owned software vulnerabilities
vulnerabilities.aspcode.net
Searching owned software vulnerabilities
Vulnerability in (1) diskalign and (2) diskperf
Vulnerability
|
Vulnerability in (1) diskalign and (2) diskperf in IRIX 6.4 patches 2291 and 2848 allow a local user to create root-owned files leading to a root compromise.
Oracle Webserver 2.1 and earlier runs setuid ro
configuration
|
privileges
|
Webserver
|
modifying
|
arbitrary
|
attacker
|
obtains
|
earlier
|
account
|
remote
|
modify
|
access
|
allows
|
setuid
|
Oracle
|
files
|
owned
|
local
|
which
|
runs
|
root
|
file
|
gain
|
any
|
but
|
Oracle Webserver 2.1 and earlier runs setuid root, but the configuration file is owned by the oracle account, which allows any local or remote attacker who obtains access to the oracle account to gain privileges or modify arbitrary files by modifying the configuration file.
Vulnerability in (1) diskperf and (2) diskalign
Vulnerability
|
Vulnerability in (1) diskperf and (2) diskalign in IRIX 6.4 allows local attacker to create arbitrary root owned files, leading to root privileges.
chuid 1.2 and earlier does not properly verify
attackers
|
ownership
|
properly
|
changed
|
earlier
|
remote
|
allows
|
change
|
verify
|
users
|
other
|
owned
|
chuid
|
files
|
which
|
such
|
root
|
does
|
not
|
chuid 1.2 and earlier does not properly verify the ownership of files that will be changed, which allows remote attackers to change files owned by other users, such as root.
The xp_runwebtask stored procedure in the Web T
xp_runwebtask
|
Microsoft
|
component
|
procedure
|
stored
|
Server
|
Tasks
|
Web
|
SQL
|
The xp_runwebtask stored procedure in the Web Tasks component of Microsoft SQL Server 7.0 and 2000, Microsoft Data Engine (MSDE) 1.0, and Microsoft Desktop Engine (MSDE) 2000 can be executed by PUBLIC, which allows an attacker to gain privileges by updating a webtask that is owned by the database owner through the msdb.dbo.mswebtasks table, which does not have strong permissions.
Multiple race conditions in the handling of O_D
conditions
|
handling
|
O_DIRECT
|
Multiple
|
version
|
kernel
|
prior
|
Linux
|
race
|
Multiple race conditions in the handling of O_DIRECT in Linux kernel prior to version 2.4.22 could cause stale data to be returned from the disk when handling sparse files, or cause incorrect data to be returned when a file is truncated as it is being read, which might allow local users to obtain sensitive data that was originally owned by other users, a different vulnerability than CVE-2003-0018.
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly
fcronsighup
|
Fcron
|
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to bypass access restrictions and load an arbitrary configuration file by starting an suid process and pointing the fcronsighup configuration file to a /proc entry that is owned by root but modifiable by the user, such as /proc/self/cmdline or /proc/self/environ.
The init scripts in Search for Extraterrestrial
Extraterrestrial
|
Intelligence
|
scripts
|
Search
|
init
|
The init scripts in Search for Extraterrestrial Intelligence (SETI) project 3.08-r3 and earlier execute user-owned programs with root privileges, which allows local users to gain privileges by modifying the programs.
The init scripts in Great Internet Mersenne Pri
Internet
|
Mersenne
|
scripts
|
Search
|
Prime
|
Great
|
init
|
The init scripts in Great Internet Mersenne Prime Search (GIMPS) 23.9 and earlier execute user-owned programs with root privileges, which allows local users to gain privileges by modifying the programs.
The init scripts in ChessBrain 20407 and earlie
ChessBrain
|
scripts
|
init
|
The init scripts in ChessBrain 20407 and earlier execute user-owned programs with root privileges, which allows local users to gain privileges by modifying the programs.
IPCop (aka IPCop Firewall) before 1.4.10 has wo
IPCop
|
IPCop (aka IPCop Firewall) before 1.4.10 has world-readable permissions for the backup.key file, which might allow local users to overwrite system configuration files and gain privileges by creating a malicious encrypted backup archive owned by "nobody", then executing ipcoprscfg to restore from this backup.
Race condition in IPCop (aka IPCop Firewall) be
condition
|
IPCop
|
Race
|
Race condition in IPCop (aka IPCop Firewall) before 1.4.10 might allow local users to overwrite system configuration files and gain privileges by replacing a backup archive during the time window when the archive is owned by "nobody" but not yet encrypted, then executing ipcoprscfg to restore from this backup.
suexec in Apache HTTP Server (httpd) 2.2.3 does
Server
|
Apache
|
suexec
|
HTTP
|
suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary UID/GID owned files if /proc is mounted. NOTE: the researcher, who is reliable, claims that the vendor disputes the issue because "the attacks described rely on an insecure server configuration" in which the user "has write access to the document root." In addition, because this is dependent on other vulnerabilities, perhaps this is resultant and should not be included in CVE.
The NFSv4 ID mapper (nfsidmap) before 0.17 does
mapper
|
NFSv4
|
The NFSv4 ID mapper (nfsidmap) before 0.17 does not properly handle return values from the getpwnam_r function when performing a username lookup, which can cause it to report a file as being owned by "root" instead of "nobody" if the file exists on the server but not on the client.
Software vulnerabilities results 1 to 15 of 15
Page:
1