRIX 6.3 SunOS 4.1.4 - rlogin Local Privilege Escalation

BSDOS 2.1 DGUX 4.0 Debian 0.93 Digital UNIX 4.0 B FreeBSD 2.1.5 HP-UX 10.34 IBM AIX 4.1.5 NetBSD 1.01.1 NeXTstep 4.0 SGI IRIX 6.3 SunOS 4.1.4 - rlogin Local Privilege Escalation / source: https://www.securityfocus.com/bid/242/info The SUID rlogin program is used to establish remote sessions. A...

0.2AI score

Exploits0

Exploit DB•added 1996/10/30 12:0 a.m.•37 views

SGI IRIX 6.2 - SpaceWare

source: https://www.securityfocus.com/bid/471/info The SpaceBall game, shipped with Irix 6.2 from Silicon Graphics contains a security hole which could result in the compromise of the root account. By blindly taking the contents of the $HOSTNAME variable, and not placing quotes around it, the...

7.4AI score

Exploits0

exploitpack•added 1996/02/13 12:0 a.m.•15 views

sudo.bin - NLSPATH Privilege Escalation

sudo.bin - NLSPATH Privilege Escalation include include include include include define PATHSUDO "/usr/bin/sudo.bin" define BUFFERSIZE 1024 define DEFAULTOFFSET 50 ulong getesp asm"movl %esp, %eax"; mainint argc, char argv uchar execshell =...

1.1AI score

Exploits0

exploitpack•added 1994/04/02 12:0 a.m.•11 views

IBM AIX 3.2.5 - IFS Local Privilege Escalation

IBM AIX 3.2.5 - IFS Local Privilege Escalation source: https://www.securityfocus.com/bid/454/info Under older versions of AIX By changing the IFS enviroment variable to / setuid root programs that use system or popen can be fooled into running user provided programs. !/bin/csh IFS hole in AIX3.2...

0.7AI score

Exploits0

NVD•added 1990/05/09 4:0 a.m.•10 views

CVE-2000-0388

Buffer overflow in FreeBSD libmytinfo library allows local users to execute commands via a long TERMCAP environmental variable...

7.5CVSS0.00927EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by