Searching libraries software vulnerabilities

Buffer overflow in GNOME libraries 1.0.8 allows

libraries | overflow | Buffer | GNOME |

Buffer overflow in GNOME libraries 1.0.8 allows local user to gain root access via a long --espeaker argument in programs such as nethack.


Vulnerability in HP Process Resource Manager (P

Vulnerability | Resource | Manager | Process |

Vulnerability in HP Process Resource Manager (PRM) C.01.08.2 and earlier, as used by HP-UX Workload Manager (WLM), allows local users to gain root privileges via modified libraries or environment variables.


Multiple integer overflows in the font librarie

overflows | libraries | Multiple | XFree86 | integer | font |

Multiple integer overflows in the font libraries for XFree86 4.3.0 allow local or remote attackers to cause a denial of service or execute arbitrary code via heap-based and stack-based buffer overflow attacks.


IBM DB2 7.1 and 8.1 allow the bin user to gain

privileges | libraries | modifying | programs | setuid | shared | allow | used | user | gain | root | IBM | DB2 | bin |

IBM DB2 7.1 and 8.1 allow the bin user to gain root privileges by modifying the shared libraries that are used in setuid root programs.


Unknown vulnerability in the libraries for the

vulnerability | libraries | Solaris | Unknown | buffer | PGX32 | frame |

Unknown vulnerability in the libraries for the PGX32 frame buffer in Solaris 2.5.1 and 2.6 through 9 allows local users to gain root access.


The CFPlugIn in Core Foundation framework in Ma

Foundation | privileges | libraries | framework | supplied | CFPlugIn | loaded | allows | allow | users | local | could | which | gain | user | Core | Mac |

The CFPlugIn in Core Foundation framework in Mac OS X allows user supplied libraries to be loaded, which could allow local users to gain privileges.


Directory traversal vulnerability in extproc in

$ORACLE_HOME\bin | vulnerability | libraries | arbitrary | attackers | traversal | Directory | outside | extproc | access | Oracle | allows | remote | 10g |

Directory traversal vulnerability in extproc in Oracle 9i and 10g allows remote attackers to access arbitrary libraries outside of the $ORACLE_HOME\bin directory.


HP-UX B.11.00 and B.11.11 with B6848AB GTK+ Sup

/opt/gnome/src/GLib/ | permissions | privileges | Libraries | installed | directory | insecure | B6848AB | Support | allows | B1100 | users | HP-UX | files | local | which | B1111 | GTK+ | uses | gain | via |

HP-UX B.11.00 and B.11.11 with B6848AB GTK+ Support Libraries installed uses insecure directory permissions, which allows local users to gain privileges via files in /opt/gnome/src/GLib/.


PostgreSQL (pgsql) 7.4.x, 7.2.x, and other vers

PostgreSQL |

PostgreSQL (pgsql) 7.4.x, 7.2.x, and other versions allows local users to load arbitrary shared libraries and execute code via the LOAD extension.


Buffer overflow in luxman before 0.41, if used

overflow | before | luxman | Buffer |

Buffer overflow in luxman before 0.41, if used with certain insecure svgalib libraries, allows local users to execute arbitrary code via a long -f command line argument.


VMware before 4.5.2.8848-r5 searches for gdk-pi

world-writable | gdk-pixbuf | 4528848-r5 | arbitrary | libraries | temporary | directory | includes | rrdharan | searches | execute | before | allows | shared | VMware | users | local | using | which | code | path |

VMware before 4.5.2.8848-r5 searches for gdk-pixbuf shared libraries using a path that includes the rrdharan world-writable temporary directory, which allows local users to execute arbitrary code.


Opera 7.54 and earlier on Gentoo Linux uses an

Opera |

Opera 7.54 and earlier on Gentoo Linux uses an insecure path for plugins, which could allow local users to gain privileges by inserting malicious libraries into the PORTAGE_TMPDIR (portage) temporary directory.


Qt before 3.3.4 searches the BUILD_PREFIX direc

before |

Qt before 3.3.4 searches the BUILD_PREFIX directory, which could be world-writable, to load shared libraries regardless of the LD_LIBRARY_PATH environment variable, which allows local users to execute arbitrary programs.


Untrusted search path vulnerability in the crtt

vulnerability | Untrusted | Neutrino | command | crttrap | search | RTOS | path | QNX |

Untrusted search path vulnerability in the crttrap command in QNX Neutrino RTOS 6.2.1 allows local users to load arbitrary libraries via a LD_LIBRARY_PATH environment variable that references a malicious library.


Eval injection vulnerability in Karrigell befor

vulnerability | Karrigell | injection | before | Eval |

Eval injection vulnerability in Karrigell before 2.1.8 allows remote attackers to execute arbitrary Python code via modified arguments to a Karrigell services (.ks) script, which can reference functions from libraries that are used by that script.


The Java extensions for QuickTime 6.52 and earl

extensions | QuickTime | Java |

The Java extensions for QuickTime 6.52 and earlier in Apple Mac OS X 10.3.9 allow untrusted applets to call arbitrary functions in system libraries, which allows remote attackers to execute arbitrary code.


phpMyAdmin 2.7.0-beta1 and earlier allows remot

phpMyAdmin | directory | attackers | 270-beta1 | libraries | multiple | requests | scripts | earlier | direct | remote | allows | server | obtain | full | path | via |

phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain the full path of the server via direct requests to multiple scripts in the libraries directory.


PhpMyAdmin 2.7.0-pl2 allows remote attackers to

libraries/commonlibphp | information | PhpMyAdmin | sensitive | attackers | message | reveals | request | 270-pl2 | remote | allows | direct | obtain | error | which | path | via |

PhpMyAdmin 2.7.0-pl2 allows remote attackers to obtain sensitive information via a direct request for libraries/common.lib.php, which reveals the path in an error message.


Untrusted search path vulnerability in McAfee V

vulnerability | environment | installing | arbitrary | Untrusted | directory | libraries | malicious | VirusScan | DT_RPATH | variable | includes | earlier | execute | current | working | McAfee | allows | search | Linux | local | which | 4510e | users | load | path | code | ELF | DSO |

Untrusted search path vulnerability in McAfee VirusScan for Linux 4510e and earlier includes the current working directory in the DT_RPATH environment variable, which allows local users to load arbitrary ELF DSO libraries and execute arbitrary code by installing malicious libraries in that directory.


Multiple unspecified vulnerabilities in Dia bef

vulnerabilities | CVE-2007-1351 | CVE-2007-2754 | unspecified | vulnerable | libraries | involving | FreeType | probably | Multiple | contain | vectors | and/or | attack | 0961-6 | before | impact | have | Dia | use |

Multiple unspecified vulnerabilities in Dia before 0.96.1-6 have unspecified attack vectors and impact, probably involving the use of vulnerable FreeType libraries that contain CVE-2007-2754 and/or CVE-2007-1351.


Software vulnerabilities results 1 to 20 of 55     
Page: 123